Agent_K64's Forum Posts

  • Google gave HTC some patents (the ones they got from Motorola?) to help them defend against Apple. :)

    As for the Samsung tablet thing...

    <img src="http://img847.imageshack.us/img847/3284/ipadtabevidence.jpg" border="0" />

    I really dislike their ways. x(

  • I see. I was more worried about a MSXML4 flaw, which I thought was caused by the Construct installer, making the user vulnerable through software other than Construst, such as Office, IE, etc. In any case, it looks like I was wrong about this so I edited my post. Sorry for the trouble. ):

  • Ah, I see.

    I was able to fix my Construct launch error by downloading the vc 2005 redist SP1 from here. It is an older release than what you linked, as it required two security patches after, via Windows Update. Construct then worked fine and the MSXML4 was not reverted to a vulnerable version. I then uninstalled the patches and the vc runtime and reinstalled it from the link you gave--and MSXML4 wasn't reverted to an old version, either. I then reinstalled Construct itself and I've been unable to get MSXML4 to downgrade, either?!

    So now I'm kind of clueless! D: I did not test for vulnerabilities exactly before and after installing Construct, so I can't say with certainty that something Construct installed has reverted the file's version. But on the other hand, I have not installed anything else in a long time, and I do run periodic vulnerability scans, so... yeahh.

    One way to check would be to ask others what their versions are. The version you want to have is: Msxml4.dll, Msxml4r.dll (4.30.2100.0), found in C:\Windows\System32. Or just run a scan with Secunia PSI as described in the first post. :) You might find other vulnerable software while you're at it. :(

    Oh and I doubt the vulnerability would be "outdated" if you have the vulnerable DLL sitting there. The page is old because the vulnerability is old itself.

  • It's kind of annoying that we need to keep that old runtime installed for Construct. :( 2010 is more commonly used now and it should be backward compatible with 2005 apps, unless the developer tied the app to a certain version number deliberately, AFAIK.

    Or is there a good reason for construct to use 2005?

    A great tool for checking the versions of your software for security assessment purposes is Secunia PSI. This is a very good security tool to have in your arsenal in general. It's much more important than any antivirus or firewall.

    EDIT: It seems that my concern about MSXML4 was indeed something to do with my system and not Construct. I've edited this post to help avoid any further potential confusion. @ Sorry for the trouble.

  • Thanks for the response! It's not what I'm looking for, however. It's not forced scrolling--it scrolls where the player goes. :P

    I wanted to replicate the arcade shooter type of scrolling. The best example I can get off the top of my head is this:

    Subscribe to Construct videos now

    (ignore the particle stuff xP)

    In theory, I believe I need to create an object that will act as a camera, and move up, with the window following that. My player object will need to move independently from this scrolling (ie. always move relative to the ground, but stat still relative to the window frame when I'm not pressing any keys). I tried to assign the camera a custom movement for this task, but I can't figure out how to make it move.

    On load: camera: Set vertical speed: -10

    ..doesn't do anything. ): The wiki doesn't seem to have any usage examples either. Any resources for learning how to use it would be appreciated, too. x3

  • <img src="http://img541.imageshack.us/img541/6860/omgshooter.png">

    I think that sketch should explain what I'm trying to do. Basically, I'd like to know what's the best way of implementing something like this.

    Despite lurking around for a while here, I don't have much experience with Construct, so I apologize for what I feel is a nub question. u_u I think I'm close to figuring it out but I don't want to do something inefficient when there's probably a clean way of doing it!

    Thanks!

  • This is more like Windows 7.1. It's not going to suck, but it's not going to be amazing for us PC users, either.

    It may create some interesting tablet platforms, however. Microsoft is tightly controlling the release of Windows 8 based hardware. There are only a couple approved manufacturers, and they can only release 1 tablet model, each. Microsoft is also setting strict performance requirements, which means there will be less crap-ware on them. All in all, the manufacturers are forced to refine their designs a lot before they release them. Acer is pissed off because they can't flood the market with tons of junk anymore, accusing Microsoft of "controlling everything." This is a good thing.

    In the end, the most interesting point about this OS is that it will run on ARM-based CPUs (SoCs).

  • Looks like someone lives in the middle of nowhere.

