E‎‎‎‎‎

Life is perfectly balanced with no exploits at all

You jest, but a lot of large software companies have bounties for major bugs or exploits, and they usually are good about keeping in mind how much money a malicious actor could possibly make or cause in damages with said exploit when it comes to how big the payouts are, so 5, or even occasionally 6 figure payouts aren't unheard of. They just generally require that you sign an agreement to not talk about the vulnerability until they'd have time to fix it, with 90 days being the most common to my understanding. Spiff ignores that for the sake of content but also voids any protections by doing so, hence the time Steam got Paypal to ban him.

@@Roger44477 yep, bug bounty platforms such as intigriti or hackerone are possible to basically live off of if you can find enough exploits.

Literally a lot of people could report this bug and nothing would be done, but the brit with an army, oh they don't want the bug to stay like this when the army arrives.

NI-caragua moment.

Don't be Contra-rian.

Ni----cotine

@@alexisbagacina6401 you forgot the "e". Nicotine

@@LaEmporoar thanks mate ♥️😁

Doubt that Valve can force Akamai to do anything really, Valve is not that important to a company such as Akamai.

@@someguy4915 You sure about that? Wanna bet what service Akamai's executives kids have running on their computers?

@@thearpox7873 Wanna bet how little that matters in a large company?... This is the other side of the XBOX Live 'my dad owns XBOX he can ban u' argument you yell when you start to lose a game of CoD :P Akamai has many more customers than just Valve, many of them much larger than Valve too. Just because the kids of some Akamai employees might have Steam doesn't mean they understand how their parent(s) job at Akamai has anything to do with that nor does it mean that those kids can convince their parents that Akamai should change their system so that they can have a weird name on Steam...

​@@someguy4915 And when those kids start grabbing the kitchen knives and making some threats? Or when Valve starts suing?

Lol

uhh, do they use those bricks to patch the exploits?

‎‎‎‎‎‎‎‎‎‎E

E

Naw, as someone who's used akamai I can say this is a steam only issue. My best guess is a Dev picked antidisestablishblablahblah as a test word to make sure the firewall was working properly. Most likely forgot to turn it off after.

I'd like to know if anticonstitutionally works, since it's somewhat similar in meaning

@@shytendeakatamanoir9740 99% certain the reason is technical, not linguistical. Aka, the word and it's meaning are irrelevant, but there's something WITHIN that word that causes a technical glitch, likely because some part of it is a keyword parsed differently, with Steam's 'set custom URL' function not escaping the keyword properly.

@@shytendeakatamanoir9740 I don't think anticonstitutionally would cause problem, however I'd wager that "anticonstitutionnellement" (longest French word, like antidis... is for English) does.

I think in the cyber security field, its called a "day zero attack" when someone uses a vulnerability that was not previously known about, and thus nobody has countermeasures to it.

@@Alblaka Nah, this is way too convenient to not be some kind of censorship.

banished to the shadow realm

​@@burp2019 Banished to Britain

And used the wish spell to exploit infinite boons of high magic.

@@thefinalboss4471 same difference

Glad I'm not the only one who thought of this.

other way around: disestablishment = less power to church, anti- = keep church power, ban "antidisestablishmentarianism" = secular

E

antidisestablishmentarianism

Isn't Akamai an Asian company? Maybe their Chinese overlords don't like the word for obvious reasons?

@@halofreak1990 Nope, they're American. Headquartered in Massachusetts. Akamai is a Hawaiian word.

ikr? This makes literally no sense.

There is no reason Valve would have suspected Akamai (or anyone) would ban this word. But now that they do fixing it will be as easy as adding an input mask.

Ah, like the American family Null that got dropped from every electronic registry because of that surname?

@@remove_the_at_sign Nah, if that was the case then any set of characters of that length or longer would cause a problem. Sounds more like it is actually a blacklist, although I can't imagine why they would blacklist such a word. It's bizarre.

Yeah. My money would have been on "void".

I approve of calling it anti23m 😂

@@zilvarro5766 typing it out was giving me arthritis lol

makes sense..

