Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 


Forgot your password?
Close
typodupeerror
×
First Person Shooters (Games) PC Games (Games) Entertainment Games

Valve Updates On Half-Life 2 Code Leak 119

Posted by simoniker from the fear-for-your-hax0r-lives dept.
Thanks to ShackNews for their updated report from Valve boss Gabe Newell regarding Thursday's leak of the Half-Life 2 source code. He says: "We're still finding machines internally that have been compromised" in relation to the "infiltration of our network" that led to the code leak, and warns that other developers may also be in danger: "There's anecdotal evidence that other game developers have been targeted by whoever attacked us." But he ends with a hopeful appeal to those who've been helping Valve hunt down the culprits online: "I've been fielding calls from the mainstream non-games, non-technical press all day. Hopefully they will get to report shortly what a mistake it is to piss off a whole bunch of gamers and get them hunting you around the Internet."
This discussion has been archived. No new comments can be posted.

Valve Updates On Half-Life 2 Code Leak More

Valve Updates On Half-Life 2 Code Leak

Comments Filter:

  • Two machines on every desktop (Score:3, Insightful)

    by Anonymous Coward on Saturday October 04, 2003 @02:58AM (#7131050)
    I hope that the folks at Valve now know that they need two machines on every desk, and two networks. If they had such an arrangement (with one of the networks COMPLETELY disconnected from the Internet) this would never have happened. A company with the money that Valve has can afford this level of redundancy. I hope Valve implements something like this now (and pretty much ANY gaming or large software facility) to prevent problems like this in the future.
    • Even more likely: Why would workers need internet access at all?

      Okay, not the most popular view in the world, but many companies would do a lot better without the distraction of the internet. e-mail can always be put through a heavily firewalled and filtered system, but why in the world should everything else be enabled?

      I hate to say this, but if I were to run a company like this, I would have a computer room where employees can chill, drink coffee or whiskey (hey, creativity comes from the strangest plac
      • "Why would workers need internet access at all?"

        Because, generally, workers are more productive, happier and less stressed if you trust them, cut them some slack to organise themselves and don't isolate them from friends. In several situations I have encountered where the "internet only via one machine during your one 10 minute break a day" policy introduced productivity has gone down, workers have spent more time off ill and morale as a whole dropped through the floor.
        • Developers more than anyone need network access - documentation for libraries, IM communication with third parties that are providing those libraries, just using the internet as it was intended - as an information storage medium to look things up when you get stuck. The relaxing and stress release benefits are important too.

          It all goes back to the same old crap - employers expect total, slavish obedience and loyalty but aren't willing (as a general rule) to give anything back for that. Just being able to bl

          • Developers more than anyone need network access - documentation for libraries, IM communication with third parties that are providing those libraries, just using the internet as it was intended - as an information storage medium to look things up when you get stuck.

            This is why the parent post suggested two machines on each desk: one for email, IM, web documentation and all that, and one without internet access, but with access to internal source code and other IP. Each not accessible from the other.

            E
      • Umm... this happenned because of email. This happenned because they got a trojan via Outlook.

        Also, as a developer who worked for 6 months at a company without net access... it sucks. No access to online developer resources. We wrote enterprise-level backup software that ran on NT, Linux, UNIX (Solaris, Irix, HP-UX, *BSD, SCO, AIX, and a bunch of others I can't remember), Novell, OS/2, and a host of others I can't remember. Getting info from various online publications was a chore. Whenever we downloaded a

        • I believe the poster is suggesting something like a laptop on the desk for the internet/email/public network, then having a separate development network with the huge-ass workstation for the development. Makes sense to me.

        • Gabe's post never indicated the attack vector. It could have been a trojan through outlook, it could have been something else (poor passwords, a machine infected with a trojan that later VPN'ed into the corporate network, etc).

