Eric (Deacon) writes:
You realize that, while being half a solution at best, not only would it
break every query system/program out there to date, but it would also
require a complete set of patches not only for both the Win32 and Linux
HL servers, but for every client out there.  In the next couple of days?
Yes, a client side and server side patch. Exactly what I had in mind. And
while they're at it, they can fix the client vulnerability as well. This is
no different than any other time Valve releases a patch for the servers and
everybody needs to download a client patch to continue playing. They simply
take the code from the current version (not the dev code with all the new
features) and change a few lines in the conversation protocol, recompile,
and run their normal set of regression tests. What's the big deal?

As far as third party query programs, so what? That's not Valve's problem.
Valve should be more concerned with protecting it's own software. Let the
others protect theirs. I've never heard anybody say that Valve promised to
never change their protocol to accommodate these third party developers.
They're on their own to patch and distribute.

This "Microsoft" approach of not admitting there is even a problem is really
quite disappointing. Both the client and the server are now vulnerable to
attack and we've seen no official statement that anybody is even trying to
fix it. I guess I'm just spoiled by the open source world where a
vulnerability is announced and the patch is out the same afternoon... But I
guess those developers actually *care* because they actually *use* the
software they make - the big difference between open and closed source.

-Mad

--
Madness is soil in which creativity grows

             - Chris Bielek
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

Reply via email to