​@@Jason-fv4rg definitely adding this to my engineering toolbox, seems like a funky bit of goob to use in all sorts of implementations

​@@zilvarro5766 why 23m? 22 + 1? 2 - 3 m?

Im gonna test if this works for example in valorant, so... If someone is interested, i will say when its uploaded Update: the Word is too long for ubi, for riot, even f*cking roblox, so I cant even record anything worthy of your time

Antisidestalishmentarianism is fair and balanced

​@@Shitposting_IHMN do it

Agree

Wonder what happens when this is commented on someone's profile...

I use epic to play all my free games and frankly it's not as bad as everyone says, i mean don't get me wrong it's nowhere near as good as steam, but it's perfectly usable. Although it is much slower than it ought to be, ngl

More like EA orgin tbh

@@Fantastic_Mr_Fox ehh, it's not that it's bad. It's average. Like, absurdly so. No community features, can't really check news about the game without going through hoops, etc. I feel like devs forget that the biggest reason everyone uses Steam is because it's extremely open and you can easily see game information, news, and updates, AND having the community features like reviews, groups, WORKSHOP, and profiles. You can compare it to stores in real life - other platforms are closer to those Amazon no cashier stores. Kinda neat but nobody cares about them because you can't really just go there and hang out. Steam is a whole shopping mall. You can go there to buy stuff, but also go there to hit the arcade, do some bowling, buy some sushi in a small restaurant in the corner, and just generally hang about **with friends**.

E

@@Fantastic_Mr_Fox It was worse

Tf😂😂 got a link or something 😂😂

@@SingerDuce its just a screenshot from a message app. probably fake

doubt it. there's no reason for the bank to tell him that.

@@EdmondDantèsDE exactly

they utilize steamid, not the cosmetic url. steamid cant even be changed

@@diridibindy5704 yup steam ID is fixed upon account creation. Other Services using Akamai might not be so smart

@@thespiffingbrit So.. put the banned word as steamID on new profile?

@@EnjoyCocaColaLight the steamid is a number generated by valve upon account creation and can not be set or modified by the user.

@@EnjoyCocaColaLight witch would lead to you not being able to buy the game you don´t want to get banned at right?

That’s some impressive crop dusting.

i’m dead 💀💀💀💀💀💀😆😆😆😆😆😆😆😆😆😆😆😆😆😆

Why not just make it a long line of random text? Then it would really reduce the number of people who would reasonably find this out or have it done accidentally

yes sirrrrrrrrrrrrrrr

any boob lovers?

There’s a dead body in the dumpster behind the dominos I work ar

I agree nothing happens

We have the faith

Terrifying

That reminds me of the rare people with a space in their Minecraft username as they basically can't get banned (example: doing "/ban help me" would ban the user "help" for the reason "me" rather than ban the user "help me")

@@My_Old_YT_Account I know nothing about Minecraft server commands, but I'd be very surprised if this really makes people unbannable. I'm willing to guess something like putting the username in quotes should work.

@@carcharoclesmegalodon6904 or using the uuid would definitely work with a proper punishment plugin. however vanilla minecraft banning is trash and may or may not work

even nowaydays some sites have these kind of issues. CSRF!

yes because 1k is nothing.

its so nice to have a big centralized internet on massive corporation servers.

Smells like a good way to get lawsuit

The Nintendo DS version of that game would literally brick itself if you try to save and resume a skirmish match when your DS username is less than 4 characters. And my name is Ed...