          There's not enough information available externally to blame any attack vector.
    • One connected to an "unsecure" T1 (though still behind a firewall, no ports open incoming, no use of Outlook and/or Outlook express). The other computer is connected to the standard frame relay circuit that everyone else in the company is on.

      A mini 2-computer KVM, and I don't have to worry about compromising one network by any actions in the other.
    • It's been done, the email/web system a Mac and the dev system a PC. The extra cost of a Mac not being an issue since you can get 5 years out of a Mac when used for such lightweight tasks.

      Some thought it was an odd idea originally but that was before the iPod and the iTunes Music Store existed. Opinions changed and the setup is popular now.

      I'd agree to a point that a Linux box could also be used in a similar manner but that argument is not as strong as it used to be. Newer Macs are pretty damn nice Uni
      • And you can't get as many years out of another machine for the same uses?

        5 years ago Pentium II 450mhz were top of the line. Those are still pretty decent machines.
        • And you can't get as many years out of another machine for the same uses

          The point of the Mac is that the various Windows, Outlook, and Explorer vulnerabilities are irrelevant. Apologies for my assumption that this would be obvious. Additionally, did you miss my point that you could do the same with a Linux box? I merely said we found Macs more convenient.
          • none of which addresses the statement quoted. You justified the extra cost of the Mac specifically with the ability to use the machine for 5 years, when the simple fact is that any machine used for those simple tasks could be used for 5 years, regardless of what hardware and OS it's running.
    • Most places where I work that have 'interesting source or data' have a machine with no email and very limited internet access (i.e., heavily firewalled) for development and a separate box with the usual level of access for office productivity (?) apps but the firewall wasn't quite so harsh. Production was on a completely separate network (with an airgap).

      Hardware costs nothing now. The real issue is system and network administration time.

  • Hate to say it (Score:5, Interesting)

    by 0x0d0a ( 568518 ) on Saturday October 04, 2003 @03:16AM (#7131101) Journal
    You know, I really hate to say it, but I'm sorry to see the source go down (Valve says that they're asking websites to take it down -- not sure if that translates to asking or sending legal threats). I'm skimming through a copy of it that I downloaded with some interest. It's not often that you get such insight into game development (post-mortems are interesting as well, but source hasn't been neatly edited). While I doubt a commercial gaming company would ever swipe code from Valve (too much potential damage -- if there's even a 10% risk of exposure, they're better off just licensing it.) Cheating will obviously be a problem...if I were Valve, I think I'd consider significant protocol revisions.

    Some people have said that Valve has included GPLed code in the Half Life 2 code. Dunno as to whether this is true, but I'd like to point out that while this is technically not kosher, I suspect that a lot of places do it -- as long as it's out by release time, I very much doubt that anyone will complain. (On the other hand, if it *isn't* out...)

    This is a good example of why internal security is very important. I don't use any computers at work that don't talk to each other through encrypted connections. I maintain a single trust relationship (pubkey based, not IP based), from a machine that has a superset of the information on a second machine, so there's little point in exploiting trust relationships (plus, if superset machine A were compromised, a keygrabber could easily allow compromise of machine B anyway). I don't use Windows filesharing. These are all very easy to overlook, especially during crunch time, but as Valve has discovered, while the chances of things going sour may be low, the potential damages are enormous. I would urge folks who are working with *any* kind of important IP to do the same -- do *not* rely on Windows filesharing, do *not* use trust relationships, and do not use unencrypted connections, even on your local network. SFTP exists and there are free clients all over -- you do not have a good excuse for using FTP.

    This is also another example of why it may be worthwhile to have a network admin that does regular security audits. It takes additional time, and the vast majority of time that cost is overhead, but Valve is certainly regretting not doing so at the moment. (We have irregular security audits, which is better than nothing, but obviously not ideal.)

    Finally, I'd like to say "chin up" to the folks at Valve. This sort of thing can be very frusterating, and I'm sure it hasn't helped morale at Valve much, but it's not a game-killer, even if it necessitates changes in the protocol or game engine, and a release delay. Good luck -- I probably won't buy your game, since it's unlikely that there'll be a Linux client, but I expect you'll have healthy sales.

