Kirrus

Nothing to do with apocolypse or zombies. I'd like them to get a nice break from the genre work. Saying that, a few Indiestone devs may still be working on the game as long as it's selling, it's a disparate team!

We've actually given up playing zomboid MP on IWBUMS due to this!

Multiplayer server console is spamming java.lang.IllegalStateException: Keyboard must be created before you can query key state at org.lwjgl.input.Keyboard.isKeyDown(Keyboard.java:406) at zombie.iso.IsoCamera.update(IsoCamera.java:119) at zombie.ai.states.ClimbOverFenceState2.enter(ClimbOverFenceState2.java:75) at zombie.ai.StateMachine.changeState(StateMachine.java:48) at zombie.ai.states.ClimbOverFenceState.execute(ClimbOverFenceState.java:108) at zombie.ai.StateMachine.update(StateMachine.java:130) at zombie.characters.IsoGameCharacter.update(IsoGameCharacter.java:9837) at zombie.characters.IsoZombie.update(IsoZombie.java:1767) at zombie.iso.IsoCell.ProcessObjects(IsoCell.java:1353) at zombie.iso.IsoCell.update(IsoCell.java:4662) at zombie.iso.IsoWorld.update(IsoWorld.java:2589) at zombie.gameStates.IngameState.update(IngameState.java:1273) at zombie.network.GameServer.main(GameServer.java:694) Zombies started jittering, then became increasingly jittery. Eventually they just stop. They turn to face you, but run on the spot, can't move. Consle is filled with: java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException java.lang.NullPointerException

If it was, I wouldn't tell you. If it wasn't.. I wouldn't tell you.

Nope

Nah. You're just terrible at the buns

Done

No means No dude. There's plenty of information available out there. Again, I will not teach hacking skills. If you want to learn the "right" way, think about doing a security or forensics computing course at your university.

I'm not going to say more than I have already in this thread, and on reddit. I won't teach hacking skills.

If they're released when you're on holiday, it'll be a nice surprise to come home to! Seriously dude. We. Don't. Know. As previously proved, our ability to estimate these things is.. erm.. not good. So we don't estimate anymore, because stuff happens. Think of it like Valve time.

They'll be released when they're ready. We're not sure when they'll be ready. You'll know when they're ready, because we'll release them.

Yup. Those who logged in after the 3rd are at risk, but the forums don't track logins. Therefore we broke the password of everyone who was active, so we were sure we forced a reset of the password of all those at risk.

When it's ready. Patience, my young padawan, Patience. Do not let the haste of the Dark Side blind your eyes.

I'm quite aware what let's encrypt is, I've been using it personally since before it was open to public use It's likely we'll use it to help provide certs, but as I say, SSL has not been, and is not, a priority yet.

Their exfiltration endpoint broke, and prompted visible errors. We actually run an internal integrity scan within the forums themselves that would've picked it up, but we only run that once every 6 months or so. I've been adding extra detection mechanisms since, (maldet, change monitoring) but it's a bit horse-bolted. I'm probably going to look into restricting outbound HTTP(s), but that's something that'll take a while. I'll also look at getting https everywhere, but again, a while, plus low priority. We're not a big MITM target

People use the same passwords in multiple places still

Today we detected that someone had managed to hack our theindiestone.com forums. We know, 100%, that they have the plain text username and password of the 444 people who have logged in since the 3rd August - the hacker exfiltrated them just before they were encoded (hashed). It’s also of course conceivable, although there’s no evidence of this, that they have the hashed and salted (ie. encoded) password of other forum users too. As a precaution, we’ve broken the passwords of anyone who used the forums since the 3rd of August. Please use the following link to reset your password: http://theindiestone.com/forums/index.php?/lostpassword/ For everyone else, we strongly recommend you change the password you use on the forums for good measure. If you use it anywhere else, you should change it there as well. Our apologies for the inconvenience. TIS

Email away to 400+. Sorry, I've been relatively bad at getting the changelog emails out this past week :/

No. We've some words blocked that I'd rather not be blocked, but we've no choice but to filter them.

Something like $30 a year. The broad text filter is working best, it seems How would you stop them? Without the filters and service, we get a minium of ~60-100 an hour. Cleaning up is a case of just deleting everything in the last day or so.

Guys, RJ and the other devs like complex feedback to come into threads here, for easy reading. For things that are obviously bugs, they're better going in the tracker. For example, nutrition feedback is probably best in here, whilst "game crashes to desktop" is best in tracker. Saying that, we don't enforce either being either side. What we do ask is that you Stay on Topic, and remember the general forum rules. Don't assume hostility when none is intended, but also remember, we have quite a few members for whom english is not their first language.

Honestly, the only reason I know I could make bread with water+flour is because of a book (Remnant Population)...

Keep it civil please. Maybe a heavy RP server with multiple different lore chains isn't for you.