These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE General Discussion

 
  • Topic is locked indefinitely.
 

exploit vs. sloppy game mechanic design
Author
Previous Topic Next Topic
Blastcaps Madullier
Handsome Millionaire Playboys
Sedition.
#281 - 2012-06-25 17:26:48 UTC
Lord Zim wrote:
Frying Doom wrote:
They broke the rules, pure and simple.

Frying Doom wrote:
They should be punished pure and simple.

At the time of the actions in question, it was not deemed an exploit, and it was not utilizing a programming bug. Exactly like insurance fraud, PI, PA, titan bowling and tracking titans etc etc etc. Which means that the way CCP is handling matters of this type has changed in this case.

Frying Doom wrote:
They rubbed CCP's face in it, pure and simple.

Are you trying to say that the reaction is a revenge act?


It maybe CCP are changing in general how they handle things like this from now on, just because in the past for whatever reason they might have let things slide or taken a more hands off approach doesn't follow their going to keep doing the same regardless, might be a case of they've reached the point of saying "enough is enough" and started tightening up on things.
Opodiphthera Eucalypti Lepdoptera
Doomheim
#282 - 2012-06-25 17:30:35 UTC
Elysium Foxx wrote:
Just because CCP had not officially stated that the vulnerability was an exploit, it does not mean it wasn't an exploit.

If I discovered a new way to hack into your personal computer that nobody else knew about, therefore it was not documented, and I proceeded to hack into your computer using this vulnerability - would that be OK with you? Since nobody has said that i can't do it - your firewalls, security measures and operating system are working as intended. SO you should be fine with me poking my nose around in your PC? - no, it is exploiting a vulnerability to do something illegal, whether its is documented or not.

Your arguments hold no weight. It was abuse of a vulnerability in the game mechanics, which IS by definition called an exploit.
The OP of the 4x4 thread stated it was an exploit himself.
CCP's own rules state that anybody knowingly abusing an exploit can be punished.

So, previous exploits like the PI bug, PA, and Insurance payouts, and all these others you keep mentioning obviously were not punished hard enough, since people still think they can get away with abusing exploits - to the point where they gloat about it on the forums, rub the game designers face in it, and make a mockery of the game itself and those who play it.

Its time CCP HTFU and make an example of these arrogant cheaters with extreme punishment that clearly says - "if you break the rules, you gonna pay for it". This might actually deter future attacks on the game, instead of the lame slap on the wrist, oh you naughty pod pilot stuff we have seen in the past. The guys who did this are not idiots, they know what they did was wrong.

This will in no way "break the sandbox". Even the sandbox needs rules to maintain the integrity of sandbox style play.

Initially i was of the opinion that just taking the profits away would be enough of a punishment - i now believe bans are in order for those involved.

CCP - you need to send a clear message to overt future abuse of your product, otherwise people will continue to ruin your game.


Exploiting a bug is illegal. There was no bug. It was a legal exploitation of weak game mechanics design.
Now tell the truth, will ya. You just want to whip someone you meanie.

I believe the Goons who pulled this noticed how broken and how bad this was to the game so they posted about it. Since they did it for the good of the game I don't think they will mind having the assets gained from this exploit confiscated as it's evidently gamebreaking.

Now they are stating that CCP removed more datacores than they got from exploiting. They call it punishment, but I think that's because of some guilty complex because of all the damage they do. I believe it was just a mistake from CCP but the truth is I don't have access to Goons assets to evaluate what really happened and how bad it is. Few of us do.
Elysium Foxx
Republic Military School
Minmatar Republic
#283 - 2012-06-25 17:33:26 UTC
Blastcaps Madullier wrote:

It maybe CCP are changing in general how they handle things like this from now on, just because in the past for whatever reason they might have let things slide or taken a more hands off approach doesn't follow their going to keep doing the same regardless, might be a case of they've reached the point of saying "enough is enough" and started tightening up on things.


That wouldn't surprise me at all.

I know if i was a one of the game dev's, especially one who had worked on the latest expansion, i would not want people like this to be part of the EVE community. They made them look like fools, when they could have just as easily informed them of the exploit with supporting evidence ( the uber nerd spreadsheet ) to back up the claims.
Major Killz
inglorious bastards.
#284 - 2012-06-25 17:34:25 UTC
Elysium Foxx wrote:
Just because CCP had not officially stated that the vulnerability was an exploit, it does not mean it wasn't an exploit.

