[QUOTE=MrOwn1;25350853]your avatar is me right now[/QUOTE]
Exclamation of astonishment with profanity.
[QUOTE=Marlamin;25356770][url]http://www.facepunch.com/showthread.php?1012726-web-Disabling-API&p=25356759&viewfull=1#post25356759[/url]
Awww.[/QUOTE]
What, what does that mean?
[QUOTE=Sir Whoopsalot;25357064]What, what does that mean?[/QUOTE]
That the API has been taking offline temporarily? I guess Hexxeh won't be able to test his application in a live enviroment anymore. I guess.
App uses the API to get it's data.
I think it means it will be difficult/impossible for the app to get information off facepunch
[QUOTE=compwhizii;24710021]The facepunch side API that powers this will be open to everyone (sort of)[/QUOTE]
*Cough*
[QUOTE=Marlamin;25357137]That the API has been taking offline temporarily? I guess Hexxeh won't be able to test his application in a live enviroment anymore. I guess.
App uses the API to get it's data.[/QUOTE]
Yeah, just saw this on compwhizii's twitter.
[quote]@compwhizii You disabled the API too amirite?
@ElliotSpeck yes security issue.[/quote]
[QUOTE=Sir Whoopsalot;25357339]Yeah, just saw this on compwhizii's twitter.[/QUOTE]
Yeah, long story short it was the equivalent to turb_'s ban reason.
[QUOTE=Qombat;25357366]Yeah, long story short it was the equivalent to turb_'s ban reason.[/QUOTE]
To make that a long story, what exactly was turb_ banned for?
[QUOTE=Sir Whoopsalot;25357467]To make that a long story, what exactly was turb_ banned for?[/QUOTE]
Creating a site that leaked GMF content. The API allowed access to said content, along with any other forum including staff and developer forums.
[QUOTE=Qombat;25357481]Creating a site that leaked GMF content. The API allowed access to said content, along with any other forum including staff and developer forums.[/QUOTE]
turb used cookie information to create his leak site, as far as I know.
[QUOTE=Aquaphonic;25357498]turb used cookie information to create his leak site, as far as I know.[/QUOTE]
:downs:
No.
Nice, you can see who are in the thread :v: Damn nice. Both the app and the new FP
(Everyone spamming Zing and Winner to each other..)
[QUOTE=Qombat;25357507]:downs:
No.[/QUOTE]
Actually, yes. He was using teh_cheese's login information (AKA cookies) to gain access to the GMF / garrysmod.com admin forum (which is why both of them have been pbanned, although turb's was silent). The API had nothing to do with it, the security issue in it is probably something completely different.
[QUOTE=Qombat;25357507]:downs:
No.[/QUOTE]
Yeah. authorization cookies were being used.
Fuckin' leach, :ninja:
[QUOTE=leach139;25357591]Actually, yes. He was using teh_cheese's login information (AKA cookies) to gain access to the GMF / garrysmod.com admin forum (which is why both of them have been pbanned, although turb's was silent). The API had nothing to do with it, the security issue in it is probably something completely different.[/QUOTE]
No. Again.
Auth cookies were being used, not information from them. The API isn't different at all, it had the same potential that the gmf viewer did. I'm in constant conversation with turb_ over MSN, I know what I'm talking about. You can be quiet now.
[editline]10:41PM[/editline]
Anyway, I knew about the exploit before compwhizii was notified and shut the API down.
So turb found an exploit, told people and then got perma'd?
Fuck that.
[editline]01:44PM[/editline]
And why can't I view [url]http://www.facepunch.com/showthread.php?p=25345910[/url]
[editline]01:44PM[/editline]
You see, it appears in google results.
[QUOTE=codenamecueball;25357625]So turb found an exploit, told people and then got perma'd?
Fuck that.[/QUOTE]
He wasn't perma'd for the API exploit.
He and FeatureCreature/Teh_Cheese were perma'd for the use of login cookies in order to publically share GMF content.
fs-dp
[QUOTE=Qombat;25357634]He wasn't perma'd for the API exploit.
He and PieClock/Teh_Cheese/CounterTunes were perma'd for the use of login cookies in order to publically share GMF content.[/QUOTE]
I see, that is pretty justified to me.
[QUOTE=codenamecueball;25357639]I see, that is pretty justified to me.[/QUOTE]
Did I say it wasn't?
[editline]10:48PM[/editline]
[QUOTE=codenamecueball;25357625]And why can't I view [url]http://www.facepunch.com/showthread.php?p=25345910[/url]
[editline]01:44PM[/editline]
You see, it appears in google results.[/QUOTE]
Gestapo DDT'd, then hard deleted. Saving face or something, I don't know.
Am I late?
[URL=http://img72.imageshack.us/i/28489860.png/][IMG]http://img72.imageshack.us/img72/1082/28489860.png[/IMG][/URL]
Ignore the blurryness it's just a concept picture
API is disabled right now because, basically, it's not finished and until we implement a few more things it's a security risk, we need to implement permissions etc. Wasn't supposed to be in the live site yet, really.
Are this for all android phones? Cause i'm gonna buy a desire HD soon and i wonder if it will work on it?
Really wish this was out, I'm typing this from Dubai on my ipod touch.
[QUOTE=Qombat;25357615]No. Again.
Auth cookies were being used, not information from them. The API isn't different at all, it had the same potential that the gmf viewer did. I'm in constant conversation with turb_ over MSN, I know what I'm talking about. You can be quiet now.
[editline]10:41PM[/editline]
Anyway, I knew about the exploit before compwhizii was notified and shut the API down.[/QUOTE]
No you're wrong.
[QUOTE=Hexxeh;25359377]API is disabled right now because, basically, it's not finished and until we implement a few more things it's a security risk, we need to implement permissions etc. Wasn't supposed to be in the live site yet, really.[/QUOTE]
Will you have the option to post in group discussion sections and moderate those sections?
[QUOTE=compwhizii;25364547]No you're wrong.[/QUOTE]
Except I was looking at the API exploit about 45 minutes before you closed it off. Pretty damn sure I'm right.
Sorry, you need to Log In to post a reply to this thread.
