DarkBlizz

Not sure what happened here, but I'd just like to make it clear that I do realize graphic design can take a very long period of time, especially from scratch. I am a freelance web developer part-time and work directly with one of my best friends who is a graphic designer and our work is split 50/50 time wise. Much of that work is sunk into logo design, type-facing, color schemes, custom artwork, and layout design. Many of those things can take place in this contest as well, and for a fully redesigned banner or theme, yes, the amount of time that is required is on par with the programming contest.

However, the average banner being submitted is certainly much less work than the BARE MINIMUM you need to do for a functional coding entry. All I simply meant when I said what I did was that the barrier for entry is lower for all of them but the programming one, and therefore takes a guaranteed amount of time that is generally greater than the others. And of course, the inherent issues faced when throwing code up on a site was my main concern, which has already been addressed.

Hope that clears some things up.

For purposes of effort and artistry I give you an A.

However, from a usability standpoint, having a wait time to be able to use the menu is quite annoying to a lot of people. If you want a little door slam animation, don't have the menu come in post-animation but rather have it be there all along (i.e. www.starcraft2.com).

Also, get a more readable font.

Otherwise, good job and good luck.

Quote from: erulabs on March 26, 2010, 07:48:48 AM

Quote from: ItzMattu on March 23, 2010, 09:29:02 PM
I admire your efforts to tackle this project, but I have a few concerns that you might not be aware of.

First off, I took a look at your PHP file, and you don't have any hint of SQL sanitation in there. That means absolutely anyone could come along and pass their own SQL query into your system and modify the database as they see fit. This means they could delete every comment, post 1,000s of comments at a time, delete files, point downloads to malicious files, etc..

Second, it concerns me that if you did not do this (fairly basic) security precaution, you also are not planning on putting in security for uploaded files. Much of this security lies in the domain of knowing Linux (since the server runs Linux) and properly setting up the environment. A smaller portion of it lies in sanitizing uploaded files, but not much can be done here since you can really only check file extension. Well, you could parse a file, but that project is way beyond the scope of this entry.

So, as I discussed in the contest questions thread, you are going to have to some more work other than making it appear to work correctly. The real test is in the details, and those details really aren't known unless you have the proper knowledge.

Sorry to come here and make a post like this, but it is what's best for this site and community, and I wouldn't want to jeopardize the site over one silly beta key.

Hey, thanks for the post. Actually, if you look at the implementation (its not in the class), it will die() when you attempt to upload anything (beyond that die() call, the directory it attempts to write to is unavailable). This is exactly because I have not implemented any mysql_real_escape_string functions. I always add hacky/anti-hacky stuff until last if I can. As for Linux security... well, heh . I have been a Linux Sysadmin for 4 years now, been using Linux for about 7. I have a filetype field in my table, just havn't used it yet.

Anyways, thank you for your post and for reviewing my code! You're totally correct, it lacks security; however, it's insecure functions are not public. I'll  be uploading a newer version in a few days, when I get more time. I wrote this code in about an hour or two, thinking the deadline was that night. By the 4th this will all be cleaned up.

As for filetype protection, that is an interesting problem. Obviously it's easy enough to make files -x (non-executable), and to search and destroy javascript files, but there is no true solution to the problem. I was considering asking Myst if he wanted an approval system for file... If you have any ideas for this, let me know. I can use Linux's libmagic to guess the type which would work as long as Darkblizz's server allows it.

@masky007: thanks for the support! heres hoping I get a key!!! I play iccup all the time, sooo looking forward to sc2!

When I first posted this, I was unaware that the DarkBlizz team had a staff of people knowledgeable in the area. My biggest concern was that I thought a) files would be publicly uploadable and b) The created code would just be thrown on the server.

Now knowing that neither of those are true, it's not really a concern of mine. Good to know you know your stuff too. Once again I applaud you for taking on this task, and wish you luck in the contest. :]

Well, if I do get the key I certainly won't be selling it. I have at least 3 other guys that help me run the GDG (Game Developers' Group) at my school who also don't have, and would love, keys.

