These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE General Discussion

 
  • Topic is locked indefinitely.
12Next page
 

Linking forum threads in-game

First post First post
Author
Cozmik R5
Chez Stan
#1 - 2011-09-08 01:05:05 UTC
So, because the forums are "https" and the game client already has an "http://" to web links, we now cannot link forum threads in channel MOTD's and such.

You vikings are smoking some extremely strong stuff up there. Maybe you should cut down.

Jeeezzz...

Try not. Do. Or do not. There is no try.

Mehrdad Kor-Azor
Doomheim
#2 - 2011-09-08 01:14:05 UTC
It's not that they're smoking funky things.

The pickled herring does strange things to the mind...
Tiven loves Tansien
Doomheim
#3 - 2011-09-08 01:20:47 UTC
Have trust and confidence in CCP.

They will fix it.




looooooooooooooooooooooooooooooooooooooooooooooooooooooooool LolLolLolLolLolLolLolLolLolLol
CCP Glaka
C C P
C C P Alliance
#4 - 2011-09-08 01:39:21 UTC  |  Edited by: CCP Glaka
Cozmik R5 wrote:
So, because the forums are "https" and the game client already has an "http://" to web links, we now cannot link forum threads in channel MOTD's and such.

You vikings are smoking some extremely strong stuff up there. Maybe you should cut down.

Jeeezzz...


Thank you.
I'll look at this tomorrow morning.

HOHOHO

Kerppe Krulli
Doomheim
#5 - 2011-09-08 01:55:10 UTC  |  Edited by: Kerppe Krulli
I would hire a new intern for this project. You should have fired him the last time you put these crappy forums up but to let them continue to strip ALL usability from a forum is a new level of fail on CCP's part.

I said it earlier. HTTPS implementation was merely a patchwork because CCP has nobody versed in forum security. Instead of learning something or hiring someone who knows something, they simply went with HTTPS. Hint to CCP: https is designed for specific instances. Unless you are sharing sensitive financial information with this site why the hell are you using https instead of programing proper scrubs, checks, and simple urls.

Browsing the forum with your url structure I've learned quite a bit about your database structure since you expose so much in the url. This thing will likely be taken down with some injection attacks which your https scheme can't stop. You need proper coding. Oh don't say you can't do simple urls, I've looked at the highlights of yaf and simple urls is one of their listing points (not selling point since it is freeware). instead you don't know how to implement or chose not to when you really messed with the coding.

edit: open the pages in a simple DOM viewer. almost all your code is plain text, you only used obfuscate on direct path in the code. OMG why would you put full paths in your publicly view-able code??
Eternum Praetorian
Doomheim
#6 - 2011-09-08 02:51:23 UTC  |  Edited by: Eternum Praetorian
Kerppe Krulli wrote:
I would hire a new intern for this project. You should have fired him the last time you put these crappy forums up but to let them continue to strip ALL usability from a forum is a new level of fail on CCP's part.

I said it earlier. HTTPS implementation was merely a patchwork because CCP has nobody versed in forum security. Instead of learning something or hiring someone who knows something, they simply went with HTTPS. Hint to CCP: https is designed for specific instances. Unless you are sharing sensitive financial information with this site why the hell are you using https instead of programing proper scrubs, checks, and simple urls.

Browsing the forum with your url structure I've learned quite a bit about your database structure since you expose so much in the url. This thing will likely be taken down with some injection attacks which your https scheme can't stop. You need proper coding. Oh don't say you can't do simple urls, I've looked at the highlights of yaf and simple urls is one of their listing points (not selling point since it is freeware). instead you don't know how to implement or chose not to when you really messed with the coding.

edit: open the pages in a simple DOM viewer. almost all your code is plain text, you only used obfuscate on direct path in the code. OMG why would you put full paths in your publicly view-able code??



I have no idea what you just said...
But Daym...


It smells like CCP really can't program? ShockedShocked



I was under the impression that we were just trolling them when we say that they can't...

[center]The EVE Gateway Blog[/center] [center]One Of EVE Online's Ultimate Resources[/center]

Rented
Hunter Heavy Industries
#7 - 2011-09-08 03:04:31 UTC
Eternum Praetorian wrote:



I have no idea what you just said...
But Daym...


