Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[RedQueen]

i have to say i agree with ImmortalThug on this issue
by time you fix something there is 20 more things broken 
if helping secure a site for money is extortion in your eyes what about the half dozen mods people are paying money for that come already broken n they do not give you the kinda support  Immortal does he has been helping me immensly with learning as i am a noobie and still learning
with every mod i have purchased from him comes with support you could only wish for from any dealing for FREE!!!!!!

i would gladly pay him what he charges to secure a site is wayyyyyyyyyy cheaper than most are charging
being a mother of 3 here i see the point he makes about the diapers and food
securing takes time and work any normal job pays you for your time why can't  he ?

he  helps for free alot also which he doesn't have to and i wouldn't if i were him
why to help people like you that do not appreciate and are ungrateful for the time and efforts that go into the things done for them no  way not me i would charge ya so much you would not even bother askin for my help and why because i can if i want to
i would pay to have mmy site secured you know why ?
cause it saves me the time ,effort and energy of having to do it myself
if you do not wanna pay then don't it is not like someone is holding a gun to your head making you
there are plenty out there like me who just cannot be bothered to even try that is why people pay
people pay for mccodes engine even with all the security holes
and for v2 it is $300.00USD  that in my opinion is it is  extortiion
paying that much for something already broken to begin with

i say if you can get paid for  doing the work no one else wants to do go for it
we do not have our mommies or daddies paying our bills any more
we live on our own and have families of our own to care and pay bills for
so until you have the worries we do
and you have to even pay your own rent or buy your own groceries
you may think yeah i will do it all for free which do not get me wrong is a very nice gesture
but
i can tell you now once you have them worries your tune will change

all the power to you ImmortalThug if ya can make a buck for all your hard work and time that takes away from the time you could be spending doing something you really enjoy i say make that buck n i would too!!!!

[JoshuaDams]

Thank you Red, you said quite a lot.

I just hope some of these people understand my point.  There is no quick fix for mccodes.

See the Link I added for a little help.  Again, I don't mind helping where I can, even for free.

But to post false hope security mods that "secure your whole site" is not only moronic but unethical.

There is no "fix all solution"

Secure your $_GET and $_POST input and output.
Secure your $_IP
Hide your mysql errors with class.db files.
Stop Session Hijacks.

to many to list...that's just an idea of what REALLY needs to be done.

every forum i visit people ask the same thing

make one thread!

So threads are made...they arent helpful, then later someone posts the same thing again, MAKE A THREAD

Then when you direct people to that forum, they say the same thing..oh you can't tell me you just have to re-direct me to this site.

Well if you're to lazy to browse and research, delete your public html and get a new hobby your game fails.

[FrankWiccan]

I have yet to buy a mod that worked as described and didnt need a lot of editing except for IH program.
I have found his coding to be great and help invaluble.
Dispite my first dislike for danny I have found him also to be an excelent coder
these two people should be praised not accused

FW

oops yes Dany and IH's mods did work
but no other one

[JoshuaDams]

Yea, Danny is the bomb diggity to :p

[Danny696]

bomb diggity? oh and my mod had no problems

[JoshuaDams]

Get outta here you extortionist! hehe

[JoshuaDams]

Danny, those personals won't stop all of the hacks

There are tons of diff functions that help out, and by all means if you want to share with them go for it ;-)

However, w/o securing ALL $_GET and $_POST variables individually in the scripts themselves there are always going to be backdoors.

Not to mention RHI hacks, XSS hacks..session hijacks etc.

The list goes on and on.

[Diesel]

To post security holes and fixes you must inform users just how the security issues are done.  Which opens the board up to a wide range of users that now know how to hack or learn from it.

What difference does it make if other people know a few hacks? If you're game is secure, then you have nothing to worry about (I've seen some of your free mods and you seem like an intelligent coder). Not to mention, there are SEVERAL bugs throughout MC Codes that have quick, simple fixes. So why not post those? The only reason not to do so, that I can think of, is because people won't be able to charge other game owners money to fix those certain loopholes.

[JoshuaDams]

What difference does it make if other people know a few hacks? If you're game is secure, then you have nothing to worry about (I've seen some of your free mods and you seem like an intelligent coder). Not to mention, there are SEVERAL bugs throughout MC Codes that have quick, simple fixes. So why not post those? The only reason not to do so, that I can think of, is because people won't be able to charge other game owners money to fix those certain loopholes.

Because it's like putting a band-aid on a bullet wound.

I can just write something else to go right around it, most can.  I dont like giving "false" sense of security which is what that does.  Most known fixes can be found on all the forums, have been written 100 times.  Why re post them everytime someone asks?  Again, if they are to lazy to search and install on their own......kind of a waste of time really..

[Agon]

Yet another security thread turned into an advertisement for Immortal's security services.

[Zeddicus]

I agree with you Agon, the fact of the matter is, some people make games as a hobby, not for a buisness/job.
These people would obviously need help from malicious users, and there attempts at being "script-kiddies".

If there are known exploits, I very well think we as a community should post the fixes here to stop peoples games being exposed to them.

We don't have to post the actual exploits, just the fix.

[JoshuaDams]

Shrugz, The fixes are posted on tons of boards.  If they don't want to look for them I'm not going to help them.

I posted a FULL write-up on my own Forums, it's not my fault if people dont feel like looking.

Hobby or business, if you are to lazy to type in "McCodes Exploits"  In google, you're a lazy snob who needs a differant hobby.

[Zeddicus]

What I'm trying to say is, this is a different forum, why drive traffic away?
If you want you can always post your thread over here hehe.

[JoshuaDams]

Why post everytime someone asks for it?

[Cronus]

I agree, if you don't stop trying to get everyone to go to your forums in your posts I will start handing out warnings. I've removed several of your posts already because of it.