BuzzerBeater Forums

BBAPI Support > Site guide lines

Site guide lines

Set priority
Show messages by
From: RSX

This Post:
11
217925.2 in reply to 217925.1
Date: 5/18/2012 4:09:26 PM
Overall Posts Rated:
181181
Agreed, but also what worries me even more is the sites that save your login/password and later use all your bbapi informations for own purposes.

This Post:
00
217925.3 in reply to 217925.2
Date: 5/19/2012 4:36:08 AM
Overall Posts Rated:
9999
As an owner of an NT DB site like they mentioned, I can say I give my word to doesn't save your login datas and those player's skills, who not from our country. We have a special part for logging you players skills and follow up their development, but it is completely separeted from the NT database and not available by out NT managers and scouts.

It is kinda gentleman's agreement between the developers and the users.

This Post:
00
217925.4 in reply to 217925.3
Date: 5/19/2012 9:14:09 AM
Overall Posts Rated:
181181
I'm not saying that everybody does it. I know there are still trustworthy people out there, but I also know that at least one site abuse it.

Quoting Murphy's law:
whatever can happen will happen

and therefore some actions should be taken to secure bbapi or atleast inform users that things like that can happen.

From: jantzen
This Post:
00
217925.5 in reply to 217925.4
Date: 5/19/2012 4:38:15 PM
Overall Posts Rated:
5353
I agree. that we have to have some trust.

Don't know if I am allowed to give a example.
But I recently gave information to a nt db where the site url was advertised under the player.

After give the login information I ended up at a pages where I have no rights and can't see a thing.

I managed to browse the site and found out thats some pages was not allowed. Others I was allowed to see, suddenly I can see information about all my players which I didn't expect since it was for NT purpose.

The front page only shows a login prompt without any information at all.

I do think that when you can make a site with multiple functions, then you should also be able to make a front page telling what the site is about. What information is given.

If you could have a site login, then some simple requirements could be checked before it is allowed.

From: OJAY

To: RSX
This Post:
00
217925.6 in reply to 217925.4
Date: 5/20/2012 2:33:59 AM
Overall Posts Rated:
1111
If you dont trust a site you should not use it, really simple..

From: RSX

To: OJAY
This Post:
00
217925.7 in reply to 217925.6
Date: 5/20/2012 2:49:11 AM
Overall Posts Rated:
181181
WOW, you should work in IT Security
-Hello, how can I help you Sir?
-Someone hacked into my computer.
-If someone hacked into your computer, then you should not use it, really simple...

This Post:
00
217925.8 in reply to 217925.7
Date: 5/20/2012 5:55:41 AM
Overall Posts Rated:
9999
Yes, it is really the same case...*facepalm*

This Post:
00
217925.9 in reply to 217925.8
Date: 5/20/2012 6:03:15 AM
Overall Posts Rated:
181181
Similar enough to proove you don't understand the problem.

From: BB-Marin

To: RSX
This Post:
00
217925.10 in reply to 217925.9
Date: 5/21/2012 5:20:11 AM
TrenseRI
III.2
Overall Posts Rated:
36003600
Second Team:
ChiLeaders
Since we currently can't limit access to specific players, I agree that all managers need to be informed that by logging into such a site they risk giving all their players' information. I don't really know where to put that notice but I'm open to suggestions.