1. SPS Accounts:
    Do you find yourself coming back time after time? Do you appreciate the ongoing hard work to keep this community focused and successful in its mission? Please consider supporting us by upgrading to an SPS Account. Besides the warm and fuzzy feeling that comes from supporting a good cause, you'll also get a significant number of ever-expanding perks and benefits on the site and the forums. Click here to find out more.
    Dismiss Notice
Dismiss Notice
You are currently viewing Boards o' Magick as a guest, but you can register an account here. Registration is fast, easy and free. Once registered you will have access to search the forums, create and respond to threads, PM other members, upload screenshots and access many other features unavailable to guests.

BoM cultivates a friendly and welcoming atmosphere. We have been aiming for quality over quantity with our forums from their inception, and believe that this distinction is truly tangible and valued by our members. We'd love to have you join us today!

(If you have any problems with the registration process or your account login, please contact us. If you've forgotten your username or password, click here.)

BoM Arcade Temporarily Offline

Discussion in 'Sorcerous Sundries' started by Taluntain, Aug 30, 2011.

  1. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    [​IMG] I've received a warning that the arcade mod that we're using has been quarantined, which means that a very serious exploit has been discovered within the mod. As there is no fix for the exploit at present, as a precaution I've disabled the mod completely until a fix for the security issue is provided.

    To the best of my knowledge, we have not been affected by the exploit in any way. I'll update this thread with new information as I receive it.
     
  2. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    I've updated the arcade to the latest version, so it's usable again. I'll add some new games shortly as well.
     
  3. Splunge

    Splunge Bhaal’s financial advisor Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!)

    Joined:
    Jun 7, 2003
    Messages:
    6,815
    Media:
    6
    Likes Received:
    336
    Like Gears of War 3?
     
  4. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    The arcade version would probably be Gits of War 23...
     
  5. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    OK, we're repeating the drill, another security hole has been found so the arcade is offline temporarily. It should be back up in a day or two.
     
  6. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    The arcade mod has since been reinstated, but quite honestly I don't feel comfortable enabling it on BoM again. This is the second time in about half a year that a serious exploit for it has been discovered. The author hasn't really made any significant mod updates in years now so it's just an accident waiting to happen at this point. A number of forums have been exploited via the latest vulnerability and I don't want to play this lottery with our own board any longer.

    So I'll be looking for alternatives, which will hopefully be better than our old arcade. Stay tuned...
     
  7. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    Since the alternative I'd like to switch to isn't available for the version of vB we're currently running I've reinstated the old arcade for the time being (with fixes, of course). Have fun...
     
  8. Taluntain

    Taluntain Resident Alpha and Omega Staff Member ★ SPS Account Holder Resourceful Adored Veteran Pillars of Eternity SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) New Server Contributor [2012] (for helping Sorcerer's Place lease a new, more powerful server!) Torment: Tides of Numenera SP Immortalizer (for helping immortalize Sorcerer's Place in the game!) BoM XenForo Migration Contributor [2015] (for helping support the migration to new forum software!)

    Joined:
    Jun 11, 2000
    Messages:
    23,475
    Media:
    494
    Likes Received:
    538
    Gender:
    Male
    I'm sorry to report that another exploit in the arcade script has resulted in all the score result comments being wiped out and replaced with "a" and similar. I only noticed this a few days ago unfortunately so I have no idea how far back this issue has come up since nobody has reported it. For future reference, people - if you see something that looks off, PLEASE LET ME KNOW IMMEDIATELY!

    I have applied a fix that supposedly prevents this from happening again, but there's no way to undo the damage done, so all the comments have basically been lost. I'm obviously very unhappy with this since the mod creator didn't even bother to issue a warning mail or a new mod version to address this which would likely have resulted in my patching it in time, but given all the other exploits with this mod it's not really surprising since it's basically been abandoned.

    I'm hoping that comments made from now on will keep, at least...
     
    Last edited: Jan 24, 2013
  9. Erod Gems: 14/31
    Latest gem: Chrysoberyl


    Veteran

    Joined:
    May 21, 2005
    Messages:
    652
    Likes Received:
    3
    It happened probably a year ago or so. I was going to report it but I forgot because I have not visited the arcade in a long time. Good to know that is is fixed though.
     
  10. Montresor

    Montresor Mostly Harmless Staff Member ★ SPS Account Holder

    Joined:
    Aug 11, 2005
    Messages:
    3,103
    Media:
    127
    Likes Received:
    183
    Gender:
    Male
    I noticed it when the arcade came back up so I just assumed the comments had been wiped at the same time.
     
Sorcerer's Place is a project run entirely by fans and for fans. Maintaining Sorcerer's Place and a stable environment for all our hosted sites requires a substantial amount of our time and funds on a regular basis, so please consider supporting us to keep the site up & running smoothly. Thank you!

Sorcerers.net is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to products on amazon.com, amazon.ca and amazon.co.uk. Amazon and the Amazon logo are trademarks of Amazon.com, Inc. or its affiliates.