The Haus

Friday, April 19, 2002

Dungeon Siege Demo Released

It's official: Microsoft has released a demo for its latest game, Dungeon Siege. The demo gives you the first 10% of the game or so, and weighs in at more than 180 megs. Get it here.

DS has been getting a lot of good reviews, but the more reviews I read, the less I'm interested. Icewind Dale is eating up my time lately, at least until Morrowind comes along!

Thursday, April 18, 2002

Mozilla 1.0 RC1 Released

Release Candidate 1 of Mozilla 1.0 has been released! While you are downloading, you can read the release notes. For those of you living under rocks, Mozilla is a cross-platform, open-source web browsing suite that is the basis for Netscape 6.x among other things. Almost to 1.0! Sweet!

SoF II Multiplayer Test Released

Raven has released the multiplayer test for Soldier of Fortune II: Double Helix. You can get the relatively small 51M file from any of Blue's list of mirrors. In case you are wondering what is included, GameSpy Daily interviewed Raven's Rick Johnson and Kenn Hoekstra to get the full scoop.

DX Continuity Bible

Blue and ShackNews both mentioned the posting on the Deus Ex Continuity Bible on Gamespy. This document is a snippet of the design docs used within Ion Austin to create Deus Ex. If you've already played through the game, give this a read, it's full of good stuff.

Jedi Knight II: Jedi Outcast Review

Yes, believe it or not, we present some original content *gasp*! Check out my review of Raven and Lucasarts' new game Jedi Knight II: Jedi Outcast. JKII is one of the best games I've ever played. Read on to find out why it earned my first ever perfect 10-out-of-10 score!

After you're done reading it, why not check out the rest of our reviews section?

J.t.Qbe comments: Hey A.T., have you seen the news that Transgaming has released a new version of WineX, now with support for JKII? Looks like you could skip that Windows reboot. . .

A.T. Hun comments: Just downloaded the source from CVS. Wish me luck.

IE Back Button Exploit

Wired brings word of another Internet Explorer vulnerability that can be activated simply by hitting the back button. Here's the problem:
When a Web page fails to load, Explorer displays a standard error message. This message is set to operate in the "Local Computer Zone" security setting, which by default allows scripting to run automatically.

Any code inserted in the original URL is handled as if it comes from the same security zone as the last URL viewed. So a URL containing malicious JavaScript that might be blocked by default if a user visits the site directly, will be automatically triggered when the user presses the back button.
While it sounds like it would be somewhat difficult to exploit, I was surprised at M$'s response to the one who reported the problem:
A Microsoft spokesman said the Microsoft Security Response Center thoroughly investigated Sandblad's report "and determined that because the proposed exploit scenario is dependent upon specific user interaction as a prerequisite, it does not meet our definition of a security vulnerability."

"The proposed exploit scenario requires the attacker to compel the users to click on the back button while visiting a malicious website. This scenario does not constitute a viable threat to users following standard best practices," the spokesman added.

Some users were surprised to find out that Microsoft believes that using the back button is not a standard, best security practice.
Apparently they are now in the business of redefining terms too. How can clicking the back button not be a "standard best practice"? Almost too bizarre. Thanks HardOCP.

The Master comments: That's okay--once a Microsoft staffer hits a back button on the right site and some hacker pulls down all their secure info, then they'll change their tune.

UT2003 Hands-On

Barry's World reported on their hands-on experience with Unreal Tournament 2003. It sounds like they've addressed one of my biggest gripes with UT: the sniper gun. It seems like everytime I've seen UT played at a LAN party or online it's just a constant refrain of "Head shot!" At least you won't be able to camp with it any more. Hopefully they also make the pain sounds louder so I can actually tell I'm being hit. Thanks Blue.

FiringSquad JKII Review

The FiringSquad posted their review of Jedi Knight II: Jedi Outcast, giving it a total score of 92%. This is the first review I've seen that has said that the single player was too easy. Once I discovered what they did (namely, make use of Force Speed a lot), the single player experience became much easier. One quibble: they complain that you cannot block Force Push or Pull in multiplayer. Actually you can, you just have to know how <evil grin>.

The review includes some console commands to make 'saber kills do more, um, obvious damage :) Try them, you'll like them.

Past Two Days' News

Recent Headlines

January 5, 2015: It Returns!
August 10, 2007: SCO SUCKS IT DOWN!
July 5, 2007: Slackware 12.0 Released
May 20, 2007: PhpBB 3.0 RC 1 Released
February 2, 2007: DOOM3 1.31 Patch

January 27, 2007: Join the World Community Grid
January 17, 2007: Flash Player 9 for Linux
December 30, 2006: Darkness over Daggerford 1.2
December 19, 2006: Pocket Tunes 4.0 Released
December 9, 2006: WRT54G 1.01.1 Firmware OK with Linux/Mac

All original information on this website is copyright © TheHaus.Net, 1999-2005. The use of original images, text, and/or code from this website without expressed written consent is prohibited. The authors of this site cannot be held responsible for any damage, real or imagined, which comes from the use of information presented on this site. All trademarks used are the properties of their respective owners. This site is not to be used as a floatation device (but if you try, I want a video tape of it).