While there are many talented KZbinrs out there, it's hard to deny that The Spiffing Brit is one of the best. With his infectious personality, engaging content, and unwavering dedication to his craft, he has amassed a loyal following of fans who can't get enough of his videos. What sets The Spiffing Brit apart from other KZbinrs is his ability to connect with his audience on a personal level. He is always open and honest with his fans, sharing his thoughts and feelings in a way that makes you feel like you're right there with him. Whether he's playing video games, sharing his experiences, or just chatting with his viewers, The Spiffing Brit has a way of making you feel like you're part of the conversation. Another thing that makes The Spiffing Brit so great is his dedication to his craft. He puts in countless hours of work each week to create high-quality content that his fans will love. He's always looking for ways to improve his videos, whether it's through better editing, more engaging topics, or higher production values. This level of dedication is rare in the world of KZbin, and it's what sets The Spiffing Brit apart from the rest. Of course, we can't forget about the content itself. The Spiffing Brit's videos are always entertaining, informative, and engaging. Whether you're a fan of video games, pop culture, or just great storytelling, there's something for everyone in his videos. He has a way of making even the most mundane topics interesting, and his infectious enthusiasm is impossible to resist. In conclusion, it's clear that The Spiffing Brit is one of the best KZbinrs out there. With his engaging personality, unwavering dedication, and high-quality content, he has won the hearts of millions of fans around the world. If you're not already a fan, it's time to check out his channel and see for yourself what all the fuss is about

@@LavaCreeperPeople this is either an unexpectedly wonderful essay or a stellar use of chat gpt :D

@@thespiffingbrit It's definitely GPT. The "in conclusion" part at the end is a dead give away.

​@Jacen Solo have you ever met a stressed high-school English student?

@@hartraiser yes. In conclusion, yes.

Well, his "signal-boosting" included an actual encouragement to actively trick other users into disabling their accounts which isn't exactly a white hat thing to do. In book that makes the situation worse. I mean before this video only 5 or so users would experience this. Now it will be hundreds or more

@@Puschit1 Except the problem was resolved mere hours after Valve started getting spammed with links to this video.

Not really a man enough thing when at some point, people would call him out for it It's a "small thing" to avoid controversy

I love this guys humor though.

His hat is very grey

I think there actually is a game like that!

And I'd pay it again to have a Nerd review of said game. He won't need to take us back to the past to play THIS shitty game that sucks ass! 🤣🤓

@Slow_riding what?

​@Slow_riding your mom.

stanley parable type game

However, the industry that the press and government was most worried about (banking and finance) ran into the Y2K bug early in 1970 within their mortgage departments and had to fix it way back then. Basically these incorrectly printed the year for 2000 in the last page of the report that gets printed out when you get a mortgage that details how much is interest and how much is principal for each month of the lifetime of the mortgage. Even those banks that didn't service mortgages had still had to deal with any bugs the moment they issued their first CD with a maturation date in 2000 or car loan whose final payment was due in 2000. A much more significant problem will be on January 19, 2038 (just after 3:14 UTC) if there's any remaining 32 bit servers running Linux by then. But even here, there has already been at least one company affected. Back in 2006 AOL had set a cookie's time out value for a cookie intended never to do so by adding a billion seconds to the current timestamp. (They had to adjust it to a lower value to fix.)

It contains the word "Arian", which is often associated with that popular ideology from 1930's Germany. It also contains "stab", which isn't a very nice thing to do. And also "tidis", but I suspect that won't be a problem...

​@@ArabianShark Incorrect. That would be spelled Aryan, if referring to the so-called Aryan race.

​@@jonnunn4196 No we didnt we hacked it to check < 50 yy and only in places where it broke at the time. They werent properly fixed and dates increased from yy to yyyy till the millenium fixes. Still pisses me off that we werent given credit for doing a good job. If there were still lots of bugs we would have been targetted for sure.

It's not that it has a bad word as a substring -- if you remove the first or last character of the word, then it's not blocked. It's only blocked when it's the full word antidisestablishmentarianism, so I guess it's the second one.

That's over 10 year away, if companies are still using old crap from before 2010 then they deserve the problems

@@apache937 you realize companies still need to use fax machines in certain sectors due to laws right? It wouldn't surprise me if people have ancient stuff running production parts given the people that knew how to manage it left 5-10 years ago.

I've seen cash registers use MS-DOS before but they are slowly fading out. Now the most popular ones I've seen are windows 7 and windows 10.

