1. We have a QA initiative where we work with the community more closely than ever to get your bug reports into the hands of the developers. Please use this forum for LIVE Server bug reporting. Do follow the format below, because it will help us out greatly in responding. If you do not, it's possible your bug report will be misinterpreted, or worse, lost!

    Read BEFORE submitting your first bug: Reporting Bugsā€¦ QA 101 Document
    • Search for your bug before posting in order to avoid duplicate reports.
    • Only reply to an existing thread if you have additional information for the reported bug. ALL extraneous commentary will be deleted to avoid cluttering the reports.
    • Keep your bug report short and factual.
    • There is no need to submit crash logs. Crash data we require is automatically logged.
    Bug Report Template
    1. Title:
    2. Reproduction Rate:
    3. Blocker?
    4. Details:
    5. Steps to Reproduce:
    6. User Specs:
    To get started, use /bug in-game (/devbug if on QA) to auto-create this template. It will even auto-fill some of the required information and open the browser for you. Then take the information that was just saved to your system's clipboard and paste it into a new QA forum post. Thank you bug hunters!
Dismiss Notice
This Section is READ ONLY - All Posts Are Archived

Who does one have to stab with a crystal blade to get an apostrophe?

Discussion in 'Release 10 Feedback' started by Sir Osis O`Liver, Sep 25, 2014.

  1. Sir Osis O`Liver

    Sir Osis O`Liver Avatar

    Messages:
    45
    Likes Received:
    91
    Trophy Points:
    8
    Many thread have been made. Our liege even said he would look into it back in R8 (possibly even R7). Yet still, I cannot create a character with an apostrophe.

    I just don't feel like it really is my avatar without an ' in his name.
     
  2. Poor game design

    Poor game design Avatar

    Messages:
    18,208
    Likes Received:
    35,522
    Trophy Points:
    153
    Gender:
    Male

    I believe that will require some very detail oriented coding for security purposes. As much as you may want an apostrophe, I'd equally like hackers to not have access to the database. :)
     
  3. Sir Seir

    Sir Seir Avatar

    Messages:
    1,057
    Likes Received:
    1,528
    Trophy Points:
    125
    Gender:
    Male
    Location:
    Bailey, CO
    I think you need a Royal Warrant to get one...that's what the silly cat near the rift told me...
     
  4. Sir Osis O`Liver

    Sir Osis O`Liver Avatar

    Messages:
    45
    Likes Received:
    91
    Trophy Points:
    8
    Sir, your education in the arts of technomagic needs brushing up.
     
  5. redfish

    redfish Avatar

    Messages:
    11,151
    Likes Received:
    27,168
    Trophy Points:
    165
    If I told you who, would you stab him?
     
  6. Poor game design

    Poor game design Avatar

    Messages:
    18,208
    Likes Received:
    35,522
    Trophy Points:
    153
    Gender:
    Male

    ANY time someone posts anything remotely direct about information security, someone responds with insistence that the person knows nothing! Of course, in this case you're correct. I'm not a web application or web database developer. I don't know exactly what's needed. But I do know that data validation is required, that the code (often) has to accurately account for things like apostrophe's and other special characters. If that's considered trivial by some, I leave that to you to decide.

    I will say this however. Because I did not want to get into a debate (especially one I couldn't win) but I still wanted to help out, I tried very hard not to ruffle anyone's feathers with being too detailed in my initial response. I'm curious though now, are you saying that an apostrophe is no big deal to code? Or are you saying an apostrophe in the wrong place is not one of the many ways to ensure someone performs an SQL injection attack against your servers? Because that's all I was saying so if I'm wrong, please point out where.
     
    Trenyc likes this.
  7. Trenyc

    Trenyc Avatar

    Messages:
    1,505
    Likes Received:
    2,968
    Trophy Points:
    125
    Gender:
    Male
    Basically all programming / scripting languages out there now that can interface with both users and a database support one or more methods which automagically escape special characters or convert to friendly entities. There are well known and much, much better ways to prevent injection attacks than just disallowing characters. :)
     
    Joviex likes this.
  8. High Baron O`Sullivan

    High Baron O`Sullivan Avatar

    Messages:
    3,503
    Likes Received:
    8,140
    Trophy Points:
    165
    Gender:
    Male
    Location:
    is everything.
    bump. we need apostrophes!
     
  9. Trenyc

    Trenyc Avatar

    Messages:
    1,505
    Likes Received:
    2,968
    Trophy Points:
    125
    Gender:
    Male
    For great justice!
     
    High Baron O`Sullivan likes this.
  10. High Baron O`Sullivan

    High Baron O`Sullivan Avatar

    Messages:
    3,503
    Likes Received:
    8,140
    Trophy Points:
    165
    Gender:
    Male
    Location:
    is everything.
    We have apostrophes! GREAT VICTORY!


    MUCH THANKS TO PORTALARIUM FOR HEARING ALLOWING OUR PLEA!
     
    Arianna, Net and smack like this.