If I discovered a new way to hack into your personal computer that nobody else knew about, therefore it was not documented, and I proceeded to hack into your computer using this vulnerability - would that be OK with you? Since nobody has said that i can't do it - your firewalls, security measures and operating system are working as intended. SO you should be fine with me poking my nose around in your PC? - no, it is exploiting a vulnerability to do something illegal, whether it is documented or not.

Your arguments hold no weight. It was abuse of a vulnerability in the game mechanics, which IS by definition called an exploit.
The OP of the 4x4 thread stated it was an exploit himself.
CCP's own rules state that anybody knowingly abusing an exploit can be punished.

So, previous exploits like the PI bug, PA, and Insurance payouts, and all these others you keep mentioning obviously were not punished hard enough, since people still think they can get away with abusing exploits - to the point where they gloat about it on the forums, rub the game designers face in it, and make a mockery of the game itself and those who play it.

Its time CCP HTFU and make an example of these arrogant cheaters with extreme punishment that clearly says - "if you break the rules, you gonna pay for it". This might actually deter future attacks on the game, instead of the lame slap on the wrist, oh you naughty pod pilot stuff we have seen in the past. The guys who did this are not idiots, they know what they did was wrong.

This will in no way "break the sandbox". Even the sandbox needs rules to maintain the integrity of sandbox style play.

Initially i was of the opinion that just taking the profits away would be enough of a punishment - i now believe bans are in order for those involved.

CCP - you need to send a clear message to overt future abuse of your product, otherwise people will continue to ruin your game.


Hacking is general. With regard to hacking accounts? There are so many qualifiers with that in mind. Rules with regard to hacking accounts is p defined by CCP and other rules. Not so much. You can't make a general statement regarding exploits, because it covers so much of what 's done ingame. CCP should come out with a definition and state exclusions. That's how legislations and laws in real life.

Point is. You seem to have miss-construe 2 very different rules. One that is very defined and another that is vague. Something is not a illegal exploit untill CCP has written some sort of presidence. This whole thing has been blown out of proportion. People make mistakes and systems fail. Your learn from it, fix it and move on. CCP will cont. to make mistakes and learn from them. There player base will cont. to push the limits of the game, WITHIN THE RULES. Which is one of the greatest assets of the game. CCP should not punish players for doing what this game was intended to allow to do untill CCP sees issues with its systems and mechanics and how it affects other players.

[u]Ich bin ein Pirat ![/u]
Elysium Foxx
Republic Military School
Minmatar Republic
#285 - 2012-06-25 17:35:58 UTC
the example was purely to explain that making use of a vulnerability - documented or not - is actually an exploit.
Mortimer Civeri
Aliastra
Gallente Federation
#286 - 2012-06-25 17:59:52 UTC  |  Edited by: Mortimer Civeri
Elysium Foxx wrote:
Just because CCP had not officially stated that the vulnerability was an exploit, it does not mean it wasn't an exploit.
Until CCp says something is, it isn't.
Quote:
If I discovered a new way to hack into your personal computer that nobody else knew about, therefore it was not documented, and I proceeded to hack into your computer using this vulnerability - would that be OK with you? Since nobody has said that i can't do it - your firewalls, security measures and operating system are working as intended. SO you should be fine with me poking my nose around in your PC? - no, it is exploiting a vulnerability to do something illegal, whether it is documented or not.
Well you see, you hacking into my computer in the first place is illegal, there are already laws on the books that make it so, and despite finding a novel undocumented way to do it will still get you arrested. All CCP had to do was state that there was an exploit, and anybody abusing that exploit would be punished.

