Re: [opensource-dev] Draw Distance

On Sat, Aug 21, 2010 at 9:36 PM, Miro Collas wrote: > How about bbeing able to just type it in? Why a slider, or mouse wheel, > which is inaccurate? How about being able to type it in chat? Instead of a one off thing just for the draw distance, I'd rather we had a general command input system s

Re: [opensource-dev] Draw Distance

How about bbeing able to just type it in? Why a slider, or mouse wheel, which is inaccurate? How about being able to type it in chat? On 08/22/2010 12:19 AM, a...@skyhighway.com wrote: > !! YES !! If all i had to do was mouse up over the camera widget and roll > the scroll button i would be *so

[opensource-dev] (no subject)

Hey! Um, i've been meaning to ask... Why don't i ever get the login screen pics with Snowglobe? i just installed the latest release (1.5.0 3625) from the website and still all i ever get are little arrow icons in the middle of a black screen. It's not all that important, i know, but i've been m

Re: [opensource-dev] Draw Distance

!! YES !! If all i had to do was mouse up over the camera widget and roll the scroll button i would be *soo* happy! Serious. i mean, Henri's Cool VL innovation is great! And i think that even if it were a mouse wheel scrollable widget it should still have some kinda additional text box to i

Re: [opensource-dev] Draw Distance

I probably use the draw-distance slider more often than any other UI widget. I'd probably map it to my mouse's scroll-wheel, if I could. On 22/08/2010 10:31 AM, Suz Dollar wrote: > This is one concept that I have wanted for at least four years in SL. I > change draw distance multiple times a da

Re: [opensource-dev] Update Linux Build Documentation, please?

I created http://bitbucket.org/cg_linden/buildscripts and updated the wiki page at https://wiki.secondlife.com/wiki/Automated_Build_System Note that the hg repo simply contains brutally ripped out and stubbed off code which I probably won't be maintaining very regularly. I tested it and it works

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

I agree Gareth, but I don't believe it was a "former" team member. As far as I know, Fractured is still on the development team, and it would be hard to kick him out as he owns both the website and the sim. They've said that it was Fractured, and that some of the people on the development team had

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

That's the bit that stands out - this may have been one former team member's bad idea, and it could be forgiven on the basis that it was just one former team member who has now been kicked out - except of course that the rest of the team are trying to say "it's not so bad". Surely it'd be better t

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

On Sun, Aug 22, 2010 at 1:48 AM, Phox wrote: >  I feel I need to take a moment here to address some of this: > > First of all, the issue with the login screen was NOT an attempt at > DDOS, Fractured was looking at traffic graphs for the website in > question and thought it would be funny to mess w

Re: [opensource-dev] SSH authentication

Never mind I think it info is on the hg website. From: Oz Linden (Scott Lawrence) To: Nicky Perian Cc: Boroondas Gupte ; opensource-dev@lists.secondlife.com Sent: Sat, August 21, 2010 6:33:19 PM Subject: Re: [opensource-dev] SSH authentication On 2010-08-21 1

Re: [opensource-dev] Draw Distance

This is one concept that I have wanted for at least four years in SL. I change draw distance multiple times a day depending on where I"m visiting. Many of my own estate regions I can use a full powered 512 draw distance. Going to my public sandbox, however, requires an instant drop to 128 or lo

Re: [opensource-dev] Display names, again.

Sorry, if this is a duplicate, but I didn't see it come through to the list and am assuming I did something wrong :) My biggest concern here is that the chat logs (local, group, IM) register both display and user name as a mandatory part of how chat logs work. This will forcefully create way to

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

On Sat, 21 Aug 2010 15:04:16 +0100, Thomas Grimshaw wrote: > Loading 1mb of content per user is hardly a denial of service attack. > Crosslinking occurs everywhere on the web, this is simply nothing but > paranoid bull. icmp echo requests can be a denial of service attack, and we're talking very

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

> our login page consists of a .php script a hi-res picture, No it doesn't. If it was a PHP script then I could've made much of the code much simpler when I made the thing. It was very deliberately not a PHP script, for reasons of load. ___ Policies a

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

I feel I need to take a moment here to address some of this: First of all, the issue with the login screen was NOT an attempt at DDOS, Fractured was looking at traffic graphs for the website in question and thought it would be funny to mess with them by making the traffic go from ~150 hits a

Re: [opensource-dev] SSH authentication

On 2010-08-21 19:21, Nicky Perian wrote: How do you do this in windows. Can you take your local key from Linux? There are two different key formats, but most ssh implementations have a tool to convert one to the other (which begs the question never mind). Keys should be portable across

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

What emerald has been doing is exactly what BOTNET does, it is against laws and I believe they should be prosecuted. It is a felony and is punished in alot of states for as much as 10 years in prison. LL should show no mercy for them, cause if they let allow this (this is not the first time Eme

