Quote:
Originally Posted by Aergad
Ok well I do have to say that sof client crashes the worldserver to and looks a great deal like malformed packets as well which is why i am in the process of disabling it entirely till world can understand what the client is sending.
|
I really don't see what SoF has to do with any of this other than the fact that it has been my priority for months to help get the emulator upgraded to work with a newer client and you are trying to make a personal attack on me through my work (and the work of others who have helped). If you don't like what we have done with SoF, then don't use it, but don't try to relate it to this discussion in any way. If you think you can discredit me by saying the work I have done on SoF is bad for the project, then that is just ridiculous.
If you are trying to say that SoF had anything to do with the world crashes that ALL of the popular servers (including many that didn't even have SoF enabled on them) were experiencing, then again, that is just ridiculous. I have worked with the SoF client from the very beginning and I know what it can and cannot do, and the crashes that we were seeing had nothing to do with it. The crashes were happening while the client was making a session request and I can definitely speak for Storm Haven that the SoF client was working 100% fine for requesting sessions when whoever it was was crashing the world.
If you think that SoF causes world crashes still, then I don't know what you are doing with it to cause them. I have been running it on my server for months now and anything that could have caused a crash has been resolved as far as I am aware of. I haven't seen world crashes on Storm Haven in quite some time and I only use SoF now. Maybe if haven't updated your server code in a while, you might run into some of the old issues, but as I said, most of them have been resolved for a while now.
Quote:
Originally Posted by Aergad
About my LS I want to state it was not my idea to store users passwords unencrypted and once My access to the servers was removed i moved quickly to inform my users of the compromise and they dont seem to care so, that one is on them. But I do see your point which is precisly why I an I alone have access to my ls database as of this moment and that is the way it is going to stay.
|
Not that you would do it, but one of my main concerns with multiple people running Login Servers is that they could be abused extremely easily. I am sure you have people register with their email addresses, and not everyone knows better than to use the same password for their LS account that they use for their email. So, if a LS was to get hundreds or even thousands of registered users, there is a good chance that some of them may have given the same password to get into their email account. If someone running a Login Server was doing so with malicious intent, it would be all too easy for them to take advantage of people, find other personal information and probably even to steal from them.
Private information (gaming or otherwise) should not be taken lightly, and by giving everyone access to run their own Login Server, there are bound to be security risks. When handling any private information, there should be at least decent security to ensure that it stays safe and private. And, if extra precautions aren't going to be taken, the users should be made aware of that so they know to take their own safety measures (which they really should be doing automatically in the first place).
Quote:
Originally Posted by Aergad
I do understand your POV I am nerely saying like any exploit once one person figures it out well then all the script kiddies gotta try it.
|
I am not exactly sure what you are referring to here. But, if you are referring to the malformed packet crashing the world servers, that information was not disclosed until after it happened. The Login Server one was mentioned, but the issues with the client itself were not. The source is open, so if someone had really wanted to exploit that issue, and knew what they were doing, they could have done it at any point. It happening 3 days after the LS crashes is extremely unlikely to be just a coincidence.
Quote:
Originally Posted by Aergad
I really do think they are genuinly trying to help the community with the new ls, and I think they should be given a chance, dont condem people for mistakes of the past. Yes im sure they screwed up in the past image has admitted to me he did so but he was young as we all were at one time.
|
When their project had any chance of getting some of this community to move to it, they mentioned that they would probably allow "custom LS builds" for a price. So, they would have been charging people for them to remove the restrictions in the Login Server code that they had put there in the first place. Once it was clear that the issues with the EQEmu Login Server were going to resolved, only then did they give out the unrestricted version. If you want to help an opensource, free project, you don't do it by creating an alternative to it and charge for it :P
I am almost always willing to give people a second chance, depending on how bad their first offense was. I really wish they could have come back and proven themselves respectful and trustworthy. This project would no doubt benefit from someone with coding skills like Image has. But, if it comes at a cost of deceit and drama, it just isn't worth it. Since I was not around for the first issue with these 2, I couldn't exactly hold it against them. But, after seeing the recent issues and actions, I think it is clear that they have something against the entire team and are willing to go to great lengths to show that.
Quote:
Originally Posted by Aergad
It should be noted that My issues were not a result of anything devnoob or image coded in their ls I will say that.
|
I can agree with you on this one. It wasn't their fault for what happened to you. But, I am extremely hesitant to use anything that is closed source and isn't from a highly respected source.
Quote:
Originally Posted by Aergad
Instead fo pointing fingers and such why dont we all try working together, Forks included we dont have to all be super activ ehere to have something to contribute. forks can coincide with the main project and collaboration can take place.
|
There is no fork (sounds like something from the Matrix). There is no secondary project going on. There is just EQEmu as far as I am concerned. Now, if someone else started their own SVN, or started releasing non-EQEmu binaries or something, then that would be a fork. But, as of now, it is all just normal EQEmu. Just because you use your own private LS doesn't make you a fork. That would be like saying that people who use the old mini-login are all forks.
Other than the fork statements, I agree with you on this one too. We should all just work together and stop the drama. Drama is such a time consuming waste. I could certainly be doing much better things with my time. I will never push for drama. All I try to do is discuss the issues at hand. If all we do is delete/lock threads, and suppress drama, it will never get resolved. I am more than willing to play moderator to see any drama to the end in a reasonable fashion.
Quote:
Originally Posted by Aergad
Even if they were crashing these things that inturn helped the community because the problems were found and are in the process of being fixed. I try to be a silver lining kind of a guy usually.
|
I consider myself an extreme optimist and always try to look on the bright side. I also try to give people the benefit of the doubt if there is any doubt in me to give. While you may have somewhat of a point here, it is still completely ridiculous to even say such a thing. That statement doesn't do anyone any good. You are saying that we should love the hackers because they forced the problem to get fixed? If someone really wants to help, they help without hurting in the process. The issues with the LS were due to sick attacks and anyone who would do something like that is just a bad seed. Effecting thousands of people for weeks on end just so someone can get revenge or get their way is just too selfish for words.
[QUOTE=Aergad;167936]Even with what happened to My project I look at it as now i have total control over it and it was actually a good thing in a way that it happened.
Sometimes learning the hard way is the best way. You won't soon forget that lesson I hope. I still think that the real lesson you should have learned is that you shouldn't trust people who haven't earned your trust.
Quote:
Originally Posted by Aergad
Thats all Im saying people screw up they dont need to be repeatedly crucified for it.
|
If people consistently screw up and cause problems, which in turn wastes other people's time and efforts, then yes they do deserve what they asked for.
Quote:
Originally Posted by Aergad
I have been using the LS they made since before it was officially released I have had 0 issues with it its stable and secure and all in all a good program IMO.
|
While that may be true, a closed source program could always be hiding something that could come back to bite you in the end. I really hope that isn't the case here, but you can never truly be too cautious about that sort of thing.
Quote:
Originally Posted by Aergad
Yes I am playind devil's advocate but i think if we all work together rather then against one another it will help everyone as a whole in the long run
|
I can play devil's advocate all day, obviously. But I would honestly much rather see the drama gone for good and for things to get back on track. Already since KLS has gotten access to the LS, things have been better than they have for quite a while. I am sure once the LS issues are all finalized and taken care of, people will quickly forget about this whole issue. I knew that would happen from the start and as soon as the LS was back up and stable, the drama suddenly stopped. Since some issues hadn't been fully resolved, I knew something like this was bound to pop up at some point. So, I figured it would be good to clear things up while I had the chance. I don't pretend to know everything that goes on around here, but I will say that I know my fair share :P
Linear Mode