But the official call can't be made by me.

At any rate, I don't believe it comes down to a community vote (could be wrong). But I do appreciate the support and kindness. :]

Thanks for all the kind replies everyone! I am looking forward to all the entries you guys make, and don't shy away from this style just because I did it. If it's the best way to show off why you should get the key, go for it. I'm sure other people have great stories and great collections to show us!

When I first submitted this video, the only other ones had nothing to do with saying why they deserved the key, but just did other things (sometimes even unrelated to SC or Blizzard at all) so I figured it was worth a shot.

Quote from: Myst on March 26, 2010, 01:25:45 AM
Interesting Vid, I was thinking about doing the charity thing but decided not to go that route for this first contest.  Maybe the next contest    

Yeah, it ended up working out well. They raised over $800 dollars I believe.

Here is the post about it if you're interested: http://www.reddit.com/r/gaming/comments/bf8ac/hey_reddit_want_a_starcraft_2_beta_key_be_my/

How would anyone be stealing keys from me by the video being posted here? O_o

So, I am posting what was going to be my entry #2 (this is my rough edit). Turns out a stranger on the internet saw my video and decided to give me a key because of it. I am posting it here still because it was made thanks to this contest, and perhaps will inspire some others.

Rough edit for SC2 Key Giveaway

Also, I would still like to have a chance at a key (another co-founder of the GDG) for a friend if possible! Thanks!

StarCraft II Beta - Patch 6 (version 0.8.0.14593)
 
  The latest patch notes can always be found at
  http://forums.battle.net/thread.html?topicId=23094049316&sid=5000
 
  General     

     
• You can now report misconduct or block communication with a player   after completion of a game by right-clicking on the offending player's   name in the score screen and choosing Report Abuse or Block   Communication.
• You can now view any player's profile after completion of a game by   right-clicking on their name in the score screen and choosing View   Profile.
• Updated unit and ability tooltips to be accurate in all regions.
• Improved the visibility of units on zerg creep.
• Improved the visibility of team colors for protoss units using   warp-in to help distinguish between multiple protoss players.
• Improved the system that handles promotion and relegation between   Leagues.
• Improved the Favored functionality to more accurately portray Even   matches and display properly in the score screen.
• Improved 2v2 arranged team matchmaking so games are found more   quickly.
• Improved replay functionality so missing maps will be downloaded   from Battle.net when you view a replay.
• Korea: Improved the logic for the age gate functionality.

  Balance Changes     

     
• GENERAL     
  
  
          
  • Pathing has been improved so units can now properly block ramps and   choke points.
  • Made a change to how zerg creep affects doodads, such as trees, to   prevent players from seeing the starting location of zerg players   through the fog of war.
• TERRAN     
  
  
          
  • Viking     
    
    
               
    • Cost changed from 125 Minerals and 100 Vespene Gas to 150 Minerals   and 75 Vespene Gas.
  • Ghost     
    
    
               
    • Cost changed from 100 Minerals and 200 Vespene Gas to 150 Minerals   and 150 Vespene Gas.
    • EMP Round radius decreased from 3 to 2.
  • Factory     
    
    
               
    • Cost decreased from 200 Minerals and 100 Vespene Gas to 150 Minerals   and 100 Vespene Gas.
  • Tech Lab     
    
    
               
    • Cost decreased from 50 Minerals and 50 Vespene Gas to 50 Minerals   and 25 Vespene Gas.
  • Reactor     
    
    
               
    • Build time increased from 25 seconds to 50 seconds.
  • SCV     
    
    
               
    • Life decreased from 60 to 45.
  • Bunker     
    
    
               
    • Build time decreased from 40 seconds to 30 seconds.
  • Marine     
    
    
               
