SCAM
Website Security
Sort:
heinzie wrote:
SCAM
heinzie your an idiot if you think this message is generic.
nope, just something to make me feel better about the time I spent working for erik, and it's only fair that members should be aware of the the way chess.com practices business. (i don't wan't anything from anyone).
an apology would be nice. but I think that line has been crossed. so I'm telling my story incase other people are foolish enough to make the mistake
Godspawn wrote:
1oosers wrote:
Hey Chess Fans
A little while ago I was asked to perform a security review on chess.com
So I did...and I went unpaid for my efforts and time even tho the vulnerabilities I had disclosed where fixed (most of them) I went unpaid.
unfortunatly for users of the site I didn't disclose all findings but the fact that I didn't get paid for my efforts stops me from wanting to share this information with the people who failed to pay me for my work.
I will be repeating this message to all users on the site (it was pretty straight forward getting a list) as I imagin this post will get delete.
the reason I will be disclosing this information with you is for two reasons: one, to name and shame the people who haven't paid me (yes Erik that's you). and two, if you haven't already been told about any security updates on the site ... perhaps there are some steps you should take and also be aware of certain things (such as that mcafee site check joke)
oh and three...
people who don't pay people for work done shouldn't get away with it.
There will be a twitter trend on this subject I may use it to release undisclosed issue on a per week basis or just to shed light on how chess.com opperates as a business the hash tag is #Bf5
Were you told you would be paid?
of course I was, a man of my expertise doesn't do this kind of work for fun :)
I worked more time than was alotted but that's only because the work had no real scoping proccess and this domain is huuuuuge ..
Dec 2, 2011
0
#6
I suggest you take your imaginary contract to a solicitor instead of bitching in the forums.
bjazz wrote:
I'm a prick, Ignore me.
OK, done.
As far as I know (or I guess if you so prefer. . .)
In order to judge in this "tremendous issue", Mr 100usrs should show:
a) the contract or agreement, or something in lieu of that
b) extent and type of work to be done
c) duration of the work
and. . .
d) results, including benefits Chess.com and members would obtain
Dec 9, 2011
0
#10
tabor wrote:
As far as I know (or I guess if you so prefer. . .)
In order to judge in this "tremendous issue", Mr 100usrs should show:
a) the contract or agreement, or something in lieu of that
b) extent and type of work to be done
c) duration of the work
and. . .
d) results, including benefits Chess.com and members would obtain
It must be something they don't teach at the academy of 1337 h4x0rs.
Hey Chess Fans
A little while ago I was asked to perform a security review on chess.com
So I did...and I went unpaid for my efforts and time even tho the vulnerabilities I had disclosed where fixed (most of them) I went unpaid.
unfortunatly for users of the site I didn't disclose all findings but the fact that I didn't get paid for my efforts stops me from wanting to share this information with the people who failed to pay me for my work.
I will be repeating this message to all users on the site (it was pretty straight forward getting a list) as I imagin this post will get delete.
the reason I will be disclosing this information with you is for two reasons: one, to name and shame the people who haven't paid me (yes Erik that's you). and two, if you haven't already been told about any security updates on the site ... perhaps there are some steps you should take and also be aware of certain things (such as that mcafee site check joke)
oh and three...
people who don't pay people for work done shouldn't get away with it.
There will be a twitter trend on this subject I may use it to release undisclosed issue on a per week basis or just to shed light on how chess.com opperates as a business the hash tag is #Bf5