@@Telamont quantum computers will likely be readily available by then which means everything will have to update since quantum computers will make any kind of encryption and security obsolete.

@@King_Flippy_Nips if I had a nickel for every time I heard something along those lines I'd have a lot more steam games lol.

pirated games dont use the launchers

@@apache937 true but pirated games by themselves often include much more malicious malware

@@apache937 Tlauncher is probably one of the best piracy things I've seen. It not only includes all versions of Minecraft but also versions with fabric, sodium, forge and optifine, all without any ads or malware. And it's a launcher, so.

@@apache937 based comment

@kiwikemist the "how to" part is easy. I'm unsure how anyone could mess that up. However back when I did used to pirate alot of my games I also got a lot of malware with it (granted I was like 7 when I did this so yeah) so like even when you know how you can still get infected if you don't notice it.

It reminds me of the saying "People don't know what I do until I don't do it"

We got very handsomely over paid for a few months to usually find out nothing happens when you roll the system clock forward a bit. There's definitely a 2050 bug standing by in some of those systems though.

@@mostevil1082 Yeah but the validation that there is NO bug is vital as well.

Having friends who were recipients of part of that millions of dollars - no. They knew that there was nothing wrong with the system but they were handed money by panicked CEOs to thoroughly check everything anyway. Here's a hint - numbers in computers aren't decimal. They are binary. There is no conceivable reason why it would roll over at 99. There might possibly have been a problem at 2028, but more likely 2156 (because 128 is 7 bits and 256 is 8 and 7 bit numbers are odd. Literally)

​@@mostevil1082first hand answer better than my second hand answer. Thanks.

Brother if that's not sarcasm i swear to god we're fuc*ed

it used to be

You are right, services like netflix, disney+ and basically everything that uses a lot of servers, space and bandwith uses aws. The issue however is that consumers want cheap products and services and this is how you get them. It's always been that way, as an example even back in 1900 when electricity kicked off, companies swapped from creating their own electricity to landlines from electric companies because it was cheaper. Its nothing new, on the big market there are only a few players.

Centralization can be more efficient/cost effective, but it can certainly makes things a lot more fragile. It also inevitably ties you into the whims of fickle providers. Lot of companies have learned that the hard way. It's why I like the core concept of the Web 3.0 stuff, minus the NFT scams. Building a decentralized, more resilient, censorship resistant web versus relying on a few large players. Of course that can be tricky if you have high bandwidth needs.

@@xLeiZzex Netflix doesn't only use CDNs on AWS, they also host their own nodes on ISP networks in conjunction with said ISPs

Literally every time AWS had an issue and sites went down, it's because the sites were lazy and stuck everything (or one critical service) in one AWS location which you're not meant to do. But if they had that level of skills and knowledge, they wouldn't be using AWS anyway (edit: wouldn't be vendor locked into aws specific services at their core, could still use some general iaas e.g. s3 abstracted, vpl, ec2 video transcoding abstracted).

Good thing Cloudflare is stable

What are these 'friends' you speak of...

My then 12 year old ass fell for the good old alt+f4 trick in 2012 too. Hope gamers will continue with the joke till the ends of time.

Current Stream fails say that the Alt+F4 trick is alive and kicking unaware hindquarters to this day. With the added bonus of Streamers looking for an internet speed hack and they're shown how to remove their internet access, ending their stream...

perfectly based

Good luck to anyone who chooses to be a manace and block peoples accounts by being a silver fox😂😂

Lol I love exploits

Aye, but only a little. Really he was discussing it quasiantidisestablishmentarianistically.

I used to like casually sneaking "startkeylogger" into conversations and seeing whether the person still has Internet access.

i dont get it @@SianaGearz

@@Slava_Ukraini1991 Norton Antivirus had an Internet Security module which when encountering this in plaintext, and chat protocols didn't tend to be encrypted back in the day, would drop your internet connection. A more advanced attack was to say DCC SEND STARTKEYLOGGER 0 0 0 over IRC to also crash various home routers. Mind you, you don't have to have any keylogger vulnerability per se for this attack to work; overprotective measures against possible keyloggers as well as text parser implementation bugs are what would lead to denial of service.

