1697 replies to this topic

[PokeAcer]

cossacksson, on 01 June 2015 - 08:18 PM, said:

PokeAcer, on 01 June 2015 - 03:01 PM, said:

Lion4ever, on 01 June 2015 - 08:27 AM, said:

Is it intended that most functions of the computercraft program remain in the environment after the program was closed?

This way any other program on the computer can transfer your money anywhere by calling wallet() and sending fake events (no password needed, because it was allready typed in).

An other way to steal money could be overwriting htttp.get(), but I dont know want to do about that.

To see which functions are not local you could use the local-checker *cough* shameless self promotion *cough* />

In some applications that'd be good - allow shops to work fully. You run wallet, exit wallet, it charges you, reboot pc.

I guess, but it is still an accidental feature and probably has more bad consequences than good. This will be patched in release 12.

True - In theory a server could make 'Krist Wallet' PCs that just contain some code that runs the wallet, exit, it sends all your krist to them and reboot.

[biggest yikes]

Wait, ?getdomainaward == ?namebonus, right? I don't want to have to update KristAPI (*cough cough* shameless self promotion *cough cough*) to fix that

Edited by Atenefyr, 01 June 2015 - 08:51 PM.

[クデル]

PokeAcer, on 01 June 2015 - 08:25 PM, said:

cossacksson, on 01 June 2015 - 08:18 PM, said:

PokeAcer, on 01 June 2015 - 03:01 PM, said:

Lion4ever, on 01 June 2015 - 08:27 AM, said:

Is it intended that most functions of the computercraft program remain in the environment after the program was closed?

This way any other program on the computer can transfer your money anywhere by calling wallet() and sending fake events (no password needed, because it was allready typed in).

An other way to steal money could be overwriting htttp.get(), but I dont know want to do about that.

To see which functions are not local you could use the local-checker *cough* shameless self promotion *cough* />/>

In some applications that'd be good - allow shops to work fully. You run wallet, exit wallet, it charges you, reboot pc.

I guess, but it is still an accidental feature and probably has more bad consequences than good. This will be patched in release 12.

True - In theory a server could make 'Krist Wallet' PCs that just contain some code that runs the wallet, exit, it sends all your krist to them and reboot.

Not in theory, I actually set something like this up on Lua Land, was surprisingly effective

[Pyuu]

Sandstorm, on 01 June 2015 - 10:53 PM, said:

Not in theory, I actually set something like this up on Lua Land, was surprisingly effective

Probably not the place to confess to doing that. xD

[クデル]

Mayushii, on 02 June 2015 - 03:36 AM, said:

Sandstorm, on 01 June 2015 - 10:53 PM, said:

Not in theory, I actually set something like this up on Lua Land, was surprisingly effective

Probably not the place to confess to doing that. xD

It was literally infront of coss and another server owner, they didn't mind... xD

[Pyuu]

Sandstorm, on 02 June 2015 - 04:03 AM, said:

Mayushii, on 02 June 2015 - 03:36 AM, said:

Sandstorm, on 01 June 2015 - 10:53 PM, said:

Not in theory, I actually set something like this up on Lua Land, was surprisingly effective

Probably not the place to confess to doing that. xD

It was literally infront of coss and another server owner, they didn't mind... xD

So mean, if that was my Krist that I spent probably the last week getting then I'd be a bit mad.

[クデル]

Mayushii, on 02 June 2015 - 04:17 AM, said:

Sandstorm, on 02 June 2015 - 04:03 AM, said:

Mayushii, on 02 June 2015 - 03:36 AM, said:

Sandstorm, on 01 June 2015 - 10:53 PM, said:

Not in theory, I actually set something like this up on Lua Land, was surprisingly effective

Probably not the place to confess to doing that. xD

It was literally infront of coss and another server owner, they didn't mind... xD

So mean, if that was my Krist that I spent probably the last week getting then I'd be a bit mad.

Yeah I've had mine stolen before, it wasn't very fun... *cough* lur *cough*

[Pyuu]

Sandstorm, on 02 June 2015 - 04:39 AM, said:

Yeah I've had mine stolen before, it wasn't very fun... *cough* lur *cough*

Yeah, I noticed a comment in the database saying something about "Lur's account stealer".
Honestly, if you want the best of security, use it on an emulator, that way no one can tamper with it.

[Tron]

Ceriat.net (And because of that, ceriat.net/krist) seems to be down.

[PokeAcer]

Umm, IP down too. What's happened people?

[Pyuu]

luker2009, on 02 June 2015 - 04:11 PM, said:

Ceriat.net (And because of that, ceriat.net/krist) seems to be down.

PokeAcer, on 02 June 2015 - 04:30 PM, said:

Umm, IP down too. What's happened people?

Servers are down obviously.
Coss'll get on in a while and fix things.

[3d6]

I'm getting tons of emails and apparently Ceriat is down.

Critical failure, all sites offline, blah blah, we'll be online at about 5 PM tomorrow in Chicago time, whenever that is

[Pyuu]

cossacksson, on 02 June 2015 - 05:25 PM, said:

I'm getting tons of emails and apparently Ceriat is down.

Critical failure, all sites offline, blah blah, we'll be online at about 5 PM tomorrow in Chicago time, whenever that is

That'll be 28 hours, 32 minutes from the time this post is made.

[Xerxes]

cossacksson, on 02 June 2015 - 05:25 PM, said:

I'm getting tons of emails and apparently Ceriat is down.

Critical failure, all sites offline, blah blah, we'll be online at about 5 PM tomorrow in Chicago time, whenever that is

Any particular reason for this downtime?

[3d6]

Xerxes, on 02 June 2015 - 08:35 PM, said:

cossacksson, on 02 June 2015 - 05:25 PM, said:

I'm getting tons of emails and apparently Ceriat is down.

Critical failure, all sites offline, blah blah, we'll be online at about 5 PM tomorrow in Chicago time, whenever that is

Any particular reason for this downtime?

Not sure yet. I won't be home for a bit because of joint custody.

Atenefyr, on 01 June 2015 - 08:46 PM, said:

Wait, ?getdomainaward == ?namebonus, right? I don't want to have to update KristAPI (*cough cough* shameless self promotion *cough cough*) to fix that

Yeah, I actually forgot I did ?namebonus when I made ?getdomainaward.

They look slightly different on the server but act the same exact way.

[Pyuu]

Apparently only 3-4 more hours until servers go back up, let's hope that's the case.

[Tron]

Krist is back!

[Xerxes]

What the hell is on ceriat.net's homepage? xD

[PokeAcer]

It is not to be questioned

[Tron]

Wow that difficulty, I don't think it's been this high in a while.

Edited by luker2009, 04 June 2015 - 01:25 AM.