I’ve been hearing that the “changed handle” thing isn’t valid, because when an account handle is changed you can still see the original on the user’s profile (and that wasn’t the case for the littlestjeff account). With all the misinformation flying around, I have no idea about the accuracy of this though.
Yeah, it seems implausible to me that such a gaping security hole would be in a hugely popular game that long, but I guess that’s also not impossible. Stupider things have happened.
it’s a very common security issue. it’s usually not a problem because deletions aren’t very common: usually accounts are just inactive, and it’s not a problem that really effects the company itself so there’s no really big reason to focus on fixing it
i’m not arguing either way on this specific case; i’d not heard about it until right now… but it’s pretty plausible from a software and security standpoint
Does it sound plausible from the perspective of a company that has probably at minimum thousands of accounts getting deleting or renamed per day? This seems like something that would have caused much bigger problems much earlier, just due to the number of people involved.
imo still very plausible… the key thing is deleted… accounts are rarely deleted, especially when they contain purchases and things like fortnight accounts do. more often than not, they’re suspended or just inactive which means the public ID remains used
I’ve been hearing that the “changed handle” thing isn’t valid, because when an account handle is changed you can still see the original on the user’s profile (and that wasn’t the case for the littlestjeff account). With all the misinformation flying around, I have no idea about the accuracy of this though.
Yeah, it seems implausible to me that such a gaping security hole would be in a hugely popular game that long, but I guess that’s also not impossible. Stupider things have happened.
it’s a very common security issue. it’s usually not a problem because deletions aren’t very common: usually accounts are just inactive, and it’s not a problem that really effects the company itself so there’s no really big reason to focus on fixing it
i’m not arguing either way on this specific case; i’d not heard about it until right now… but it’s pretty plausible from a software and security standpoint
Does it sound plausible from the perspective of a company that has probably at minimum thousands of accounts getting deleting or renamed per day? This seems like something that would have caused much bigger problems much earlier, just due to the number of people involved.
imo still very plausible… the key thing is deleted… accounts are rarely deleted, especially when they contain purchases and things like fortnight accounts do. more often than not, they’re suspended or just inactive which means the public ID remains used