When i think back to the amount of work my partner done running around the country patching thousands of servers, its really annoying when people say about how uneventful it was. THAT WAS THE POINT 🤣

I heard about a guy that returned a movie to Blockbuster Video and got charged over $1,000 because their computer didn't get updated lol.

y2k was solved by years of programmers world wide losing their collective minds going we have until 11:59 pm on dec31st of 1999 to fix this problem or 1000 years of interest will be removed from every bank account world wide because the idiots who originally designed our banking systems for some reason didnt think they would last from the mid 1980's until the 2000's and therefore programmed the thing to reset to 1000 after hitting 1999. Dumbest design ever, but was a SERIOUS SERIOUS potential disaster.

@@Khorvalar sounds like urban bullshit

@@Khorvalar Despite the media hype the big IT service providers didn't give a rat's arse about small - medium business. Those large IT contractors cared about infrastructure problems; an example: In my country there was a municipal water treatment plant with industrial control systems. One critical piece was the controller in charge of the chlorine feed mix. That unit would boot loop (not exactly - but a close analogy), moving the valves a tiny bit each cycle, to point that the valves could be full open or full closed within about 15 minutes. The unit was externally unresponsive. This would lead to one of two disaster scenarios (both resulting in no potable water): either the water had significant microbial growth and made the water unsafe or it dumped 6 months worth of chorine salt into the water in a span of around 6 hours - which would make the water exceptionally dangerous to drink (and could lead to chemical burns if one were to shower in it).

it was fun to do in gmod rp servers that had an item or model that had you smoking a cigarette

@@economicprisoner nah ppl would put it in their names or emblems, when the xbox 1 first released, ppl would read it, and then their headset or kinect would take that as a command and turn itself off

When I was 14 I fell for the "unbindall" trick

@@ffgfdg123 Xbox 360 not original xbox

@@thejhonnie Nah the console called the Xbox One, not the original Xbox (that everybody probably called the Xbox 1 up until that point). Because Microsoft makes unbelievably stupid naming decisions with their hardware.

Oh no...

Oh, I think I see where this is going.

Hat off to you and your immense "culture", sir. 🎩

too bad the steam version is cut down to the point where its not much of a game anymore. around 80% of the content and most characters arent included cause its 18+.

@@uteriel282 There is always a patch somewhere out there, official or unofficial. Such is the norm for 'spicy' steam games

They also can't buy games so sadly this doesn't work

I was literally just considering doing that for my kids accts heh (I wont)

@@The1stImmortal there is family mode where you can lock away your choice of the store, friends or community tabs behind a PIN. You can also whitelist games if you want. Useful for family sharing with a child so they can play games you bought but get their own cloud saves separate from yours.

@@JuddMan03 I know. I use it :) a bit clunky but passable

Ah yes, XKCD 327 ! Good times…

I've used akamai, I'm 95% certain you are correct. Akamai has firewall features and and an easy way of tested is just create a page that throws 403 or something. Dev probably picked a long word just to make it harder to do accidentally. As for why it's live, they probably just forgot to remove it. Large company means they probably don't even know it's causing an issue.

@@Insertnamehere58 also means that someone will eventually find

@@Insertnamehere58 I use Akamai, this is 100% customer error, Akamai themselves leave full control of routing, firewall, DDOS, malware, DNS, WAF (etc) to the customer. Given the size of Steam though, I'd expect the setup is a mixture of in-house network and security teams, third party support, Akamai support, and one of them isn't working very well.

So basically it took this long for someone to stumble on antidisestablishmentarianism. 😅

@@LtShifty No CDN provides FULL control of routing to the customer. They work hard to give the APPEARANCE of transparent control, but behind the scenes they're doing a bunch of stuff just to provide their core service. Any mistake in those routing rules can produce something like this, as found out by Cloudflare a few years back with a dodgy regexp. As it stands, with the information provided, there's no clear sign whether it's an error on the Akamai side, accidentally deploying a rule they didn't mean to, or whether it's Steam that have done it. It could still manifest as looking like an error on the Akamai server in either case. Either way, it's probably not a big deal to fix, it's almost certainly a test rule deployed by mistake, and it's just that if it's in Akamai's global rules it will take time to deploy and propagate because of the scale of the change.

