Two Plus Two Publishing LLC Two Plus Two Publishing LLC
 
2+2 Shortcuts
Hand Converter 2+2 Store 2+2 Magazine 2+2 Blogs 2+2 Pokercast
Non–US players
GET FIVE 2+2 books FREE! see our poker bonus
2+2 Forums
Expand   Collapse
Two Plus Two Best of 2+2 2+2 Magazine Forum 2+2 Bonus Program 2+2 Pokercast 2+2 Videos Marketplace Commercial Marketplace Classified Listings About the Forums
General Poker Beginners Questions Poker Goals & Challenges Books and Publications Poker Theory News, Views, and Gossip Poker Headlines Televised Poker Brick and Mortar Mortar and Brick Home Poker Poker Legislation Fight for Poker Rights (PPA) That's What She Said Beats, Brags, and Variance
Videos Poker Video Directory CardRunners.com DragTheBar.com iPokerVIP.com LeggoPoker.com PokerStrategy.com
Coaching/ Training Coaching Advice Cash Games Poker Coaches Tournament / SNG Poker Coaches CardRunners PokerStrategy.com
Sponsored Support RPM Poker Lock Poker Carbon Poker Draft Day High Pulse Poker iPokerVIP
Limit Hold'em High Stakes Limit Medium Stakes Limit Small Stakes Limit Micro Stakes Limit Mid-High Short-handed Small Stakes Shorthanded Limit––>NL Heads Up Limit
No Limit Hold'em High Stakes NL Medium Stakes NL Small Stakes NL Micro Stakes NL Medium-High Full Ring Small Full Ring Micro Full Ring Heads Up NL Live Low-stakes NL
Tournament Poker STT Strategy Heads Up SNG High Stakes MTT Midstakes MTT Small Stakes MTT MTTSNG MTT Community MTTc - Live Tournament Results
Other Poker High Stakes PLO Small Stakes PLO Omaha/8 Stud Draw and Other Poker
General Gambling Backgammon Probability Psychology Sports Betting Other Gambling Games Entertainment Betting
Internet Poker Internet Poker Internet Bonuses Affiliates/RakeBack Software
2+2 Communities Other Other Topics The Lounge EDF Las Vegas Lifestyle BBV4Life Musicians
Sports & Games Sporting Events Wrestling Golf Pool, Snooker, and Billiards Chess Video Games Puzzles and Other Games
Other Topics Politics Business, Finance, and Investing Travel Science, Math, and Philosophy History Religion, God, and Theology Health and Fitness Student Life Laughs or Links! Computer Technical Help Programming
International Deutsch Français Español 2+2.ру
Other Links
Two Plus Two Poker Books Authors Book Translations Abbreviations Feedback Advertising Info Privacy Notice Terms and Conditions
Forum Archives

Go Back   Two Plus Two Poker Forums > General Poker Discussion > News, Views, and Gossip
Reload this Page Another hole in UB and AP security
Register FAQ Search Today's Posts Mark Forums Read Video Directory TwoPlusTwo.com

Notices

News, Views, and Gossip For poker news, views, and gossip

Reply
Page 11 of 63 « First 678910 11 1213141516213161 Last »
 
Thread Tools Display Modes
Old 05-07-2010, 12:29 AM   #151
adept
 
JustSomeGuy's Avatar
 
Join Date: Nov 2008
Location: San Diego/SLO
Posts: 1,112
Re: Another hole in UB and AP security?
Was the latest update UB's attempt a a cure?
JustSomeGuy is offline   Reply With Quote
Old 05-07-2010, 12:29 AM   #152
newbie
 
Join Date: May 2010
Posts: 28
Re: Another hole in UB and AP security?
Quote:
Originally Posted by SenatorKevin View Post
They were probably curious more than anything. I analyzed Full Tilt's network traffic a few years ago for such a vulnerability and was pleased to see they had fully encrypted traffic which made me feel more comfortable playing there. I never looked at UB, cause I didn't play there at the time.

