So where the last post was a write-up of what CCP managed to fuck-up this’ll just be a rant on the idiocy that accompanied the development of these new forums.
Every single person that’s in the programming business (Including webdevelopers) have at least some basic knowledge of how this fucking stuff works. For example the cookies, every webdev knows that anything you store in the damn bastards can be edited by the end user, so at least use proper checks or proper cookies.
And now there’s people saying it’s a simple oversight but it’s not, even every person I know at my school that’s currently doing webdev knows this fucking thing. And I highly doubt it can be that fucking hard to implement a way to store data alongside your fucking forum sessions.
And then there’s the ip/account banned guy that posted, how fucking hard can it be to block those, 1 simple fucking SQL query in your log-in or posting code is all it takes, it just doesn’t make any god damn sense.
Oh yes and the fucking forum signatures, really you don’t sanitize the value of the cookie, not that this should be stored in a cookie to begin with, but if you’re being stupid you might as well hide your stupidity with data sanitization.
And the last thing, they used existing open-source forum software, I encourage using open-source software, but don’t fucking claim it’s made in-house when you’re just modifying some open-source code, and being terribad at modifying it at the same time.
The only scenario that is remotely plausible is that the forums were developed by some interns, but even then one of them would’ve realized the cookies aren’t secure. Now I hope that monday devblog sheds some fucking light, but I highly doubt it.
Once again, Xeross out.
P.S.: Yes my idea of a rant is adding the word fuck a lot in my sentences, deal wiz it
