Yeah, this whole event was crazy. They announced Portal 2 AND Steam for Mac. Pretty awesome. Looking forward to the expected Episode 3 announcement.
- Welcome to DarkBlizz.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#17
SC2 Beta Key Contest March2010 / Re: [Entry 1]Dark Blizz Banner
March 24, 2010, 03:14:30 AMQuote from: OrangeMarma on March 19, 2010, 04:10:15 PM
I just got invited by a friend - Dont need the key anymore however my pic still stands as something that you can use, however seeing these other contestants seems i'm quite inferior
Lucky little...
#18
General Discussion / Re: Blizzard lied to us?
March 23, 2010, 10:59:29 PMQuote from: starcrafter64 on March 23, 2010, 09:41:58 PMQuote from: ItzMattu on March 23, 2010, 09:36:22 PM
This is also very annoying DRM because people traveling, experiencing ISP issues, or a number of other issues are effectively blocked from playing a game they handed over cash for.
False. Look at the post above you. You authenticate once, and then the local account is activated, allowing you to play offline and not need battle.net for single player.
Do you have a source for this information? I'm interested in reading more about this. I hadn't heard of this up until right now.
#19
General Discussion / Re: PETITION - MAKE BLIZZARD TO IMPLEMENT LAN IN SC2
March 23, 2010, 09:39:56 PM
For those of you saying "no one cares about LAN" or that "LAN is available you just have to sign on to B.net" please see my post regarding this issue.
The effects of not including true LAN play are very much a hindrance to an important subculture of the gaming community, whether or not you'd like to believe so.
The effects of not including true LAN play are very much a hindrance to an important subculture of the gaming community, whether or not you'd like to believe so.
#20
General Discussion / Re: ZOMG!!!!
March 23, 2010, 09:37:02 PM
A beta key would be nice so that this thread effected me! XD
#21
General Discussion / Re: Blizzard lied to us?
March 23, 2010, 09:36:22 PM
I'm not sure you guys have the same definition of LAN as I do. A lot of the younger gamers are so used to the Internet, they don't realize that having the Internet (or a good enough connection) is actually a realistic situation that many event organizers face for LAN parties.
So just to clarify, having to connect to Battle.net to play over a local connection is not a LAN game. It is local play behind a WAN authentication wall.
This is also very annoying DRM because people traveling, experiencing ISP issues, or a number of other issues are effectively blocked from playing a game they handed over cash for.
So just to clarify, having to connect to Battle.net to play over a local connection is not a LAN game. It is local play behind a WAN authentication wall.
This is also very annoying DRM because people traveling, experiencing ISP issues, or a number of other issues are effectively blocked from playing a game they handed over cash for.
#22
SC2 Beta Key Contest March2010 / Re: Question? Ask Here
March 23, 2010, 09:30:11 PMQuote from: Myst on March 23, 2010, 09:19:14 PM
Yes we have taken that into consideration and have people on our staff checking the code from the people that have so far made that entry. Even though those systems are not fully done yet.
And yes you're right, it is a lot of work, but some people just may really really want a beta key
Ah okay, well I went and made a post on one of the entry #3 threads pointing out some security flaws in his design thus far. I'll avoid doing so in the future knowing you have people on the task.
#23
SC2 Beta Key Contest March2010 / Re: [Entry 3] DarkBlizz Downloader
March 23, 2010, 09:29:02 PM
I admire your efforts to tackle this project, but I have a few concerns that you might not be aware of.
First off, I took a look at your PHP file, and you don't have any hint of SQL sanitation in there. That means absolutely anyone could come along and pass their own SQL query into your system and modify the database as they see fit. This means they could delete every comment, post 1,000s of comments at a time, delete files, point downloads to malicious files, etc..
Second, it concerns me that if you did not do this (fairly basic) security precaution, you also are not planning on putting in security for uploaded files. Much of this security lies in the domain of knowing Linux (since the server runs Linux) and properly setting up the environment. A smaller portion of it lies in sanitizing uploaded files, but not much can be done here since you can really only check file extension. Well, you could parse a file, but that project is way beyond the scope of this entry.
So, as I discussed in the contest questions thread, you are going to have to some more work other than making it appear to work correctly. The real test is in the details, and those details really aren't known unless you have the proper knowledge.
Sorry to come here and make a post like this, but it is what's best for this site and community, and I wouldn't want to jeopardize the site over one silly beta key.
First off, I took a look at your PHP file, and you don't have any hint of SQL sanitation in there. That means absolutely anyone could come along and pass their own SQL query into your system and modify the database as they see fit. This means they could delete every comment, post 1,000s of comments at a time, delete files, point downloads to malicious files, etc..
Second, it concerns me that if you did not do this (fairly basic) security precaution, you also are not planning on putting in security for uploaded files. Much of this security lies in the domain of knowing Linux (since the server runs Linux) and properly setting up the environment. A smaller portion of it lies in sanitizing uploaded files, but not much can be done here since you can really only check file extension. Well, you could parse a file, but that project is way beyond the scope of this entry.
So, as I discussed in the contest questions thread, you are going to have to some more work other than making it appear to work correctly. The real test is in the details, and those details really aren't known unless you have the proper knowledge.
Sorry to come here and make a post like this, but it is what's best for this site and community, and I wouldn't want to jeopardize the site over one silly beta key.
#24
SC2 Beta Key Contest March2010 / Re: Question? Ask Here
March 23, 2010, 09:13:59 PM
Just a personal suggestion for #3...
I'm sure the reason you added this is because you a) want a download system for the website and b) aren't familiar with creating something like this yourself, so you think it is of equivalent effort. But, to be fair to people entering this contest, an entry for #3 would require easily 5-10x more effort and time than the rest of the entries, well, unless someone submits a professionally edited video of course.
Also, this is just me personally, but the time required to submit an entry like this is not worth a chance to win a beta key and $15 bucks. To be perfectly honest I would be very willing to do the job if I knew for sure my code would be used. Spending all that time on code that may or may not just be thrown away isn't the most enticing offer, and not a good way to go about getting quality code. Also... some problems I'm not sure you've considered with submission for a system like this:
I do intend to create a video though. Looking forward to seeing some of the cool artwork and videos made for this contest, and I sure hope I stand a chance at winning.
Good luck everyone!
I'm sure the reason you added this is because you a) want a download system for the website and b) aren't familiar with creating something like this yourself, so you think it is of equivalent effort. But, to be fair to people entering this contest, an entry for #3 would require easily 5-10x more effort and time than the rest of the entries, well, unless someone submits a professionally edited video of course.
Also, this is just me personally, but the time required to submit an entry like this is not worth a chance to win a beta key and $15 bucks. To be perfectly honest I would be very willing to do the job if I knew for sure my code would be used. Spending all that time on code that may or may not just be thrown away isn't the most enticing offer, and not a good way to go about getting quality code. Also... some problems I'm not sure you've considered with submission for a system like this:
- Submission could have backdoors allowing someone to gain access to your server.
- Submission could have unknown bugs with uploading allowing someone to save malicious scripts to your server and execute them in a browser.
- SQL injection vulnerabilities anyone?
- Many more security and access issues not testable until code is migrated to your server...
I do intend to create a video though. Looking forward to seeing some of the cool artwork and videos made for this contest, and I sure hope I stand a chance at winning.
Good luck everyone!