Let's turn this around and say that if there were no laws stating that hacking into someones computer was illegal, I couldn't do anything if you did, and nothing could be done to you, until there was a law stating you couldn't, and be arrested and jailed for doing so. Say you are in a world where there is no hacking law, and you go about doing just that without a care in the world, untill you find out that the world made a new law stating that hacking into someone elses computer was now illegal. Guess what, you are fine, because up untill they made the new law, nobody could touch you for hacking into their computer, and everything you did before was legal, they can't go after you because that is Ex post facto.
Quote:
Your arguments hold no weight. It was abuse of a vulnerability in the game mechanics, which IS by definition called an exploit. The OP of the 4x4 thread stated it was an exploit himself. CCP's own rules state that anybody knowingly abusing an exploit can be punished.
Wasn't an exploit until CCP said something. Lol
Quote:
So, previous exploits like the PI bug, PA, and Insurance payouts, and all these others you keep mentioning obviously were not punished hard enough, since people still think they can get away with abusing exploits - to the point where they gloat about it on the forums, rub the game designers face in it, and make a mockery of the game itself and those who play it.
straw man. until CCP said that they were exploits they were valid game mechanics, and legal to do. They couldn't do anything to them for exploiting it, up untill they said something about it being an exploit. (and suddenly your strawman goes *POOF*)
Quote:
Its time CCP HTFU and make an example of these arrogant cheaters with extreme punishment that clearly says - "if you break the rules, you gonna pay for it". This might actually deter future attacks on the game, instead of the lame slap on the wrist, oh you naughty pod pilot stuff we have seen in the past. The guys who did this are not idiots, they know what they did was wrong. This will in no way "break the sandbox". Even the sandbox needs rules to maintain the integrity of sandbox style play. Initially i was of the opinion that just taking the profits away would be enough of a punishment - i now believe bans are in order for those involved. CCP - you need to send a clear message to overt future abuse of your product, otherwise people will continue to ruin your game.
Yes lets punish everybody for breaking the rules EX POST FACTO! Oh wait they all did this before we declaired it an exploit, well carry on then, but if we catch you doing it anymore you are in trouble. Evil

"I don't know which is worse, ...that everyone has his price, or that the price is always so low." Calvin
Ravan Hekki
Caldari Provisions
Caldari State
#287 - 2012-06-25 18:05:37 UTC
I cant belive anyone still cares. Is there not a game to played somewhere behind all this posturing?
Mortimer Civeri
Aliastra
Gallente Federation
#288 - 2012-06-25 18:07:36 UTC
Ravan Hekki wrote:
I cant belive anyone still cares. Is there not a game to played somewhere behind all this posturing?

But this is the game. What game are you playing?

"I don't know which is worse, ...that everyone has his price, or that the price is always so low." Calvin
Antisocial Malkavian
Antisocial Malkavians
#289 - 2012-06-25 18:18:52 UTC  |  Edited by: Antisocial Malkavian
Opodiphthera Eucalypti Lepdoptera wrote:
Antisocial Malkavian wrote:


unless you dont count Sreeg as CCP then CCP disagrees in the thread that got locked. He says several times that it was an exploit



Need some reference. Afaik last comment locking the thread was a positive one.


CCP Sreegs:
By way of explanation we addressed the manipulation issue but haven't yet completed the investigation into the scope of the abuse. Once that happens I'm pretty sure some people are going to be a bit less smug about the money they made that one time when there was a bank error in their favor and then lost again when the bank fixed the glitch.

AureoBroker wrote:
Dear goons; again.
This is an exploit, that is a completely unintented use of game mechanics.
Tallon Sylph wrote:
We didn't intend for this game mechanic to work in the way that we designed it to work even though people repeatedly told us it was dumb.
CCP Sreegs wrote:
I can state 100% that we did not intend the mechanic to function this way.

CCP Sreegs wrote:
When do we get to the part where we stop pretending that a gap in the timing of value calculation (programming) wasn't what was being taken advantage of here? This wasn't just market manipulation it was taking advantage of a flaw in the code.
He seems to be agreeing but yeah he didnt use the word...
CCP Sreegs wrote:
We didn't nuke anything. Shared information post exploit is appreciated but let's not pretend this was shared with us prior to being taken advantage of.

What we took and what we'll be doing with it etc. are matters between us and the people who had the assets, not the forum community.

https://forums.eveonline.com/default.aspx?g=posts&m=1523795#post1523795

CCP Sreegs wrote:
It is absolutely true. It's even mentioned in the OP. That's not the entirety of the exploit of course but it does increase the damage window.

https://forums.eveonline.com/default.aspx?g=posts&m=1523656#post1523656

CCP Sreegs wrote:
I find it disturbing that you think you could exploit a system to print money and crash markets and we'd just be like "Oh haha those cards".

We haven't punished anyone to date. We haven't even decided if we will but boy howdy are we well within our rights to do so and I'm just astounded that I even have to explain that.

https://forums.eveonline.com/default.aspx?g=posts&m=1523304#post1523304

That enough?
Regardless, you know how you cover what you guys do with "its market manipulation"? Well your 5T loss is a "market correction".

Vicata Heth wrote:
Stop making comparisons to real life. Since when is EVE = Real Life?

You can't legally scam people in real life, or deliberately mislead people in contracts. Should people be punished for that too?

CCP reversed the ill gotten gains simply because it was too large an amount/too game breaking to let them keep it. Had they only obtained 1b from it, I'm willing to bet CCP would have left it alone and fixed the malfunction. Goons took it to large extremes though, and then expect to keep the ISK even though it has negative effects on the game.

