The Arcive of Official vBulletin Modifications Site.It is not a VB3 engine, just a parsed copy! |
|
|
|||||||
|
#161
05-22-2006, 02:47 AM
|
|||
|
|||
Quote:
Quote:
|
|
#162
05-22-2006, 02:48 AM
|
|||
|
|||
|
wow is all i can say from readin this thread... i known of one that had it but it was removed right away and fixed... but i think things are getting a lil crazy around here anymore... and its time for the staff to take actions against these people... i think it would be wise to post the coders that have done it... this way it lets them know it wont be tolerated and has been noticed.... i guess its time to watch out what im installin and look over the code first... ashame that it now comes to this.... just one more hurdle this week for vb.org
|
|
#165
05-22-2006, 03:32 AM
|
|||
|
|||
|
I guess at this point, the only way to find out which hacks have the "install" code is to look through it yourself. And I'd still like an answer as to why this wasn't in the readme files? Why does that keep getting overlooked?
|
|
#166
05-22-2006, 03:38 AM
|
||||
|
||||
|
The issue has been dealt with and plans or in the works to make sure this never happens again. As was said in this thread, it was a small non-intrusive item but we are working to avoid ANY such instances in the future.
|
|
#167
05-22-2006, 03:49 AM
|
|||
|
|||
|
There seems to be some confusion at the extent of what has happened.
The issues that have been made public, are completely harmless. They are not backdoors into your forum. They will not break your forum. The issue here is that some coders implemented a way to automatically click "Install" on vb.org whenever a product/plug-in was uploaded. The reason why we've decided to let users know about this, is because most of the time this happens with out the Admin's consent. The "backdoor" involved here was with www.vbulletin.org, not your forum. External GET requests we're not being checked, which allowed certain authors to do this, but we now have blocked anything like this. Your forum was never in jeopardy. Marco has bolded various statements in his post that further clarify this statement. We will not give out the names of the coders who did this, because it is not needed. This new policy was put in place because we became aware that some products/plugins had unethical (not to be mistaken with HARMFUL) code in them, and the staff felt that any unethical code should not be tolerated. Harmful code was never (and never will be) tolerated on vbulletin.org. |
|
#169
05-22-2006, 05:21 AM
|
||||
|
||||
|
Nothing here is 'verified' as such. The only person/people you could POSSIBLY have a claim against would be Hacks posted by vBulletin staff, and even then..it is up to you, the end-user, to determine whether these hacks are "unsafe".
Really, anyone who installs 3rd-party modifications on their site without verifying the integrity of the code is asking for trouble. FYI: I probably have some of these hacks installed. I care very little. I click INSTALL on everything I install, both to show respect to the author and to keep track of the hacks I have installed. I don't install hacks provided by.. well, lets just say I only install hacks written by people I trust. I developed that trust by following threads here and working out who was an honourable person. |
|
#170
05-22-2006, 05:28 AM
|
||||
|
||||
|
Quote:
|
 |
«
Previous Thread
|
Next Thread
»
Linear Mode
|
|
All times are GMT. The time now is 05:37 AM.