    As for other folks -- remember crack.com, remember Valve -- secure your damn networks already.
    • I probably won't buy your game, since it's unlikely that there'll be a Linux client, but I expect you'll have healthy sales.
      you've got the sourcecode... why don't you make the port to linux so we can all enjoy this game :D
      • Because such a port would not be legal in the United States and most other nations. As such, few people would work to maintain it, and few would be willing to distribute it.

        Secondly, the game content -- audio, etc, would still be commercial. While I might be willing to spend time porting code of some game to Linux, if I made the extensive kind of time investment involved, I would expect content-creating members of the project to do the same -- to donate their work, so that it may be distributed freely.

    • Re:Hate to say it (Score:5, Informative)

      by NSash ( 711724 ) on Saturday October 04, 2003 @03:34AM (#7131156) Journal
      Some people have said that Valve has included GPLed code in the Half Life 2 code. Dunno as to whether this is true, but I'd like to point out that while this is technically not kosher, I suspect that a lot of places do it -- as long as it's out by release time, I very much doubt that anyone will complain.

      They're talking about the Havok physics engine. Two things:

      1. It's LGPL, not GPL
      2. Valve is using the Havok physics engine under a commercial license, so it's legit.

    • Re:Hate to say it (Score:5, Insightful)

      by psyco484 ( 555249 ) on Saturday October 04, 2003 @03:49AM (#7131192)
      VALVe officially "0wnZ j00," should've posted anonymously...

      Seriously, I considered downloading it since I like to toy with 3d programming, and I'd love to see how the "pros" do it, but then I realized that if I were to be caught, anything I might ever want to release myself could be considered infringement in some skewed sense. So I steered clear of it even though the educational benefits would be amazing. I've looked at the quake source code, but it didn't help me much, and by now it's horribly outdated, so seeing some real, working and current, source code to something like this would be beyond incredible for me to pick apart and analyze.

      I wish VALVe could open their engine up, but I definitly understand the possibility for cheating, and their obvious right to make a profit on what so far looks incredible. I won't be buying the game for the same reason as you, no Linux client, but I know for a fact they'll do well. I hope they take the time to rework portions of the code that could allow cheating since that's probably the single worst thing that can happen to a game.

      Honestly though, I'm really interested in what this will do to their overall release date, since it was already delayed for reasons unknown. Or maybe the reasons are known now, since the dates were around when it was supposed to go gold...hmmmm, makes you think.

      Good luck to VALVe, take this opportunity to tighten your code and fix steam, I'm tired of hearing my Windows friends complaining about it :).

      • VALVe officially "0wnZ j00," should've posted anonymously...

        True, and the act of downloading such software infringes their copyrights. However, there would be very little benefit to Valve in attempting to pursue the thousands of people that obtained the code through Slashdot alone, much less through secondary and alternate distribution. They're trying to keep websites from posting the code, but obviously it will never be eliminated.

        Seriously, I considered downloading it since I like to toy with 3d pro

  • some stupid comments here already (Score:4, Insightful)

    by Anonymous Coward on Saturday October 04, 2003 @03:20AM (#7131113)
    Two machines on every desk!

    They're developing a game with multiplayer internet capabilities and internet-based content delivery. How are they supposed to not connect their development machines to the internet? If they aren't to ship with networking, sure.

    The code should be locked up!

    Every programmer, licensee - and presumably a few hardware developers (such as ATI) - would have the code. It would be sitting in a source control database somewhere, plus probably daily backups would be taken of that database. Employees might also be allowed to take their work home with them. For example, I'm a programmer (no, not at Valve) and can connect to my work LAN using a VPN and get direct access to the SourceSafe databases for our various projects.

    They're using GPL source code they've not released!