Don't like it? Here's how you can fix it: http://bit.ly/Lw7sPe



CCP said EVE was real remember?

Blastcaps Madullier wrote:
Antisocial Malkavian wrote:


Also likely; Im a vampire. No sex drive

look it up. Malkavian


OMG they are here.
Beware.
Next winter Batman is coming to EVE.

Winter is coming :)


http://youtu.be/A_u2PMzFIYM

And, isn't sanity really just a one-trick pony anyway? I mean all you get is one trick, rational thinking, but when you're good and crazy, oooh, oooh, oooh, the sky is the limit.

Antisocial Malkavian
Antisocial Malkavians
#290 - 2012-06-25 18:27:48 UTC
Lord Zim wrote:
Antisocial Malkavian wrote:
Opodiphthera Eucalypti Lepdoptera wrote:
They are not being punished. CCP just made a mistake when fixing the mess from the FW design flaw.
Some datacores from Goonswarm assets that will probably be given back if they are telling the truth.


the datacores were part of it
lying Goons???

NO WAI

I'm going to just
pretend
Quote:
that some datacores were bought normally, prior to the FW debacle.


Cause unless you were there you dont know and the guys Im quoting WERE there



And, isn't sanity really just a one-trick pony anyway? I mean all you get is one trick, rational thinking, but when you're good and crazy, oooh, oooh, oooh, the sky is the limit.

Antisocial Malkavian
Antisocial Malkavians
#291 - 2012-06-25 18:31:15 UTC
Ravan Hekki wrote:
I cant belive anyone still cares. Is there not a game to played somewhere behind all this posturing?


The only ones that still care are Goons and those who have surgically connected their lips to the Goons' posteriors.

Given the lack of CCP posting on the topic (and a lack of a dev blog) even they dont seem to care

And, isn't sanity really just a one-trick pony anyway? I mean all you get is one trick, rational thinking, but when you're good and crazy, oooh, oooh, oooh, the sky is the limit.

Ziranda Hakuli
Brutor Tribe
Minmatar Republic
#292 - 2012-06-25 18:31:33 UTC
Corina Jarr wrote:
NO rule was broken. Goons abused a mechanic that CCP didn't think through.

Just like insurance. Just like the PA. Just like PI initially.

There is no rule against abusing intentional mechanics that are just bad ideas.




However, if CCP decides that the rules were broken, then I expect them to dish out the hand of punishment to everyone who made use of the mechanic. And everyone in FW who benefited.


i believe that it was once said in galaxy far far far away from here....ITS A TRAP!
Elysium Foxx
Republic Military School
Minmatar Republic
#293 - 2012-06-25 18:32:52 UTC  |  Edited by: Elysium Foxx
Mortimer Civeri wrote:

Well you see, you hacking into my computer in the first place is illegal, there are already laws on the books that make it so, and despite finding a novel undocumented way to do it will still get you arrested. All CCP had to do was state that there was an exploit, and anybody abusing that exploit would be punished.

You obviously misunderstood my very, very simple example that had nothing to do with legality, but to simply illustrate the fact that it doesn't matter whether a vulnerability is documented or not (in this case CCP saying, no don't do that, which they didn't), abusing a vulnerability is, by definition, exploiting a system. Which i think was a response to some idiot saying, "but but CCP didn't say we couldn't abuse the vulnerability - so it must be OK , derrr...huhuh."

It just so happens that this vulnerability was spoken about pre-inferno (documented / known of, - just not officially stated as such by CCP)... Its still a vulnerability open to exploitation.

Yes, It is up to CCP to decide if they deem it an exploit. It doesn't look promising that they wont though, since the definition of an exploit is;
"blah, blah...Or, an exploit can be a documented process to take advantage of a vulnerability or exposure, usually in software, that is inherent in the software or is created by the attacker. ....Blah blah."
Principles of Information Security (4th edition) Chapter 1, page10.
by Michael E. Whitman, Herbert J. Mattord.

I'm just not sure why, or how anybody can argue anything different. If they had discovered it by accident, then sure.
But we all know CCP will go easy on them : )
Opodiphthera Eucalypti Lepdoptera
Doomheim
#294 - 2012-06-25 19:13:28 UTC
@Antisocial Malkavian

Now paste the comments where the word "bug" comes before "exploit" and that's the ones where CCP says Goons broke the rules.
And yeah, they have the right to "punish". According to the EULA they can ban any account for any reason or no reason at all, but I dont believe those CCP'ers are such cowboys.

