Solar Legion
-
Posts
5,378 -
Joined
-
Last visited
Content Type
Forums
Blogs
Knowledge Base
Everything posted by Solar Legion
-
Frankly and bluntly - Linden Lab has already done what they can reasonably do while also not taking extreme measures or absolutely breaking functions. If this does not satisfy a user ... Well the door is right over there.
-
Oh for ....
-
The same way one got bite requests from certain Vampire games, invites to another's Dance HUD and other normal uses.
-
Because that is where they spawn by default. All scripted dialogs I have run into will spwn in the upper right hand corner - text entry, multiple selection button dialogs, simple scripted notifications (wth the usual "Ok", "Block" and "Ignore" buttons) and such. Even the yellow Debit Permission dialog shows up there.
-
Its a generic, LSL scripted input dialog - it doesn't care what Viewer the target is using. It can be customized to state it is part of any Viewer. One of the reasons I find this so incredibly lazy is simple: This sort of dialog would stand out like a sore thumb to anyone who is not on Firestorm. Unless this was incredibly carefully scripted ... Well suffice to say it'd be a dead giveaway to have this pop up on the LL Viewer or any other TPV. Firestorm was selected due to how widespread its userbase is. In short, this is not a TPV security issue. Let alone a proper one either. No Viewer would use that generic dialog for such a function if it were ever implemented. As an example of this: The 2FA dialog is not that generic type. Nor are any of the Viewer level imput/dialogs.
-
So .... Someone is actually trying to Phish users ... Using an LSL scripted Input box .... I have heard of/seen some rather lazy attempts float through here but this one .... No Viewer whatsoever is going to pop such a dialog under Timeout circumstances. Eve if they did make such an alteration, the dialog would not be an LSL Scripted type nor would it be able to pop without having the Timeout settings in use or for that matter without having updated to whatever version would have such a 'feature'. ... I do hope no one has fallen for this ...
-
Ah yes, another thread cleanup ... Time ti either accept that there will be some deviance or shut the entire forum down. Either/or. Doing otherwise leaves things unresolved and frankly PMs/External communications is not a viable/desired avenue.- 23,095 replies
-
- 3
-
-
-
- peeves
- secondlife
- (and 16 more)
-
New Feature: Scripted Agent Estate Access Discussion
Solar Legion replied to Linden Lab's topic in General Discussion Forum
Not all responses can be used as jumping points to make one's own observations/comments. In this instance it would have been far better to type up the response without a direct quote and filling in any needed information piece by piece so as to avoid sounding as though one is weighing in on an existing sub-thread. -
New Feature: Scripted Agent Estate Access Discussion
Solar Legion replied to Linden Lab's topic in General Discussion Forum
It is indeed, absurd. By the "logic" presented, all security systems everywhere (be they SL or RL) are scams. All of them. No exceptions. Yes, that is exactly how it is coming across. Welcome to life. Navigate it. -
New Feature: Scripted Agent Estate Access Discussion
Solar Legion replied to Linden Lab's topic in General Discussion Forum
Oh for ... Enough with the absurdities. All of them. -
Oh believe me, I understand that one. To add to the above, here's a screenshot of the most recent set showing the reply and reaction notifications:
- 23,095 replies
-
- 1
-
-
- peeves
- secondlife
- (and 16 more)
-
Yep. I have it enabled on my Desktop while using Brave. The notification is quite unobtrusive.
- 23,095 replies
-
- 1
-
-
- peeves
- secondlife
- (and 16 more)
-
Sort of. Push Notifications are used for when you don't have the Forum page open whatsoever and can thus pop even if all you've done is load up your web browser.
- 23,095 replies
-
- 2
-
-
-
- peeves
- secondlife
- (and 16 more)
-
What happened to the skills section on profiles
Solar Legion replied to ItHadToComeToThis's topic in General Discussion Forum
It was nuked when Linden Lab returned from their foray into Web based profiles - a casualty of listening to people who pretended to know its usefulness (and pretending it had no use). One of several in the change. -
Ah yep - the Debit Permission not resetting on ownership change is a bug plain and simple. There is a reason why systems existed (at one point - not so easy to find the older example now) of a system which has a central object which others pull their balances from. Just because an object has operated a specific way for however long it did ... does not mean that what you've come to see as "expected behavior" was not - in fact - a bug. ETA: The item in question was Mystical Cookie's Global ATM - now no longer available.