    Um... newsflash: HalfLife 2 isn't out yet. Way to start bitching about something that's not happened yet. Even if it did include GPL'd code - by the GPL terms they only have to release that code when the product is for sale. If they have included such code, I'd imagine it's LGPL - and they wouldn't have to release code they've used provided they didn't change it.

    Anyway... Microsoft security = some very scary shit. I thought they'd solved the autorunning-virus-in-your-email thing, but I guess not. I patched the crap out of my Windows installation today, stopped using Outlook Express, went back to Pine for email and started using Mozilla Firebird. If I could work out why KDE 3.1 keeps hanging on me under FreeBSD 5.1, I'd move in that direction.
    • Even if it did include GPL'd code - by the GPL terms they only have to release that code when the product is for sale. If they have included such code, I'd imagine it's LGPL - and they wouldn't have to release code they've used provided they didn't change it.

      That's what I thought, initially, but the GPL states you need to be willing to provide the source code upon distribution of the derivated work. Distribution does not equal the game's release, actually, since they also distribute copies of the game bef
    • "They're developing a game with multiplayer internet capabilities and internet-based content delivery. How are they supposed to not connect their development machines to the internet?"

      Simple - you have one lot of machines on a private LAN with no connections at all to machines directly or indirectly connected to the internet. When you build a binary that needs testing across the internet, you put the binary, data files and everything except the bleedin sourcecode on a CD, carry it across to an internet cap
      • Yeah, because it's so simple to debug netcode with a binary, right?

        If you're going to be that paranoid about security, but still want to keep from increasing your development time by a factor of 10 by allowing your developers access to communications, consider having a private lan with all internal machines firewalled off from internet accesss, and then either have virtual OSes in virtual machines connecting, or have an app server (Citrix or similiar) with internet connectivity.

        And even that is a massive

        • Yeah, because it's so simple to debug netcode with a binary, right?

          What does it matter whether you are connecting to a machine across a few routers in your building (maybe one is simulating internet latency) instead of a few routers across the country? Why can't you test internet code on a LAN? It's just TCP/IP... works the same on a little network as a big one for the most part.

          And the bits of the internet you can't simulate locally (not sure what that would be).. you can test later on with a binary.
      • >Simple

        You are suggesting a level of security and inconvience not practaced in the world except for military level government top secret agencies. Remember, they are a gaming company. Their program will require a patch in the first 1-3 months.

        If you went thorugh all of this pain just to protect a potential leak in one part of your product you might as well have a secure shreeder for your print outs and remove all floppy drives/burners from all machines.
        • I have yet to be at a game company that DID allow a burner on your desktop. All the ones I've been at any burning even a Linux ISO had to go through the 'Mastering Lab'
        • Bullshit. Just because you're paranoid, it doesn't mean they aren't out to get you. At work, we've had to deal with data that had privacy limitation on the order of disabling all output devices. No printer, no network, no floppy, no CD, and no USB ports, and the data itself was on a PGP disk.

          For testing, you can set up a *private* routed internet (not the Internet, an internet) that the development machines are connected to, and separate boxes for non-code activity (documentation that isn't local, down

    • Anyway... Microsoft security = some very scary shit. I thought they'd solved the autorunning-virus-in-your-email thing, but I guess not. I patched the crap out of my Windows installation today, stopped using Outlook Express

      Well for one thing I doubt they were using Outlook Express, if they were using MS email they'd have been using Outlook, a different product, and a lot more secure out of the box (at least 2000 SP3, or 2002 versions are anyway).

      Putting aside the pros and cons of MS email clients, I'm

      • Actually they *do* point the finger at Outlook and the preview pane. Outlook has got a lot better ('Microsoft' just sent me a 'patch', but the .exe was blocked automatically), but it is still open to exploits.
        • The preview pane exploits were patched before the point where Outlook started blocking exe files.

          Basically, they'd have to be using an unpatched Outlook 2000 or older to have gotten hit through that method, unless there's some big preview pane exploit no one knows about.

