Show Posts

16

Drama / Latest kidalex ban

« on: July 30, 2019, 08:27:37 PM »

Kidalex on his latest alt posted an "hrt item" add-on that in addition to its advertised features, contained code that would change the shapename of certain blockland users to "transmission friend".

The problem is not that the add-on is offensive or that it uses bad words.

The problems are:

The add-on is labeled as an item and but is actually an abuse/vendetta list
The add-on undermines base functionality of Blockland (shapename) for no reason other than abuse/vendetta

The trojan horse nature of this add-on is what warrants an immediate ban. I know you're going to have your silly discord wars, but don't try to recruit other servers into it with back door code.

17

Development / 2019/07/13 - Blockland r2000

« on: July 13, 2019, 04:40:47 PM »

Fixes for some issues reported by CompMix:

Security issue related to a network event.
Fix for one type of speed hack.
Fixed splash objects not being deleted.

You should update your servers as soon as possible.

18

Off Topic / MOVED: This site is bad and nothing would be lost if it were shut down (except addons)

« on: June 10, 2019, 08:47:48 PM »

This topic has been moved to Drama.

https://forum.blockland.us/index.php?topic=323543.0

19

Drama / MOVED: where rocket is

« on: December 29, 2018, 10:17:18 PM »

This topic has been moved to Off Topic .

https://forum.blockland.us/index.php?topic=321908.0

20

General Discussion / MOVED: guys im now king of forums

« on: November 07, 2018, 04:59:27 PM »

This topic has been moved to Off Topic .

https://forum.blockland.us/index.php?topic=321423.0

21

Development / 2018/10/20 - Blockland r1991-r1997

« on: October 20, 2018, 09:05:38 PM »

r1991

Fixed buffer overflow potential in dSprintf. Note that this may cause other bugs to appear since some code may rely on the old broken behavior. Everything seems to be working.
Fixed remote crash bug involving invalid connection arguments
Fixed LAN crash bug involving malformed GameInfoResponse
Fixed issue where you could join a server with a weird/really long name and still pass auth check

Thanks to just:center for information on these bugs.

r1992

Part of the dSprintf overflow fix caused some strange intermittent bugs to appear with chat. I have reverted this change while I investigate.
Removed unintentionally included development batch files in "cache" folder

r1995

I think I found the problem, dSprintf overflow fix re-applied

r1997

For real this time, maybe. Thanks for beta testing my game guys.

22

General Discussion / Master server maintenence

« on: October 15, 2018, 06:17:48 PM »

I'm messing with the master server, might break for a bit.

23

General Discussion / SMF Login vulnerability: Change your passwords

« on: July 09, 2018, 09:52:48 AM »

There was a vulnerability of some kind on the forum that allowed an attacker to login to seemingly arbitrary accounts. I received reports that this was due to brute forcing the password recovery email link, but some some compromised accounts did not have their password changed. There may be more than one vulnerability and it may not be fixed. My confidence in smf is low.

I have taken the following actions:

* Updated to SMF 2.0.15
* Changed email recovery code to be 40 characters instead of 10
* Deleted lastest 1000 posts and latest 42 topics (approximately covering the period in which accounts were compromised)
* Restored user data from 2018-05-03 backup (so your passwords and profile info will be whatever it was two months ago)

Updating the forum involved resetting all user permissions and porting over various hacks and fixes. If I've missed something critical, please tell me directly via PM or email.

Update: If you have not done so since the update, I'd recommend changing your password.

24

Off Topic / MOVED: cant click in blockland

« on: June 22, 2018, 08:14:37 PM »

This topic has been moved to Help.

https://forum.blockland.us/index.php?topic=319558.0

25

Off Topic / Let's explore what 'Blockland' could mean...

« on: June 10, 2018, 05:34:00 PM »

...for an innovating Cleveland

https://www.cleveland.com/opinion/index.ssf/2018/06/lets_explore_what_blockland_co.html

26

General Discussion / MOVED: Master server is getting forgeted again

« on: June 01, 2018, 06:26:35 PM »

This topic has been moved to Drama.

https://forum.blockland.us/index.php?topic=319221.0

27

Off Topic / Super Official Podcast - Episode 3

« on: May 27, 2018, 10:52:05 PM »

Against the natural order of the universe (entropy), Rotondo and I have produced a third podcast.

We may have done a bad job explaining what we're actually talking about several times, but there are links in the timeline section.

https://badspot.us/Super-Official-Podcast-03.html

Youtube version:

https://www.youtube.com/watch?v=lFnIednlA7Q

28

Drama / BBCode Exploit

« on: May 12, 2018, 04:01:08 PM »

To "fix" this issue, I have removed 'table', 'tr', and 'td' from the bbcode parser. I don't know if this is enough. As far as I can tell, the exploit just involves a bunch of tags screwing up the page layout and does not allow for arbitrary html injection. If arbitrary code injection is possible, please notify me immediately.

I have banned the following people permanently for using the exploit to forget up otherwise functioning threads:
lykakspars
Punished Kidalex90
simpletonnn
maxxxx
zelau
Rally
thegoodperry

I have banned the following people for the standard one week for participating in the spam thread or messing up their profile:
K3k0m@n
Pecon
Swollow
two and a half limericks
Gytyyhgfffff
Copy Kirby
Parlydogs22

29

Drama / Who needs to be banned?

« on: May 01, 2018, 06:33:50 PM »

We're gonna have a poll. But first we need to know who should be in the poll.

Current nominees:

two and a half limericks
Punished Kidalex90

30

Development / 2018/03/16 - Blockland r1988

« on: March 16, 2018, 06:28:20 PM »

Small update to make Blockland keys with high id numbers work. Keys from the 40k-50k range are sold out, new keys will be from the 230k-250k range.

Blockland Forums

Topics - Badspot