EVE Technology Lab

If you are saying siggy is buggy, my inbox is always open :P




evemail bugs/issues/complaints

Honestly, I didn't know who to approach about siggy. If you go to the site, it doesn't give you an email or even an eve username to get in touch with (unless I missed it).

I also checked most of the w-space groups I knew about, and when I found issues (which were with like 2 of the 10 I checked), I got in touch with the owners ASAP. Hell, no-ho.com was vulnerable for 12 hours or so.

As I said, I gave the site 36 hours or so to get fixed, and only posted here because I didn't see an alternative. I have nothing to gain or lose by siggy doing well, NOHO is currently a customer of theirs, and I don't want to see my alliancemates spied upon.

siggy says Y790 WH is 1bil, it's not.

And made my mailbox cry as a result.

Oh awesome, so not only do some idiots expect CSM members to adhere to some sort of magic standards, now even a year after I was on the CSM I still have to live by them? Can you please tell me what these magic standards are, nobody told me before I ran for CSM. If you look back at my forum posting history, I have always been like this, sorry if you got tricked into voting for me.

I am also so sorry I might have hurt siggy's clearly spectacular security reputation by revealing that it was in fact insecure for 3 days or so. I also am sorry I may have posted something that would have required the most cursory of google searches (or even to turn on the news) for people to learn what heartbleed was (though I have no idea why most people would care about the details, the issue was that information they thought was secure was not).

As for my intent, it was always to get siggy fixed. I don't *want* people to be able to know where people were. I don't want them to possibly be able to get other people's API keys, if people were registering for out of game access. I'm sorry if your feelings were hurt by me caring about that sort of stuff.

Could you please stop caring and just adhere to the magical set of rules and standards all Ex-CSM members must adhere to? kthx

Edit: Yeah the default webpage is just an apache landing page, you should probably get on that JACK.

MAKE IT EASIER FOR US TO ***** ***** AT YOU, LIKE WITH A CONTACT FORM OR SOMETHING

EDIT2: The content filter on the EVEO forums still skips the second curse word

Fixed.



That default domain landing page is on a different server. I have 4 different servers under the domain for different purposes.

Or even just your name/email, I would totally have reached out that way first!

TBH that is a bullshit reason, you honestly didn't know bahahaha. Every man and his dog knows who runs siggy, if you didn't want to contact his main then on siggy itself for a little effort (And you clearly went to effort to investigate the hack) then you would have been able to contact the siggy cover alt.

Its still a douche move you made and you know it.

Now, if you would actually hack the site and not just listen to what it broadcasts to everyone, maybe, yes.

On the other hand: i'd rather thank the guys than scaring them off. Because those that use the bug in a malicious way wont tell you about it. and do things to you. Nasty things. Without ppl looking for holes in those protocols not a single security gap would have been detected and all your *insertrandomwebmailservice here* *insert random MMO here* passwords would be available for everyone that has a clue freely.

But back to topic, no he didn't hack, he just read what was broadcasted anyway :P