    • Build time increased from 20 seconds to 25 seconds.
• PROTOSS     
  
  
          
  • Colossus     
    
    
               
    • Thermal Lances damage decreased from 23 to 20.
  • Observer     
    
    
               
    • Cost increased from 25 Minerals and 75 Vespene Gas to 50 Minerals   and 100 Vespene Gas.
    • Build time increased from 33 seconds to 40 seconds.
  • Stalker     
    
    
               
    • Particle Disruptors damage increased from 8 (+6 Armored) to 10 (+4   Armored).
    • Weapon upgrade damage decreased from +1 (+1 Armored) to +1 (+0   Armored).
  • Dark Templar     
    
    
               
    • Armor type changed from Biological-Psionic to   Biological-Psionic-Light.
  • High Templar     
    
    
               
    • Armor type changed from Biological-Psionic to   Biological-Psionic-Light.
  • Dark Shrine     
    
    
               
    • Build time increased from 80 seconds to 100 seconds.
    • Cost increased from 100 Minerals and 200 Vespene Gas to 100 Minerals   and 250 Vespene Gas.
• ZERG     
  
  
          
  • Baneling     
    
    
               
    • Volatile Burst damage increased from 15 (+20 Light) to 20 (+15   Light).
  • Roach     
    
    
               
    • Burrowed regeneration rate decreased from 10 to 5.
    • Upgraded burrowed regeneration bonus decreased from +20 to +10.

  Bug Fixes     

     
• Fixed an issue affecting the incorrect assignment of arranged teams   to certain Leagues.
• Fixed an issue affecting random teams that caused no points being   awarded on wins and too many points being removed on losses in certain   situations.
• Fixed an issue involving the Bonus Pool display on the Quick Match   and Leagues & Ladders pages.
• Korean client: Fixed an issue affecting the ability for Korean   players to properly view profiles. They can now see their League ranking   on their profile page.
• Fixed an intermittent UI crash on game shutdown.
• Polish client: Fixed a crash which would happen any time a "Player   is no longer being revealed!" message was displayed.

Just out of curiosity, how did you get it? I am scouring Twitter, Craigslist, forums, EVERYWHERE trying to find one.

Quote from: 4tyn on March 24, 2010, 04:42:31 PM
Can one paint instead of the "logo" a picture?

They want it to be usable on the site, so as long as you can convert it to a digital image I believe you'll be all set.

Giving a key to someone in South America or Europe is a waste.

To begin with, you will have horrible latency, and playing games decently at all will not be a reality.

Secondly, it is very easy to detect when an IP is from another country, so if Blizzard cared they could easily disable your account if they wanted to limit access to only those who live in the US. Of course there is an EU beta, but you'd have to get a key specifically for that version to use those servers I believe (could be wrong on this since I don't have beta and am not sure how server selection works).

You're going to have to try a bit harder than asking on a forum though I'm afraid. I've already entered 3 contests (one including giving $20 dollars to Child's Play) and have yet to win a key. A "friend" of mine even had a beta invite, but decided to be a greedy jerk and sell it.

Times are hard for SC2 fans.

Quote from: Tresh on March 24, 2010, 12:56:50 PM
While yes, making an entry 3 is much more work than 1 and 2, its more fun, and im having a blast making it. However, sanitation is a whole different issue. While we can try to sanitize it a bit, proper sanitation would make entries 3 50x harder than 1 and 2, easily. Im going to just make a little sanitation, and will leave the rest to the staff; focusing only in the system itself. If while doing this, im harming my chances, let me know, please.

If security issues like sanitation aren't included in the judging, I could whip up an exact replica of the mIRC downloading system in about one day's time...

So I guess depending on the answer to your query I will submit both 2 and 3.

Definitely my favorite header image yet. Very professionally done.

If you are all looking for some good commentated videos to watch, you should also check out Huskystarcraft on Youtube. He doesn't have sort of contest going on right now, but is an excellent source of good games to watch.