Sorry I cound't open the youtube link, I'm behind a firewall here. Will open it later.
Blastcaps Madullier
Handsome Millionaire Playboys
Sedition.
#295 - 2012-06-25 19:21:17 UTC
Opodiphthera Eucalypti Lepdoptera wrote:
@Antisocial Malkavian

Now paste the comments where the word "bug" comes before "exploit" and that's the ones where CCP says Goons broke the rules.
And yeah, they have the right to "punish". According to the EULA they can ban any account for any reason or no reason at all, but I dont believe those CCP'ers are such cowboys.

Sorry I cound't open the youtube link, I'm behind a firewall here. Will open it later.



use the tor browser addon, might be slow but gets round quite a few things :)

https://www.torproject.org/index.html.en
Quartzlight Evenstar Icefluxor
INLAND EMPIRE Operations
#296 - 2012-06-25 19:22:44 UTC
Elysium Foxx wrote:
They made them look like fools, when they could have just as easily informed them of the exploit with supporting evidence ( the uber nerd spreadsheet ) to back up the claims.


Exactly. And this is what the EULA Rules say must be done, and it was just exactly what was NOT done until much later and after exploitation.

That just does not seem to get through the thick skuls of the Goons, although most are under 20 yrs old and are obviously a part of the "I'm Uber-Entitled to everything in Life and will Lawyer my Way to Being Right" Generation.

My 21 year old neice astounds me with her claims to what she is entitled to. It's the way of the world now apparently. Does not make it right though, at all.

***
Lord Zim
Gallente Federation
#297 - 2012-06-25 19:24:24 UTC
Antisocial Malkavian wrote:
Lord Zim wrote:
Antisocial Malkavian wrote:
Opodiphthera Eucalypti Lepdoptera wrote:
They are not being punished. CCP just made a mistake when fixing the mess from the FW design flaw.
Some datacores from Goonswarm assets that will probably be given back if they are telling the truth.


the datacores were part of it
lying Goons???

NO WAI

I'm going to just
pretend
Quote:
that some datacores were bought normally, prior to the FW debacle.


Cause unless you were there you dont know and the guys Im quoting WERE there

OK, sure, don't believe me, then. It matters little to me.

Cyno's lit, bridge is up, but one pilot won't be jumping home.

RIP Vile Rat
Lord Zim
Gallente Federation
#298 - 2012-06-25 19:25:44 UTC
Quartzlight Evenstar Icefluxor wrote:
Elysium Foxx wrote:
They made them look like fools, when they could have just as easily informed them of the exploit with supporting evidence ( the uber nerd spreadsheet ) to back up the claims.


Exactly. And this is what the EULA Rules say must be done, and it was just exactly what was NOT done until much later and after exploitation.

That just does not seem to get through the thick skuls of the Goons, although most are under 20 yrs old and are obviously a part of the "I'm Uber-Entitled to everything in Life and will Lawyer my Way to Being Right" Generation.

So when we point out that everything was pointed out to CCP before they'd even released the code, t hat was still "post exploit"?

Cyno's lit, bridge is up, but one pilot won't be jumping home.

RIP Vile Rat
Quartzlight Evenstar Icefluxor
INLAND EMPIRE Operations
#299 - 2012-06-25 19:29:18 UTC
Lord Zim wrote:

So when we point out that everything was pointed out to CCP before they'd even released the code, t hat was still "post exploit"?



Provide proof of that.

I HIGHLY doubt that would be ignored by CCP. Your Mother would be ashamed at you for telling these White Lies.

I'm glad they are at least trying to clean up such nonsincical posters on the Forums finally. Been a long time coming.

And I have only 17 hours to live before turning off from this Sad FreakFest the game of EVE has tiresomely become. Good-bye.

***
adam smash
Department of Gub'nent Welfare
Harkonnen Federation
#300 - 2012-06-25 19:34:30 UTC
CCP mad they need to make something WORK nothing else.

WTF do they put out that works right from the start?

Sandbox BUT can't do somethings

Really CCP should stop calling this a sandbox. It is a sandbox of rules...

Space is cold and harsh but you better make sure not to do anything CCP does not like, better make sure not to say bad words in local, better make sure not to attack noobs... etc etc etc etc...

Sandbox my ass...


For once I'll say good for goons... this was no exploit... this was doing what the SANDBOX allowed.

CODE **** RIGHT THE FIRST TIME. GET PEOPLE WHO KNOW WTF THEY ARE DOING.