Re: [opensource-dev] VWR-20879 - Fix packaging/staging for VC Express

On 2010-08-21 16:36, Robin Cornelius wrote: > In Oz's spirit of do first, talk later:- > > http://bitbucket.org/robincornelius/viewer-development-vwr-20879/changeset/994d4512db23 > http://jira.secondlife.com/browse/VWR-20879 > > If someone could review then add to the backlog etc, with this appli

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

This was an attempt to do 1 of 2 things or both. There is no denying it because every other "excuse" I've seen is pure bull and doesn't even make sense. The person responsible for doing this was either arrogant enough to think that the userbase was large enough and there was enough people logging i

Re: [opensource-dev] SSH authentication

How do you do this in windows. Can you take your local key from Linux? From: Oz Linden (Scott Lawrence) To: Boroondas Gupte Cc: opensource-dev@lists.secondlife.com Sent: Thu, August 19, 2010 5:13:57 PM Subject: Re: [opensource-dev] SSH authentication On 2010-0

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

As someone who was using the Emerald viewer at the time this was going on, I researched this subject with some concern. It doesn't matter who the target was at all, whether he is a good guy or a bad guy, it's not of consequence. ModularSystems is responsible for using my login process to send a si

Re: [opensource-dev] Update Linux Build Documentation, please?

Aleric Inglewood schrieb: > Thanks. I guess it makes sense to make a page that is less confusing, > especially for people who do not want to build standalone. You > shouldn't throw away anything (except the old stuff at the bottom). > I think it would be very good to avoid duplicates too: probably

Re: [opensource-dev] Update Linux Build Documentation, please?

Thanks. I guess it makes sense to make a page that is less confusing, especially for people who do not want to build standalone. You shouldn't throw away anything (except the old stuff at the bottom). I think it would be very good to avoid duplicates too: probably best to just refer to a different

Re: [opensource-dev] VWR-20879 - Fix packaging/staging for VC Express

I don't know phyton, but looking at the patch the following question comes to mind: This first looks for VisualStudio/8.0, and then for VisualStudio/9.0 then for VCExpress/8.0 and finally for VCExpress/9.0. Is it possible that a different order of searching would make more sense in some cases?

Re: [opensource-dev] Display names, again.

On Sat, 21 Aug 2010 12:20:38 -0700, Daniel Smith wrote: > On Sat, Aug 21, 2010 at 10:01 AM, Oz Linden (Scott Lawrence) < > o...@lindenlab.com> wrote: > >> Actually, I think that the answers to your questions are clear from >> the published material, Lance, but here... >> >> > 1. Will there be pr

Re: [opensource-dev] opensource-dev Digest, Vol 7, Issue 56

Oz Linden (Scott Lawrence) schrieb: > On 2010-08-20 9:35, Daniel wrote: > > What I would*really* like to see as a builder, and someone with > > two widescreen monitors, is the ability to drag floaters completely > > outside the perspective view area. For me, they just get in the > > way of seei

Re: [opensource-dev] SCRUM question: negative daily velocity

Hi, On Fri, Aug 20, 2010 at 11:19 AM, Moriz Gupte wrote: > May I venture to share these questions: > Regarding the snowstorm sprint2 backlog: I have always tried to observe > other teams using scrum and I have a question regarding negative daily > velocity values. I am not familiar with this and

Re: [opensource-dev] Draw Distance

On Sat, 21 Aug 2010 13:29:12 -0700 (PDT), a...@skyhighway.com wrote: > There was some talk lately about draw distance. i mentioned that from my > place if i have my draw distance turned up over about 150 i can almost > count on crashing when i tp. i'm really sorry i can't describe the > problem

Re: [opensource-dev] display names = the end of 1.x viewers?

On 2010-08-20, at 15:52, Baloo Uriza wrote: > On Thu, 19 Aug 2010 20:08:07 -0400, mysticaldemina-ZcVvBWsY3orQT0dZR+AlfA > wrote: >> And your login account isn't public so you have better security. > Your login account will still be visible in the profile, and during > transactions. That's one th

[opensource-dev] VWR-20879 - Fix packaging/staging for VC Express

In Oz's spirit of do first, talk later:- http://bitbucket.org/robincornelius/viewer-development-vwr-20879/changeset/994d4512db23 http://jira.secondlife.com/browse/VWR-20879 If someone could review then add to the backlog etc, with this applied i can build and package viewer-development out of the

[opensource-dev] Draw Distance

There was some talk lately about draw distance. i mentioned that from my place if i have my draw distance turned up over about 150 i can almost count on crashing when i tp. i'm really sorry i can't describe the problem any better than that. If someone wants to tell me how i could understand it b

Re: [opensource-dev] display names = the end of 1.x viewers?