          Anyway, it's not like Valve's ever jumped to early conclusions before, and I'd take their current explanation ('we dont know') over their previous explanation ('Outlook did it') any day.
          • Regrettably, you always start with an unpatched system and there can be some time before you have any system fully updated. Office pathes were never as automatic as Windows/IE - you had to explictly download them and the old vulnerability scanner (HFECHECK) didn't pick them up automatically (strange that, it could pick up patch problems with SQL Server). On the other hand there are still some nasties lurking in Internet Explorer.

            I still use O2K from time to time but the distro it came from was already SR1

    • They're developing a game with multiplayer internet capabilities and internet-based content delivery. How are they supposed to not connect their development machines to the internet? If they aren't to ship with networking, sure.

      The game doesn't have to see the real live internet prior to alpha or beta testing. An internal TCP/IP LAN with generated lag and randomly dropped packets can do nicely. It's damn near required to simulate various conditions anyway.
    • Since you are already using Firebird, you might want to look into Thunderbird. Even though it's young, I have had no problems with it. I've got it connecting to 3 different mailboxes with SSL IMAP and I'm amazed at how easy it is to manage everything.

  • Linux port (Score:5, Interesting)

    by mmmjoy ( 666918 ) on Saturday October 04, 2003 @05:24AM (#7131396)
    Looking through the code there is a directory called linux, full of makefiles and also #ifdef _LINUX switches through the code (especially in the parts using inline assembly). Whether this is just for the server or not I can't tell.

    The linux makefiles work to an extent, but only after you rework some of the code. I've got to a point where there's some calculations done in asm that I can't get to compile.

    If anyone has got further than that (I can compile up to studiorender/cstudiorender.cpp ) I would love to hear about it.

    • Re:Linux port (Score:1, Informative)

      by Anonymous Coward
      I commented that out, since gcc uses different inline-asm style which im not familiar with, and got a bit further, nowhere near all the way, though. And yes, im quite sure theres a client coming our way, since the graphics and physics engines both get built when using the linux makefiles. Yay!

    • Re:Linux port (Score:4, Interesting)

      by mchappee ( 22897 ) * on Saturday October 04, 2003 @10:33AM (#7132196)
      All the way.

      It took some effort, but I coaxed it into compiling and I got about 8 libraries and an executable. I had to go back and do some fixing, but after that it ran. It exited immediately after running. I stopped hacking on it after that. Anyway, it is just the server. However, it looks like the whole engine and helper libraries compile for use by the server. I'm waiting on a hint from valve as to whether they're going to get nasty about people messing with the code. I hope they take the attitude that you can't turn cheese back into milk, and adopt a noble policy wrt people messing around for curiosity's sake. If I see that I'll go further. I'd love to see just how far away a linux client is.

      BTW, I'm not bragging about being 1337 or anything. It's code, I'm a programmer, I was curious. That's why I'm not posting anonymously. Don't even ask for the results, they are not available. Maybe if Valve does something cool, like releases under the Sun CL, or even the GPL (yeah right).

      I've never been a Valve fan. I'm a linux user, and only a linux user. One of the priviliged few that get to use linux exclusively at home and work. That means that Valve allows me to further their cause by running a server but denies me the pleasure of playing their game. It's like they're throwing a party in my house and won't let me come. :-) It's obviously not worth installing/booting windows.

      Gabe, what do you say? Can I come to your party? I'll help out.

      Matthew
      • SOmething I thought about perhaps is an issue to programmers.

        Anybody who looks at the code is TAINTED. Any programer may claim they wont look at the code, but this code is.. well tainted to look at exectp for licensees and the developers.

        I can understand kiddies looking at it, but any seasoned programmer would lose something.