It smells like CCP really can't program? ShockedShocked



I was under the impression that we were just trolling them when we say that they can't...


CCP incompetence is very real, and very scary.
Crunchmeister
The Scope
Gallente Federation
#8 - 2011-09-08 03:17:33 UTC
Tiven loves Tansien wrote:
Have trust and confidence in CCP.

They will fix it.




looooooooooooooooooooooooooooooooooooooooooooooooooooooooool LolLolLolLolLolLolLolLolLolLol


Soon™

People were constantly telling me I was crazy. For a long time I didn't believe them, but after a while, I started to think they might be right.

But it turns out that they were all wrong. One of the voices in my head is a psychiatrist and he says I'm perfectly sane.

Abrazzar
Vardaugas Family
#9 - 2011-09-08 04:22:50 UTC
CCP Glaka wrote:
Cozmik R5 wrote:
So, because the forums are "https" and the game client already has an "http://" to web links, we now cannot link forum threads in channel MOTD's and such.

You vikings are smoking some extremely strong stuff up there. Maybe you should cut down.

Jeeezzz...


Thank you.
I'll look at this tomorrow morning.

The smoking or the linking?P
ISD Libertina
ISD STAR
ISD Alliance
#10 - 2011-09-08 09:19:27 UTC
A workaround to get https links into your MotDs is to use the html url tags like this:

< url=https://forums.eveonline.com/default.aspx?g=topics&f=256>EVE Trial Citizens Q&A Forum< /url>

Remove the whitespaces in the tags, adjust page and display text and copy and paste it into the MotD.

Libertina - Vice Admiral

Support, Training And Resources

Interstellar Services Department

Cozmik R5
Chez Stan
#11 - 2011-09-08 09:25:36 UTC
Well, maybe the devs should make a sticky about this because I'm pretty sure I'm not the only one to use links to forum thread in a channel's MOTD. Or at least post a list of the codes we can use while someone works (!) on making this more use-friendly. Wishful thinking, I know.

Try not. Do. Or do not. There is no try.

Capn Orgasmo
Dmacks Minnions
#12 - 2011-09-08 09:27:39 UTC
Abrazzar wrote:
CCP Glaka wrote:
Cozmik R5 wrote:
So, because the forums are "https" and the game client already has an "http://" to web links, we now cannot link forum threads in channel MOTD's and such.

You vikings are smoking some extremely strong stuff up there. Maybe you should cut down.

Jeeezzz...


Thank you.
I'll look at this tomorrow morning.

The smoking or the linking?P


Hopefully not both at the same time, they will manage to stick a boot.ini in there somewhere, somehow.

/le tinfoil
Cozmik R5
Chez Stan
#13 - 2011-09-08 09:31:42 UTC
@ISD Libertina: it doesn't work.

Try not. Do. Or do not. There is no try.

ISD Libertina
ISD STAR
ISD Alliance
#14 - 2011-09-08 09:40:45 UTC
Cozmik R5 wrote:
@ISD Libertina: it doesn't work.


That is weird, I tested it ingame just before I posted. Have you removed the whitespaces from both tags; the < url=... and the < /url> one? (They are only in there to allow me to post them on the forum.)

Removing both and copying the whole thing into the MotD, works for me. (I just tried it again.)
You do have to remove them prior to pasting into the MotD, using Notepad or something similar.

Libertina - Vice Admiral

Support, Training And Resources

Interstellar Services Department

Cozmik R5
Chez Stan
#15 - 2011-09-08 09:53:44 UTC
Positive that there were no spaces in my attempt.

Try not. Do. Or do not. There is no try.

Vicker Lahn'se
Republic Military School
Minmatar Republic
#16 - 2011-09-08 10:52:51 UTC
Kerppe Krulli wrote:
I would hire a new intern for this project. You should have fired him the last time you put these crappy forums up but to let them continue to strip ALL usability from a forum is a new level of fail on CCP's part.