I know the simple solution to most of the world's problems but I'm not allowed to go and fix them

Man i remember the days for sure. I don't know what the f**k we've all woken up to but this ain't it. I can't live like this. Do you guys remember gamespy? Things were good back then.

Yeah, it always bugs me that people act like that was a fake apocalypse scare, when in reality it was a serious, system-breaking bug for a ton of important computer systems that could have had _major_ impacts on a lot of important government and commercial operations. The only reason it didn't break everything was because of the massive effort of a lot of programmers who went out and fixed a lot of archaic code. It almost certainly wouldn't have led to all the crazy scenarios that the media was pushing, like causing a nuclear war or for planes to just fall out of the sky, but it could have seriously fucked up a lot of stuff like financial transactions and records, billing systems for utilities and telecom, telecom systems in general, military computer systems, weather tracking, air traffic control systems, etc... The danger wasn't that everything would go down and cause the apocalypse, but that it could cause a lot of really important systems to all stop talking to each other and/ or stop working correctly (or at all) _all at the same time,_ which would have caused massive disruptions and economic chaos in many parts of (then) modern society.

When exactly was no one allowed to fix a problem with a simple solution? Unless I missed something, I'm pretty sure it's still allowed

@@the_motherfucker See also: literally anything created after 2010

Welcome to what ShillTubers become over time.

If you don't want to talk to them then you don't have any problems really. It's a person's choice to blindly hand them the money. No one's forcing anyone to subscribe to their Patreon.

My biggest take is that random people on the internet are more willing to pay workers than actual employers.

@@shikkarasuthethird9295 ya, because they're consumers. It's consumers who pay all workers lol. Unless it's gov wokers, then it's tax.

This turned dark really fast 😅

Don’t be bigoted to the smoking community. We have long been discriminated against unfairly!

​@tomjones2056 are you being serious?

Ever notice how telling people to quit smoking is socially acceptable, yet telling a fatty to go on a diet makes you a monster?

@@skroowi8105 Because being fat only hurts you, not the people around you.

@@skroowi8105 Might have to do with the numbers. Western societies in large have reduced smoking, but the weight of population has gone up

Its actually a common word to use for testing blacklists.

@@Dead_Goat considering nobody will use it ever

Well, doesn't kill the account, stops you from seeing it... So power word - blind. 😃

@@Zirnike Power Word - Stun 🤣

​@@Zirnike it just stops it from accessing it. So it's Power Word - [[REDACTED]]

DCC SEND STARTKEYLOGGER 0 0 0

hi kade cutie

hopefully its just a missed test word, the devs used the word because its long and never really used, then forgot/didnt think about removing the test code

Nope... bc that also requires going through the server...

the mobile app would have prob still worked then, at least the non direct web content stuff

In practice that doesn't work. You can't override what the server wants to show you. Not redirecting just doesn't show the page.

Wait I recognise you

@@realah3001 I don't recognise you

Blacklisted most likely.

Or was already fired and now they have to bring him back because nobody can figure out how he stored the blacklist...

Antidisestablishmentarianism means that you are opposed to the disestablishment of the Church of England, so that actually means you're pro-government. It's a double negative, basically. Dunno why they'd ban a word like that though.

It makes one wonder what other words have magical effects in Steam's databases... Could removing the dis in AntiDISestablishmentarianism have similar effects? That's not the double negative. Could it be one or more rules regarding Anti + Establishment or could it be some part of the full word contains something banned?

@@elifia It's known as a rare, useless, extra long word. It's often used to test text fields for potential behavioural flaws with long words. To my taste it's not quite long enough, not even reaching 32 bytes.