vb.org Archive

vb.org Archive (https://vborg.vbsupport.ru/index.php)
-   vBulletin.org Site Feedback (https://vborg.vbsupport.ru/forumdisplay.php?f=7)
-   -   Restoring quarantined hacks (https://vborg.vbsupport.ru/showthread.php?t=210981)

Valter 04-12-2009 07:44 AM
Restoring quarantined hacks
 
Please try to be faster when restoring fixed hacks from quarantine.

People is asking me via PMs what's going on with one of my hacks which is quarantined, but has been fixed yesterday. It just needs to be approved by Staff.

Thanks

nexialys 04-12-2009 10:34 AM
Easter weekend Cyb... ;)

people who request too much things have no real life, we have a problem here!

King Kovifor 04-12-2009 03:17 PM
Usually, we leave it up to the person who quarantined it, and since I don't know the exploits (don't think exact details were posted), I personally can't check it.

Paul M 04-14-2009 02:11 PM
Items will be restored as and when the person involved has time to check them, posting in the forum will not speed that process up (indeed, it may slow it down as it creates more work reading your posts).

Hornstar 04-15-2009 12:26 AM
I think the request here was a more general one. I think the process of how hacks are quarantined could be improved.

for example when the hack/thread is quarantined the mod could leave details that only the staff could see, so then other staff could restore the thread when the hack has been fixed much faster.

this is the site feedback section afterall.

Dismounted 04-15-2009 04:54 AM
Quote:
Originally Posted by hornstar1337 (Post 1791407)
for example when the hack/thread is quarantined the mod could leave details that only the staff could see, so then other staff could restore the thread when the hack has been fixed much faster.
That already happens - its the whole point of the quarantine process. However, staff need to have the time to check the modification one last time, this includes any other unrelated exploits.

In this case, as it happened over Easter - I think you can forgive us. :)

nexialys 04-15-2009 10:18 AM
you can not be forgiven, you are perfect, you are without failures, you are robots...

did i do a typo here?

Valter 04-15-2009 05:40 PM
It's all ok with me, don't get me wrong, but users are waiting for an update. ;)

nexialys, you should be warned for spamming. :p

nexialys 04-15-2009 05:41 PM
Cyb, you are not a moderator... ROFL

Videx 04-17-2009 02:07 AM
Personally, I think a much bigger problem is how to get non-working mods put in quarantine. I can think of at least two that are still being sold & installed, but they haven't worked in ages (if ever).

Dismounted 04-17-2009 03:36 AM
Quarantine is for modifications that can be exploited, and hence, affecting the security of a member's board. If you can present reasons how a non-working modification affects the security of a board, sure, they can go there as well. :)

Marco van Herwaarden 04-17-2009 09:24 AM
Staff don't know if a modification is vulnerable until a member reports the issue to us. Once reported a staff member will check the code to verify if there i a vulnerability. If it is confirmed, the modification will be quarantined until staff does not spot any vulnerabilities. Depending on the size of the modification this can be a long process as we have to manually go over all the coding and see if we can spot any vulnerable coding. And once it has been corrected by the author, we will need to do another check to see if everything is resolved. This is not something that can be done in a hurry. Very often a modification that has 1 vulnerable part of code, also will have more issues. But we only know that after we went over all the (new) code again. And yes, this is much easier if the same person who did the first check (and knows best what he found), does the 2nd check. In cases like a weekend or holiday, this can take a bit longer then normal but is really needed to ensure the quality. If the handling staff member is offline too long, then another staff member will take over, but we prefer to have it handled by a single person.

Guest210212002 04-26-2009 10:02 PM
Quote:
Originally Posted by nexialys (Post 1791865)
Cyb, you are not a moderator... ROFL
Oh the irony here. :D

<3


All times are GMT. The time now is 08:01 AM.

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2025, vBulletin Solutions Inc.

X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.01114 seconds
  • Memory Usage 1,733KB
  • Queries Executed 10 (?)
More Information
Template Usage:
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (2)bbcode_quote_printable
  • (1)footer
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (6)option
  • (1)post_thanks_navbar_search
  • (1)printthread
  • (13)printthreadbit
  • (1)spacer_close
  • (1)spacer_open 
Phrase Groups Available:
  • global
  • postbit
  • showthread
Included Files:
  • ./printthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/class_bbcode_alt.php
  • ./includes/class_bbcode.php
  • ./includes/functions_bigthree.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • printthread_start
  • bbcode_fetch_tags
  • bbcode_create
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • printthread_post
  • printthread_complete