      • Well, seeing as how the game makes use of DirectX9 for its graphics, making a linux client would involve rewriting all the graphics code, no?
      • I have managed to compile almost all of it without removing any code.
        There is a missing (what a suprise) resource file (cpp) needed by the material system. If you just make and empty file in its place, however, it will continue to compile happily.

        After this I can compile everything except the engine and cs. (cs being dependent on the engine)
        There is a missing engine header file which seems to contain a large number of the functions used in the engine.

        I don't think it can be compiled much further without t
    • Those are for the LINUX version of the dedicated server. Valve's had a HLDS LINUX version for a long time.
  • why are gamers mad? or is valve just trying to paint it that way?

    • Re:dont get it (Score:3, Informative)

      by Haeleth ( 414428 )
      If you'd been looking forward for most of the year to the release of one of the most hyped games ever, and then someone leaked the source code, making it pretty likely that the game's release will be pushed back several months - wouldn't you be, oh, mildly irritated?

      Crackers are happy. A lot of legit hackers and coders are happy as well, because you don't get to see this sort of code every day. But gamers? Gamers don't want source code, they want the damn finished product!
    • Why are gamers mad? Could it be that many gamers like Valve? I have enjoyed buying and playing their products for years, and I hate the fact they are being taken advantage of.

  • Cheats possible (Score:1, Redundant)

    by Flingles ( 698457 )
    As far as I can think there are many possible outcomes:
    1: Cheats become widely available. Cheat programs are made to stop them eg. punkbuster. This = good. I don't mind the supposed "bandwidth hogging" programs on cable.

    2: Cheats are made but not let out for free use. This would be a small problem due to only a few l33t hax0rz having cheats. I prefer to just kill them with my handhack(tm).

    3: A combination of 1 & 2.

    4: Valve delays hl2 to make changes to the code. I hate to say it but I'd rather 1,2 or
    • Except that they already did delay HL2, remember? Not that your thoughts don't have merit, just that I personally suspect that Valve has known about the stolen source for some time, and they had to find the right way to frame the language describing the theft.

  • So WTF (Score:3, Funny)

    by TheOnlyCoolTim ( 264997 ) <tim.bolbrockNO@SPAMverizon.net> on Saturday October 04, 2003 @09:14AM (#7131878)
    These guys are smart enough to completely own Valve's computers but they're not smart enough to realize that you have to get the art, sounds, levels, and such too if you want to play Half-Life 2.

    Tim
    • Maybe they did - maybe they were leeching daily builds of the game up until the day Valve disconnected their network. That only the source got leaked out from the hacker's group of friends doesn't mean he didn't get more.
    • they didnt steal the *source* to play the game, they stole the code to exploit it. (Cheats, hacks, etc).

      This is very bad news for the existing hl community. The hlds code that can run hl1 games is there for example. They can hack that to cheat.

      The CD Key verification code is there. I dont think I need to comment on why that's bad.

      The anti-proxy/aimbot obfuscation code is there. Most of this code could be legacy hl1 code or share common patches. This IS VERY BAD.

      This isnt just bad for HL2 delay, thi

    • I think the reasoning there is, those can be extracted from a legitimate CD on release.

      They can, however, now remove copy protection, generate valid CD-keys, and so on.

      Not to mention, unfortunately, build some WICKED cheat programs....

    • Ehm? What? You can get the art sounds and "levels" from the cd when it comes out. That is easy. You can bet your ass the source won't be on it. Well unless someone really really screws up at valve.

      This isn't a pirating attack. Pirates wouldn't bother. This is someone who for whatever reason wanted to get his hands on the code. Could be nothing more then bragging rights. Certainly the fact that the code was released immidialtly suggessts this. After all if someone had wanted to steal the code for making th

  • Linux port? (Score:3)

    by Ender Ryan ( 79406 ) on Saturday October 04, 2003 @09:26AM (#7131917) Journal
    Maybe a pissed off Linux user "stole" the code in order to get someone to port it to Linux?

