The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
#21
|
||||
|
||||
A redirect to the install button isnt really a back-door, nor a security breach especially considering that no coder can tell who the install was or where it came from. No personal or server info could have been passed.
Therefore Im with Paul on that one. If it was submitting info to another site where the author could access the info - then Im with Marco there. Just my thoughts |
#22
|
||||
|
||||
I see, so this is okay as long as a note is included in the hack ? In reality, it has not been very useful, it doesn't actually seem to work a lot of the time - so given that it now seems to fall foul of this new policy I think I might just remove it.
|
#23
|
|||
|
|||
Quote:
Read the thread title. It is not about if it is harmfull or not. It is not about if the coder could use an auto-install to get privacy sensitive information. It is about breaking the trust of our members by adding hidden functionality to a modification. Period. Now back to your example on a personal level, i think i could give you some reasons in a pm that would also show that even this is disclosing things. |
#24
|
||||
|
||||
You calling me Livewire now?!? I'm flattered
I assumed that the thread was about users potentially gathering personal data. The threat (as you mentioned) is always there policy or not and yes, I agree that users should be aware. I was only stating that if the catalyst was Paul's hack that redirect to an install link - then I just didn't agree that it would fall under a 'security', 'phishing', 'backdoor' type of policy. Regardless, I guess it is kind of sneaky and it does explain why so many people clicked install on Paul's hacks Now I just need to solve the whole 'last supper/floating hand' mystery and Ill die content. If you have the time and inclination, go for the PM. I'm interested, but I wont be refreshing my inbox every 5 seconds for it as I know you have far more pressing things to get on with |
#25
|
|||
|
|||
Quote:
The policy is about hidden functionality and trust, not about if it damage anything. PS Don't expect that PM very soon, but will work on it when i have time. |
#26
|
||||
|
||||
Quote:
|
#27
|
||||
|
||||
sas efharisto
(thats gReek for thank you - Your quoting system is squiffy ) |
#28
|
|||
|
|||
Dank je (dutch voor thank you)
That is what happens if you rely on manual quoting. PS You only spotted 1 of the 2 quoting "errors" in my previous post. |
#29
|
||||
|
||||
I spotted Limewire
|
#30
|
|||
|
|||
Quote:
Again, the issue here is that it is about undocumented functionality and that unfortunatly it is to better the author; but no security breach was added to your forum upon installing, nor was any data shared or backdoor installed. And finally, as mentioned in the announcement we will listen to their side of the story. Surely as Paul M suggests his motives were different from a few others. Nevertheless it is something that people have noticed and raised concern about. I think the vBorg staff is on top of things and updated their site policy in regards to these type of things and automatically included optional misuse of undocumented features; Saving them the future discussion of when people decide to do include backdoors or data-mining code, etc. |
Thread Tools | |
Display Modes | |
|
|
X vBulletin 3.8.12 by vBS Debug Information | |
---|---|
|
|
More Information | |
Template Usage:
Phrase Groups Available:
|
Included Files:
Hooks Called:
|