-
To go back to something from an earlier post of mine ... I have had people attempt to figure out who I am behind my Avatar. One runs a Blog (and did so to enforce some laughable policy of theirs). Two were from a third party Forum (now long gone, sadly). The first made me roll my eyes. The other two? I laughed as they were doing so in an effort to try and get me to back down/quiet down because they did not like my responses. Both of those latter two were banned (from a place known not to do so unless absolutely necessary). Of those three, two are still active here - despite only ever so thinly veiling their tactics when engaging with others. Imagine that! Small wonder I have my information set up the way I do, isn't it? All of them employ similar "debate tactics" as I've seen a handful use for this particular issue to stir the pot and foment distrust at the minimum.
-
It does - each and every time a new avatar takes up the object. It should be clearing the Debit Permission flag each and every time this happens. There are exceptions to this - or were anyway. There was a kind of Debit Card/Bank system you could buy and use if you had Alts and wanted them to pool from a central Account.
-
The long and short of this is that it was blown out of proportion by several users, continues to be blown out of proportion and being used to once more foster distrust (among other things). That is the reality of this. Newsflash for you: Scripted Agents (which have been around for as long as the Viewer has been Open Source, likely even before that) have been doing varied functions for quite some time. Some above board, others not so much. This one rattled a few people. This one is not the operation one ought to be concerned about. Scripted Agents properly marked as such ... are not what users ought to be concerned about. The ones that are not marked ... Are the concern. No, there is no way to identify them (not without catching actual users as collateral - something I'm personally unwilling to have happen). Those types have been around just as long. There is a reason for the warning concerning one's profile and putting personal information within it. Welcome to part of that reason. Advice has been given by more than just myself here. Advice and what should be a common sense approach. Take it or leave it but stop trying to solve a delicate problem with a nuclear device.
-
My arguments are rooted in reality - what has been put forward thus far to "counter" them has been rooted in hyperbole at best. No one's actual private details were exposed. Beginning and end. An actual bad actor is not going to publish their data in such a public manner. Beginning and end. You are in control of how much data you place into your very public profile. Don't want it out there? Don't put it in there. My whole argument rests in what can/has actually happened as well as just how tempting a target a Second Life user is going to be. Here's a hint for you: You ought to be more worried about your financial data and being phished. Do not put data out there you do not want conflated with your RL self if you do not want it linked to your Second Life avatar. If someone manages to work it out anyway ... Well they have no way of knowing if they really have, now do they? In any event, just as I thought: No actual desire for any sort of actual discourse. Just shadow puppets, boogeymen and the usual dose of rampant distrustfulness disguised as genuine concern.
-
About the normal conflation for some. If the Tilia data is ever hacked, there would need to be a compelling reason to then go after and compile the avatar/profile data together with external sources - a rabbit hole that does indeed drive some to overcompensate when it comes to how they view security and tends to make some start to jump at shadows.
-
Ah yes, the usual tactic and why i do not often bother engaging: attempts to frame what I have very clearly stated as being something else. I stated exactly what I meant to state in my responses, nothing more and nothing less. If you're actually being sincere in looking for a discussion, try harder and veer away form such foolishness in the future.
-
That's nice. Unless they're actively putting data into their profiles to link their Second Life account to their RL self, they have no reason to worry. At all. Outside of dedicated stalkers or bored children (this includes supposed adults that have the same sort of mentality) no one on the wider web is going to take the time to make a Second Life account just to harass/hassle/belittle such people. The worst that can happen is that someone finds their profile, puts it on a blog (or some other website) and disparages the avatar. The opinions of people who would do such a thing are worth less than nothing and should get only enough attention to see what they've done, shrug one's shoulders and move on. If it gets worse, see what options one can pursue (not many in the case of it being limited to an avatar within Second Life). As for the potential targets? Many are already taking the steps they need to, to keep their Second Life from being paired to their Real Life self - as many would have had to do in the first place in order to use Second Life in the manner described! The current situation hasn't changed anything whatsoever in regard to such outside of making it clear that anyone at all could have gotten that profile data. Anyone at all could have been (and could actually be) using said data surreptitiously this entire time, for any purpose whatsoever. Data that is useless by itself. Data that requires one to have linked it themself or to have had some unhinged type go and do it (been there, done that, rolled my eyes and batted the people away). Next?
-
Edit
Facebook
Instagram
Twitter
YouTube
Flickr