I said it earlier. HTTPS implementation was merely a patchwork because CCP has nobody versed in forum security. Instead of learning something or hiring someone who knows something, they simply went with HTTPS. Hint to CCP: https is designed for specific instances. Unless you are sharing sensitive financial information with this site why the hell are you using https instead of programing proper scrubs, checks, and simple urls.

Browsing the forum with your url structure I've learned quite a bit about your database structure since you expose so much in the url. This thing will likely be taken down with some injection attacks which your https scheme can't stop. You need proper coding. Oh don't say you can't do simple urls, I've looked at the highlights of yaf and simple urls is one of their listing points (not selling point since it is freeware). instead you don't know how to implement or chose not to when you really messed with the coding.

edit: open the pages in a simple DOM viewer. almost all your code is plain text, you only used obfuscate on direct path in the code. OMG why would you put full paths in your publicly view-able code??


And how does knowing the information contained in the url allow you to cause harm?
Alexandra Alt
Doomheim
#17 - 2011-09-08 11:14:49 UTC
Vicker Lahn'se wrote:
Kerppe Krulli wrote:
I would hire a new intern for this project. You should have fired him the last time you put these crappy forums up but to let them continue to strip ALL usability from a forum is a new level of fail on CCP's part.

I said it earlier. HTTPS implementation was merely a patchwork because CCP has nobody versed in forum security. Instead of learning something or hiring someone who knows something, they simply went with HTTPS. Hint to CCP: https is designed for specific instances. Unless you are sharing sensitive financial information with this site why the hell are you using https instead of programing proper scrubs, checks, and simple urls.

Browsing the forum with your url structure I've learned quite a bit about your database structure since you expose so much in the url. This thing will likely be taken down with some injection attacks which your https scheme can't stop. You need proper coding. Oh don't say you can't do simple urls, I've looked at the highlights of yaf and simple urls is one of their listing points (not selling point since it is freeware). instead you don't know how to implement or chose not to when you really messed with the coding.

edit: open the pages in a simple DOM viewer. almost all your code is plain text, you only used obfuscate on direct path in the code. OMG why would you put full paths in your publicly view-able code??


And how does knowing the information contained in the url allow you to cause harm?


Heheheh, web designers trying to make smart remarks about web application development makes me giggle, it causes no harm whatsoever, there might be issues (as per Hellicity twitter post even today) but they're not certainly due to how stuff is obfuscated or not.

Btw, obfuscation (js) primary purpose is not to keep you away from understanding the code, but in browser js engine processing speed up, as it's often translated in to smaller code (thus less text) and better (test proven) fashion to increase speed, besides, many js libs already come 'optimized' (commonly mistakenly called obfuscated).
Nyio
Federal Navy Academy
Gallente Federation
#18 - 2011-09-08 11:18:11 UTC
Homer Simpson wrote:
D'oh!
Steve Ronuken
Fuzzwork Enterprises
Vote Steve Ronuken for CSM
#19 - 2011-09-08 15:23:51 UTC
Just to squelch a little misinformation:

https is good. It's not a panacea, and won't fix poor security, but without it

A: when you log in, your password is visible to everyone between your and the site you're working with. Unless, perhaps, you get funky with javascript and a changing hash. (or use digest auth. but that's very rare)
B: your session is vulnerable to hijacking by anyone between you and the site you're working with.

Short form: https = good. Don't belittle people for using it. Only if it's /all/ that's been done.

Woo! CSM XI!

Fuzzwork Enterprises

Twitter: @fuzzysteve on Twitter

CCP Glaka
C C P
C C P Alliance
#20 - 2011-09-08 15:36:11 UTC
CCP Glaka wrote:
Cozmik R5 wrote:
So, because the forums are "https" and the game client already has an "http://" to web links, we now cannot link forum threads in channel MOTD's and such.

You vikings are smoking some extremely strong stuff up there. Maybe you should cut down.

Jeeezzz...


Thank you.
I'll look at this tomorrow morning.


This has now been fixed with a proper redirect from http:// to https://
So when you link a forum link on MOTD just use the http:// instead of https://

Enjoy Big smile

HOHOHO

12Next page