• There seems to be an uptick in Political comments in recent months. Those of us who are long time members of the site know that Political and Religious content has been banned for years. Nothing has changed. Please leave all political and religious comments out of the forums.

    If you recently joined the forums you were not presented with this restriction in the terms of service. This was due to a conversion error when we went from vBulletin to Xenforo. We have updated our terms of service to reflect these corrections.

    Please note any post refering to a politician will be considered political even if it is intended to be humor. Our experience is these topics have a way of dividing the forums and causing deep resentment among members. It is a poison to the community. We appreciate compliance with the rules.

    The Staff of SOH

  • Server side Maintenance is done. We still have an update to the forum software to run but that one will have to wait for a better time.

Please Be Careful With Missions Files

F

flyer01

Charter Member 2012
This needs to be posted on all forums that talk about CLod. This was posted by fearlessfrog on the IL-2 CLoD forum.

flyer01:salute:



Hi,

I'll post this here on the main forum, as it's not got much traction in the FMB sub-forum:

http://forum.1cpublishing.eu/showthread.php?t=22978

In summary, download mission files from people you have some knowledge about. The scripting of mission in CoD is powerful, but allows bad people to do bad things, i.e. a mission file has permissions to access your other non-CoD files etc.

In the world of sims the chance of anything bad happening is (I think) very, very small, but people need to at least have the info to make their own judgement.

I'm very much enjoying CoD, and hope to see it getting better and better over time, but this type of issue is a real security vulnerability and should be addressed, hopefully quickly.

Thanks.
 
flyer01 said:
This needs to be posted on all forums that talk about CLod. This was posted by fearlessfrog on the IL-2 CLoD forum.

flyer01:salute:



Hi,

I'll post this here on the main forum, as it's not got much traction in the FMB sub-forum:

http://forum.1cpublishing.eu/showthread.php?t=22978

In summary, download mission files from people you have some knowledge about. The scripting of mission in CoD is powerful, but allows bad people to do bad things, i.e. a mission file has permissions to access your other non-CoD files etc.

In the world of sims the chance of anything bad happening is (I think) very, very small, but people need to at least have the info to make their own judgement.

I'm very much enjoying CoD, and hope to see it getting better and better over time, but this type of issue is a real security vulnerability and should be addressed, hopefully quickly.

Thanks.
Click to expand...
I don't know, sim sites get hacked all the time. It won't take long for the hackers and malware writers to latch onto such an easy way into someone's computer. Yep, staying away from CLoD until these issues are nailed down.
 
stansdds said:
I don't know, sim sites get hacked all the time. It won't take long for the hackers and malware writers to latch onto such an easy way into someone's computer. Yep, staying away from CLoD until these issues are nailed down.
Click to expand...

The same can happen in any flight sim PC, console download. Anytime you put a download that is a add-on on your PC this can happen.

On SOH that is why the Mod,s check the uploads before leting them be downloaded.

Its the beta testers that are at risk.

This same rule go's with CLoD.

Do not download mission or any addon to your PC unless you trust the person your getting the addon from.

Nothing new with this just a reminder.

flyer01:salute:
 
You must log in or register to reply here.
Back
Top