    And I disagree about stitched mega-photos not being amazing. I think it's pretty cool, actually, because it means that basically anyone with a decent camera can create these. You do need some extra equipment to do it on such a super-massive scale, though.

  • Awesome, I always wanted a network plugin.

    The only features I'd like aside from basic data sending is built-in capability to detect players that join, leave (and time out) from the game session. Some sort of way to host games for others to join, and preferably some way to handle a case where the host itself disconnects/exits the game, auto-assigning another player to be the host.

    That, and the ability to send data using TCP or UDP, depending on whether you need TCP reliability or UDP performance.

    I'm not really sure why you need "sprite indexing". Each player should have a unique ID generated by the network plugin, however. This way you could assign an ID to each player's object and reference that when you receive some data update from that player. That's how I did it in MMF with their Moo and DirectPlay network plugins, if I remember correctly...

  • [quote:3uuh443s]WebGL - A New Dimension for Browser Exploitation

    James Forshaw

    Summary

    WebGL is a new web standard for browsers which aims to bring 3D graphics to any page on the internet. It has recently been enabled by default in Firefox 4 and Google Chrome, and can be turned on in the latest builds of Safari. Context has an ongoing interest in researching new areas affecting the security landscape, especially when it could have a significant impact on our clients. We found that:

    • A number of serious security issues have been identified with the specification and implementations of WebGL.
    • These issues can allow an attacker to provide malicious code via a web browser which allows attacks on the GPU and graphics drivers. These attacks on the GPU via WebGL can render the entire machine unusable.
    • Additionally, there are other dangers with WebGL that put users? data, privacy and security at risk.
    • These issues are inherent to the WebGL specification and would require significant architectural changes in order to remediate in the platform design. Fundamentally, WebGL now allows full (Turing Complete) programs from the internet to reach the graphics driver and graphics hardware which operate in what is supposed to be the most protected part of the computer (Kernel Mode).
    • Browsers that enable WebGL by default put their users at risk to these issues.

    <img src="http://img560.imageshack.us/img560/3011/webglimg.png">

    More here: http://www.contextis.co.uk/resources/blog/webgl/

    Here's a video showing the attack in action:

    Subscribe to Construct videos now

    The user goes to a webpage, which silently downloads a remote program (calculator) and executes it, bypassing Chrome's security features.

    http://www.vupen.com/demos/VUPEN_Pwning_Chrome.php

    I never really liked all the extra stuff they're adding to the web. They are creating countless new attack vectors in the process. :( Anyone remembers ActiveX? lol

    Anyway, unless you actually want to see 3D stuff in your browser, for whatever strange reason, you should disable WebGL. In Firefox, you can disable WebGL by typing about:config into the address bar, find webgl.disabled and set it to true. Feel free to google for instructions on how to do this in other browsers. :P Internet Explorer 9 does not support WebGL (good job, IE engineering team!)

    Do you think this will negatively affect WebGL adoption? Should it be scrapped and redesigned with security in mind? I wonder how this will affect Construct 2.

    No offense to any WebGL fans out there. ;(

  • Looks cool! The cannon should probably be below the camera, though. xP

  • Firefox 4 RC2 has been released.

    Benchmark Score: 611

    Average FPS: 13

    No real changes in performance for me.

  • I run a phpbb forum and yeah, all those captchas are pretty useless. What DOES work is the Q&A system. You can define simple questions that deal with the topic of the forum/site and it should be very effective. Like "What is Construct primarily used for?" You can define multiple valid answers. And it's built into the phpBB3 core already.

    EDIT: I just noticed I replied to an old thread. Haven't seen any bots spamming, so I assume the situation is under control anyway. xD;;

  • I was going to suggest DirectX's DirectPlay, as that would provide a ton of features, including the ability to handle NATs. But it looks like Microsoft killed it...whyyyyyy. :C

  • Try Construct 3

    Develop games in your browser. Powerful, performant & highly capable.

    Try Now Construct 3 users don't see these ads

  • FF4 RC

    Benchmark Score: 599

    Average FPS: 13

    Core 2 Duo E6600, Radeon HD 5770

    I'm not impressed. ):

    EDIT:

    IE9

    Benchmark Score: 2717

    Average FPS: 57