On Thu, 19 Aug 2010 20:08:07 -0400, mysticaldemina-ZcVvBWsY3orQT0dZR+AlfA wrote: > And your login account isn't public so you have better security. Your login account will still be visible in the profile, and during transactions. ___ Policies and (un)

Re: [opensource-dev] Off-topic chatter (Was: Display names, again.)

On Fri, 20 Aug 2010 08:16:04 -0500, Jacek Antonelli wrote: > On Fri, Aug 20, 2010 at 1:38 AM, Lance Corrimal > wrote: >> Is it just me or did the lindens stop replying to this topic? > > They probably stopped replying because nearly all of the chatter about > Display Names has been off-topic and

Re: [opensource-dev] Display names, again.

On Fri, 20 Aug 2010 12:15:12 +0200, Marine Kelley wrote: > The damage done to the reputation of a well known resident can be > immeasurable. It would be irresponsible of LL to let someone impersonate > someone else without giving any way to let the other people around to > see CLEARLY the differen

Re: [opensource-dev] Display names, again.

On Sat, Aug 21, 2010 at 10:01 AM, Oz Linden (Scott Lawrence) < o...@lindenlab.com> wrote: > Actually, I think that the answers to your questions are clear from > the published material, Lance, but here... > > > 1. Will there be procedures in place to prevent someone else to use my > > true avatar

Re: [opensource-dev] Coping with duplicated display names.

I like this idea, and the IRC analogy makes sense, I would like it even going a bit further and have not the same display names in the same estate/continent. To prevent abuse in 4 corner sims situations. -Frans On Sat, Aug 21, 2010 at 1:41 PM, Carlo Wood wrote: > While there may be 1 million us

Re: [opensource-dev] opensource-dev Digest, Vol 7, Issue 56

On 2010-08-21, at 11:10, Oz Linden (Scott Lawrence) wrote: > I'd really like that one too, and I don't even really qualify as a builder. > > Unfortunately, it doesn't qualify as 'easy', but it is marked as a High > priority item on the Snowstorm backlog. Innnteresting. Using a new UI approach (

Re: [opensource-dev] Display names, again.

Actually, I think that the answers to your questions are clear from the published material, Lance, but here... > 1. Will there be procedures in place to prevent someone else to use my > true avatar name as their display name? No. > 2. Will there be procedures in place to prevent someone from

Re: [opensource-dev] no "allow create landmark" in 2.1?

Am Saturday 21 August 2010 schrieb Oz Linden (Scott Lawrence): > On 2010-08-20 12:04, Lance Corrimal wrote: > > Am Friday 20 August 2010 schrieb Aimee Linden: > >> > Apparently this option is no longer supported on the server, > >> > so it was removed from the viewer as it will have no effect.

[opensource-dev] Mercurial Tutorial Session 8/24

CG Linden has volunteered to give a tutorial on Mercurial usage and answer questions from open source users. I've scheduled this as a special topic for the regular open source meeting that day (if

Re: [opensource-dev] opensource-dev Digest, Vol 7, Issue 56

Am Saturday 21 August 2010 schrieb Oz Linden (Scott Lawrence): > On 2010-08-20 9:35, Daniel wrote: > > What I would*really* like to see as a builder, and someone with > > two widescreen monitors, is the ability to drag floaters > > completely outside the perspective view area. For me, they just

Re: [opensource-dev] Update Linux Build Documentation, please?

On 2010-08-19 20:26, Dickson, Mike (ISS Software) wrote: CG, I get not found errors when trying to access the hg repository for the build system. Is this repository not operational yet or is the link incorrect in the doc. Thx! CG is cleaning things up so that he can push that repository

Re: [opensource-dev] Update Linux Build Documentation, please?

On 2010-08-21 7:29, Carlo Wood wrote: > I fail to see how this would solve the complexity that is currently > on http://wiki.secondlife.com/wiki/Compiling_the_viewer_%28Linux%29 > as that mainly deals with installing and finding system libraries > (not the prebuilt ones) and with workaround of bu

Re: [opensource-dev] no "allow create landmark" in 2.1?

On 2010-08-20 12:04, Lance Corrimal wrote: > Am Friday 20 August 2010 schrieb Aimee Linden: >> > Apparently this option is no longer supported on the server, so it >> > was removed from the viewer as it will have no effect. > does that mean that now anyone can create landmarks anywhere no matte

Re: [opensource-dev] opensource-dev Digest, Vol 7, Issue 56

On 2010-08-20 9:35, Daniel wrote: What I would*really* like to see as a builder, and someone with two widescreen monitors, is the ability to drag floaters completely outside the perspective view area. For me, they just get in the way of seeing what I am doing. How much work would be required

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

I don't care if it's relevant; it should still be clarified. "Did nobody think?" Of course not, nobody knew he would actually go through with something like that. Discrete On Aug 21, 2010, at 11:31 AM, Katharine Berry wrote: >> 2) The active developer of a malicious viewer under the lolguise