EDIT: Errrrrr. I take that back. They were probally analyzing traffic to improve their hand grabbing rates. Total f'n scumbags. It almost sounds like they went public with this vulnerability before contacting UB as well. What a joke.
I don't think anyone would want them to contact UB first anyway, this way we get the real information and not a massive cover up. As much as I oppose data mining, I oppose people looking at hole cards a little more.
bape x dunKs is offline   Reply With Quote
Old 05-07-2010, 12:35 AM   #153
enthusiast
 
Join Date: Jul 2008
Posts: 99
Re: Another hole in UB and AP security?
Quote:
Originally Posted by Interpleader View Post
What is Sebok saying?
He's tired of the witch hunt obv.
McGrift is offline   Reply With Quote
Old 05-07-2010, 12:38 AM   #154
Pooh-Bah
 
Hood's Avatar
 
Join Date: Apr 2004
Location: 99 problems but a TT+ just ship pf
Posts: 5,233
Re: Another hole in UB and AP security?
Quote:
Originally Posted by JustSomeGuy View Post
Was the latest update UB's attempt a a cure?
If UB have really implemented SSL security within hours, it mean they already had this implemented prior, and they've just flipped a switch. To be honest that looks even worse.
Hood is offline   Reply With Quote
Old 05-07-2010, 12:39 AM   #155
Carpal \'Tunnel
 
Join Date: Oct 2002
Location: Syracuse
Posts: 27,024
Re: Another hole in UB and AP security?
From @joesebok:

Quote:
Heya, I'll be looking into recent issues at @ultimate_bet and try to get some more answers by next week. Wish I knew more now. Apologies...
I thought the latest update was to fix the issue with seeing player's hole cards after a hand ended?
Kevmath is online now   Reply With Quote
Old 05-07-2010, 12:43 AM   #156
big deal around here
 
King Fish's Avatar
 
Join Date: Jan 2007
Location: ****ing Wafflehouse1
Posts: 6,484
Re: Another hole in UB and AP security?
Quote:
Originally Posted by Hood View Post
If UB have really implemented SSL security within hours, it mean they already had this implemented prior, and they've just flipped a switch. To be honest that looks even worse.
This.
King Fish is offline   Reply With Quote
Old 05-07-2010, 12:44 AM   #157
adept
 
JustSomeGuy's Avatar
 
Join Date: Nov 2008
Location: San Diego/SLO
Posts: 1,112
Re: Another hole in UB and AP security?
Quote:
Originally Posted by Kevmath View Post
From @joesebok:



I thought the latest update was to fix the issue with seeing player's hole cards after a hand ended?
I thought that came in the update 2 days ago or so? There was a new one in the past few hours
JustSomeGuy is offline   Reply With Quote
Old 05-07-2010, 12:45 AM   #158
veteran
 
RolloTomasi's Avatar
 
Join Date: Jan 2008
Location: gone fishin
Posts: 3,073
Re: Another hole in UB and AP security?
Quote:
Originally Posted by SenatorKevin View Post
They were probably curious more than anything. I analyzed Full Tilt's network traffic a few years ago for such a vulnerability and was pleased to see they had fully encrypted traffic which made me feel more comfortable playing there. I never looked at UB, cause I didn't play there at the time.

EDIT: Errrrrr. I take that back. They were probally analyzing traffic to improve their hand grabbing rates. Total f'n scumbags. It almost sounds like they went public with this vulnerability before contacting UB as well. What a joke.
http://blog.ultimatebet.com/2010/05/encryption-issue/

Paul Leggett:
"We are currently working on implementing a new encryption method and we expect to have it live in a matter of hours."

Kevin is this possible
RolloTomasi is offline   Reply With Quote
Old 05-07-2010, 01:00 AM   #159
Carpal \'Tunnel
 
MelchyBeau's Avatar
 
Join Date: Sep 2004
Location: Denver or Bust
Posts: 6,025
Re: Another hole in UB and AP security?
Quote:
Originally Posted by RolloTomasi View Post
http://blog.ultimatebet.com/2010/05/encryption-issue/

Paul Leggett:
"We are currently working on implementing a new encryption method and we expect to have it live in a matter of hours."