    I would really like to see a Linux port, is anyone working on it yet? :)

    • > I would really like to see a Linux port, is anyone working on it yet? :)

      Not going to happen.

      There might be going to be a Linux server, but I doubt you'll enjoy the gameplay on it much. The likelihood of the game itself being ported to Linux is roughly on a par with the Pope converting to Islam.

      Your best bet for a Linux version is to donate vast sums of money to WineX, but frankly it'd be cheaper to grit your teeth and pick up a copy of Windows.

  • Some of the comments around here astound me. (Score:4, Insightful)

    by DaveCBio ( 659840 ) on Saturday October 04, 2003 @12:59PM (#7132903)
    Some people are acting like this is a gift from god that will force Valve to Open Source. Some are saying that it's payback for not making a Linux version. Do you guys actually believe this stuff?

    Oh, as for the comments on licensing, it how much of the engine source you get depends on the licensing contract. A blanket statement like "You get it all." is erroneous.

  • The Linux Way (Score:1, Insightful)

    by Anonymous Coward
    There you have it, I don't see any post proclaiming how the attack on Valve was wrong, just people saying that this is payback for disrespecting the Linux community.

    Ahhh yes, there's the Linux Way - If you can't make it yourself, use stolen code from Valve (the hard work of others) against the the very people whom you want on your side and blame Valve for not having perfect security instead of blaming the bastard who attacked them.

    Let's see if they even give you the time of day on the next great game th
    • hehe cool, i was wondering when someone would finally say that ... now watch it get modded way down by those that would hide the truth!
    • Payback? That's rediculous. What use do Linux users have for Valve source code? Even if some group of hackers got it to run in Linux, which would require switching from DirectX to OpenGL and Linux-compatible sound and input mechanisms (SDL?), and probably a lot of other things I'm not aware of, there's no way in hell Valve would let them play on-line with Steam in place.

      I'll admit though, I do get a kick out of the irony of it all. They chose to make their game operable only on the Windows platform, they p
  • I was browsing the forum at halflife2.net, and all I could think of was a bunch of kids scouring the forums and irc channels following up on every single pathetic lead they can put their hands on. And at virtually any little piece of info they're emailing Valve with it (in fact, the halflife2.net forum is down right now probably for that very reason). Any real leads will just be lost in the noise. And any tracks are now probably overrun by a stampede of kids full of good intentions. If I were Valve, I'd ask

  • They asked for it... (Score:2, Funny)

    by Anonymous Coward
    They named the company Valve, they should expect leaks!

  • Other Developers? - Uh-oh (Score:4, Funny)

    by deminisma ( 703135 ) on Sunday October 05, 2003 @01:51AM (#7135791)
    "There's anecdotal evidence that other game developers have been targeted by whoever attacked us."

    Bad news for 3D Realms today - Duke Nukem Forever source liberated. Sadly, there wasn't that much to liberate.

    Here it is, contents of dukeforever.c:

    main()
    {
    printf("Duke Nukem Forever\n");
    }
  • Honestly, I don't see how this is a problem for Valve. Assuming they don't do something really nasty in the code, the exposure is harmless. It's unlikely another developer will use the code - too much risk. Cheaters might be a minor problem, but HL2 is primarily a single-player game, so Valve probably has at least a year to update the network code for multiplayer mods. Yes, the secrecy makes some sense in early development stages, but even then not much. The only problem might be early exposure to the game,

  • Taking source code home (Score:1, Interesting)

    by Anonymous Coward
    I do that all the time, my source code and all the company work I do at home is on an encrypted .DMG on my ipod.
    If someone stoled it or even the machines at work, all the data is unusable since to mount the dmg image on OS X you need the password. I create 4.7 DMG images to burn on DVD once a month in case of hardware failures.
    This is very usefull for me and protects the company.

Slashdot Top Deals

I think there's a world market for about five computers. -- attr. Thomas J. Watson (Chairman of the Board, IBM), 1943

Close