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

On Sat, Aug 21, 2010 at 8:24 AM, Discrete Dreamscape wrote: > Actually, I prefer to remember him as: > > 1) The guy who hacked Emerald's servers before discovering the data > storage issue and > > 2) The active developer of a malicious viewer under the lolguise of > promoting exploit/bugfixing. >

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

I hate to say this but, it has nothing to do with who they are focusing the attack on its is the fact that they used there users machines with out there consent, this is a clear violation of US law and can be investigated by FBI/NSA with punishment up to 10 years in jail, not to mention a clear vi

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

Actually, I prefer to remember him as: 1) The guy who hacked Emerald's servers before discovering the data storage issue and 2) The active developer of a malicious viewer under the lolguise of promoting exploit/bugfixing. But hey, they keep antagonizing him, so of course this kind of thing conti

[opensource-dev] "ticket type: viewer directory" (was: Re: Malicious payloads in third-party viewers: is the policy worth anything?)

The policy is worth NOTHING. let me quote from the emerald details page: "To file a ticket, please visit the Second Life Support Portal and click on New Ticket Submission. On the ticket page, select Ticket Type: Viewer Directory, and fill in the fields that appear." Guess what, the new, impr

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

On Sat, Aug 21, 2010 at 7:46 AM, Discrete Dreamscape wrote: > This was one person's decision, and was deliberately done for the sole > purpose of messing with the owner of the victim site (although I'd > hardly call the particular individual a victim). Regardless, the team > was pretty disappointe

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

This was one person's decision, and was deliberately done for the sole purpose of messing with the owner of the victim site (although I'd hardly call the particular individual a victim). Regardless, the team was pretty disappointed. The one person currently owns all parts of Emerald's hosting, so i

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

On Sat, Aug 21, 2010 at 7:04 AM, Thomas Grimshaw wrote: >  Loading 1mb of content per user is hardly a denial of service attack. > Crosslinking occurs everywhere on the web, this is simply nothing but > paranoid bull. "Crosslinking" drops the context of hiding gibberish requests to a critic's web

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

On Sat, Aug 21, 2010 at 3:04 PM, Thomas Grimshaw wrote: > Loading 1mb of content per user is hardly a denial of service attack. > Crosslinking occurs everywhere on the web, this is simply nothing but > paranoid bull. This isn't normal crosslinking. The images and content loaded weren't actually

Re: [opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

Loading 1mb of content per user is hardly a denial of service attack. Crosslinking occurs everywhere on the web, this is simply nothing but paranoid bull. I'm not a big fan of the Emerald team either, they're arrogant, two-faced, cast themselves as elitists, and censor comments on their webs

[opensource-dev] Malicious payloads in third-party viewers: is the policy worth anything?

You may recall that the Emerald viewer has been leaking potentially privacy-infringing information - specifically, the directory to which it's been installed, which in some cases includes usernames - in encrypted form in baked textures. You may also recall that the developers lied and said the issu

Re: [opensource-dev] Display names, again.

I'm not a Linden, but I think the answers to your questions exist before they are implemented :p. > 1. Will there be procedures in place to prevent someone else to use my > true avatar name as their display name? No, the display name will be distinguishable by color or graphical-something around

Re: [opensource-dev] display names = the end of 1.x viewers?

Many of the problems can be solved with options to put account name into a log, or make it visible in a tag. That way, if people want to know the unique identifier, they can see it, and can have it logged. Many of us are required to log conversations while at work, and having a real account name op

Re: [opensource-dev] display names = the end of 1.x viewers?

ROFL - unique display names Well, I suggested the same, but per SIM -- not globally :p Making them globally unique would kinda void the whole reason they are being introduced imho. I think I saw a very strong argument posted here about not automating anything though: It's near 100% sure that peop

Re: [opensource-dev] display names = the end of 1.x viewers?

On Fri, Aug 20, 2010 at 12:13:42AM +0200, Lance Corrimal wrote: > Totally not. It should even trigger an automated AR for impersonating, Please no. > together with a warning message sent to the current holder of the > login name... "johndoe1234567890 tried to set his display name to your > log

[opensource-dev] Coping with duplicated display names.

While there may be 1 million users (at some time in the future) using Second Life, the display name would be used for distinguishing friends and people in your neighborhood. Being an old-time IRC developer, I see simularities with IRC nick names (that can collide) and how I'd have solved that if I

Re: [opensource-dev] Update Linux Build Documentation, please?

I fail to see how this would solve the complexity that is currently on http://wiki.secondlife.com/wiki/Compiling_the_viewer_%28Linux%29 as that mainly deals with installing and finding system libraries (not the prebuilt ones) and with workaround of bugs of the build system. No matter what script yo