Kevin is this possible
unless it was already being developed well before this scandal broke no.
MelchyBeau is offline   Reply With Quote
Old 05-07-2010, 01:00 AM   #160
banned
 
Sjors's Avatar
 
Join Date: Sep 2008
Posts: 623
Re: Another hole in UB and AP security?
Quote:
Heya, I'll be looking into recent issues at @ultimate_bet and try to get some more answers by next week. Wish I knew more now. Apologies...
yeah or by next month...or by next year if I still remember...(will remember my paychecks yo)

Sjors is offline   Reply With Quote
Old 05-07-2010, 01:05 AM   #161
old hand
 
SenatorKevin's Avatar
 
Join Date: May 2007
Location: Brentwood
Posts: 1,755
Re: Another hole in UB and AP security?
Quote:
Originally Posted by bape x dunKs View Post
I don't think anyone would want them to contact UB first anyway, this way we get the real information and not a massive cover up. As much as I oppose data mining, I oppose people looking at hole cards a little more.
No, if you're a white hat security professional you should notify the vendor ahead of making it public so they can begin work to remedy the issue. Irregardless of UB's actions in the past, it's the proper thing to do.
SenatorKevin is offline   Reply With Quote
Old 05-07-2010, 01:05 AM   #162
2+2 Ad Man
 
Bobo Fett's Avatar
 
Join Date: May 2006
Location: Home again - getting warmer!
Posts: 31,669
Re: Another hole in UB and AP security?
Quote:
Originally Posted by scratchy1 View Post
So what led to PTR finding this vulnerability? Were they tipped off or doing their own investigation on suspicious play there?
Well, there was a thread started here on 2+2 over a week ago about issues there:

http://forumserver.twoplustwo.com/19...e-fold-772028/
Bobo Fett is offline   Reply With Quote
Old 05-07-2010, 01:09 AM   #163
old hand
 
SenatorKevin's Avatar
 
Join Date: May 2007
Location: Brentwood
Posts: 1,755
Re: Another hole in UB and AP security?
Quote:
Originally Posted by MelchyBeau View Post
unless it was already being developed well before this scandal broke no.
Yeah, there's no way this gets fixed for a few days. Rushing out a fix would be a mistake because it'd likely break another thing. Do the proper QA cycle and make sure this fix doesn't break another thing.
SenatorKevin is offline   Reply With Quote
Old 05-07-2010, 01:11 AM   #164
2+2 Ad Man
 
Bobo Fett's Avatar
 
Join Date: May 2006
Location: Home again - getting warmer!
Posts: 31,669
Re: Another hole in UB and AP security?
Anyone else amused that Cereus is an anagram of secure?
Bobo Fett is offline   Reply With Quote
Old 05-07-2010, 01:14 AM   #165
journeyman
 
rookiepsu's Avatar
 
Join Date: Jul 2007
Posts: 219
Re: Another hole in UB and AP security?
I'm a software engineer and my company was tasked with adding FIPS 140-2 encryption to our client-server application. It took us approximately 5-6 months to properly implement and test it. Admittedly, we had a small team of 4-5 developers, but having this done "within hours" of it being discovered by an outside source is laughable at best. Basically, what others have stated is accurate: If it is done within hours, it means it was already implemented and a switch was turned on once it was discovered. No chance that proper encryption can be implemented that fast.
rookiepsu is offline   Reply With Quote

Reply
Page 11 of 63 « First 678910 11 1213141516213161 Last »
      

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


All times are GMT -4. The time now is 01:18 AM.
Contact Us - Two Plus Two Publishing LLC - Privacy Statement - Top

Powered by vBulletin®
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.6.0 ©2011, Crawlability, Inc.
Copyright © 2008-2010, Two Plus Two Interactive