ccp-sreegs
Latest
EVE Online nukes over a thousand botters from orbit
Look upon CCP's works, ye botters, and despair! EVE Online players recently noticed "by virtue of reading various shady forums" that the CCP team has suspended or banned a large number of botters. CCP Sreegs stopped by the official site today to respond to some of the community reactions to the mass bot-nuking. Many fans seem to believe that the bannings are a publicitity stunt to drum up interest in the upcoming Fanfest. CCP Sreegs responds that, of course, this isn't the case. He notes that during CCP's recent periods of turbulence, there was no team responsible for "handling the technology responsible for nuking botters," but now that there's a full team once more, "[CCP has] now thrown the switch again and turned on the catching bad guys machine." Other players are crying out that the current three-strike system is too soft-hearted. Sreegs respectfully disagrees, citing the fact that, of all players that go on to receive two strikes, only something like 3% go on to earn a third. But what's to stop these problem players from transferring their characters to a new account and carrying on as usual? Sreegs also announced that a new system is being put in place that will indefinitely revoke the character transfer privileges of any suspended players, no matter how many strikes they have against them. For the full story as well as a bit of insight as to how CCP deals with botters and cheaters, just click on through the link below.
EVE Online Fanfest 2011: Final video roundup
Just over a month ago, the EVE Online Fanfest was in full swing and some exciting new information on EVE's future was being released. Massively was there to bring you all the big news as it came out, but most EVE players were unable to attend the event. Thankfully, most of the Fanfest panels and events were filmed and the main ones were even streamed live to viewers at home. For those who missed all the Fanfest excitement, CCP Games has spent the last few weeks preparing those videos for launch and uploading them to YouTube. The team has also sent us 150 professional photos from the event to include in our Fanfest gallery. In this final Fanfest roundup article, we've put together a handy list of every video from the Fanfest along with a handy summary of each. Not included in the list are the very technical Dev Tracker workshops designed to inform third-party app developers. Many of these videos contain swearing and some are definitely not safe for work. Talks definitely worth watching include the CCP panel, the EVE keynote, the content panel, incursions, words words words and live events. Things you absolutely don't want to miss are the hilarious but not work-safe alliance panel, the PvP tournament finals, the war on lag talk, guest lecture "Who Needs a CEO?" by Battleclinic founder Chris Condon, CCP Sreegs' talk on security, and of course, the EVE: A Future Vision trailer. Skip past the cut for a full roundup of all the videos from this year's EVE Fanfest.
EVE security devblog explains recent forum exploit
When EVE Online's new forum went live on Thursday, April 7th, it wasn't long before someone discovered a gruesome exploit. The cookie used by the forum wasn't encrypted, putting the user's character ID and signature in plain text. The forum software also didn't have the required validation procedures, meaning users could change the user ID in their cookies to any character's ID and they'd be able to post as that character. Moderator tools and private forums for EVE developers, volunteers and the CSM were also allegedly exposed. In a new devblog, CCP Sreegs has explained the extent to which the exploit compromised security. In addition to being able to post as any user and edit any post, users abusing the exploit were able to inject arbitrary HTML into their forum signatures. Several players have been very vocally outraged by this, as the potential for someone to insert javascript into a forum page could be extremely damaging. Sreegs assured players that javascript inserted into the signature was sanitized and would not execute. At least one player who reported the exploit was banned for subsequently abusing the exploit in an effort to force CCP to take action. In his devblog, Sreegs re-iterated the correct steps for getting in touch with CCP's security department if an exploit or security hole is discovered. Player response to the devblog has been largely positive, but questions still remain. CCP has yet to comment on why it decided to base the new forum on open source software Yet Another Forum and why it didn't inform players that it was using a pre-made package.
