ClassiCube

Posted by AndrewPH • 6 comments

Hello! You may have noticed that you're now being asked for a "Login Code" when you log in from a new location (or new connection), and you might be wondering what that is and why it's happening.

This is called 2-factor authentication, and what that means is it requires that you prove who you are by not only using your password, but also by providing a unique random code sent to a secure location that only you should have access to. In this case, your email.

That prevents somebody from logging into your account, even if they know your account password, as long as your email and email password are secured.

Why am I being forced to use it?? I don't want this, my account won't ever get hacked!!

This is being enabled site-wide with no option to turn it off at this time. This probably will change in the future, but I don't have a solid timeframe yet.

It's been forced on because there was recently an attempted hack that exposed the fact that over 1% of the playerbase used their username as their password. Evidently the playerbase can't be trusted to use secure passwords, judging by that statistic.

 

Anyway, hopefully this doesn't cause too much of a ruckus with any of you. If you get locked out of your account, visit us on Discord and we'll look into the issue.

Posted by AndrewPH • 0 comments

With the recent release of 1.1.9, I urge all users to start using it. Some time this week I'll be switching on 2-factor authentication for all users, and the older clients don't have the code needed to handle the 2-factor challenge.

If you use ClassiCube on Steam, you should already be on 1.1.9 - I made sure to update that 😛 

Currently about 35% of the active playerbase per day uses 1.1.8 or older.

Posted by AndrewPH • 8 comments

Hey all,

As time goes on, more and more register for our game, and more alternative/modified clients pop up for use. I just wanted to take a moment to remind everybody to use a secure, unique password for ClassiCube, and to never use your password in third party clients unless you're 100% okay with the chance that they could steal your password.

 

What is a secure password, you may ask? It's simple, just follow these guidelines and your password will be considered secure...

1. It isn't your username. This is shockingly common.
2. It isn't a variation of your username or real name, or other identifying information.
3. It's longer than 10 characters - past this point it's completely infeasible to guess your password via bruteforcing with current hardware.
4. It contains letters (uppercase and lowercase), numbers, symbols, and spaces. The more complexity you shove into your password, the better.

It doesn't take much to have a secure password.

 

Why shouldn't I use my password in third party clients?

Third party clients are not made by us (weird how that works) and we can't guarantee that it doesn't send your credentials off to somebody else for later use. Even if it seems to look and function just like our client, it could be pulling a sneaky on you.

Security of your account is your responsibility - it's not hard to ensure.

Stay secure out there folks 😄

Posted by AndrewPH • 3 comments

Hey all, I finally got off my back end and brought the Steam release of the game into the forefront of technology, bringing it to the latest development build of ClassiCube to better represent where the game's at right now.

I've also worked with SpiralP to bring the CEF plugin to the Steam version. This increases the footprint of the Steam version by almost 300MB, but it's still much smaller than all those other games, so...

 

To celebrate, I've added a sale that will bring the price down by 42%, starting tomorrow (August 3rd) at 10:00AM PST and ending on August 10th at 10:00AM PST.

https://store.steampowered.com/app/1065710/ClassiCube/

 

Why purchase the game on Steam when I can just play it for free, right now?

The Steam version of the game is there so you can help pay for the continued operating costs of hosting ClassiCube. We use Amazon Web Services to host it, and that ain't cheap.

If you don't like Steam but want to help support the game, support us on Patreon!

Last but not least, we still have a Discord up and running, so feel free to join up for some good wholesome fun and the occasional photograph from yours truly 😉

Join us on Discord

 

Thanks all, and have a grand ol time.

Posted by AndrewPH • 4 comments

Hey y'all, I've hooked the front page of classicube.net to get the latest and greatest news straight from the forums.

This means you get to see all the latest news right here, AND right there. 

AND you can comment on the news, dang!

Posted by AndrewPH • 14 comments

Because nobody was using them.

 

Thread music:

https://www.youtube.com/watch?v=FeA3uUnSIR8

Posted by AndrewPH • 12 comments

I've made it so anybody that is a Glod Menbie or above (so Glods, Mods, and Admins) can choose to upload their own profile picture on the forums. As an example, I've made my pfp the extremely handsome Yoda from the hit game Yoda Stories, critically acclaimed for its music, gameplay, and graphics.

Glod Menbie is an automatic rank based on how long you've had an account with ClassiCube, if you ask for the rank you'll get temporarily banned.

Posted by AndrewPH • 20 comments

hi,

I just got finished writing an oauth provider into the ClassiCube website, and simultaneously got bored of maintaining the old forum code.

So I've gone and made a new forum, with none of the old classic threads you know and love, but with almost all of the ease-of-posting that came with the old forums.

All you need to do is slap that "Sign in with ClassiCube account" button and click 'yes, log in' to get logged in here.

But Andrew, where the heck did all the old posts go?

Don't worry, they're still there, right where you left them. You can access them at the same old site. Everything's just read-only, meaning you can't post or edit anything.

Due to the radical change in how this forum software works vs the old handmade one, it's not really possible for me to automatically move all threads over. The idea is we (the team, or you) can copy and paste threads over as wanted.

But really, why?

I wrote the old forums from scratch (well, with Flask) and they were buggy and relatively poorly written because I was much more inexperienced when I wrote it.

Now that I'm much more experienced at writing large applications, I don't have the drive to rewrite my poorly-written mess of a forum system. Additionally, since they're directly coupled with the rest of the site, any change I made had a chance of breaking the rest of the site for a moment. Adding new features that required database changes were iffy because I don't have a good migration system set up to perform schema modifications. It was a mess.

This new system allows me to decouple the forums entirely from the site, only relying on the site for logins (which are handled via oauth, no custom wizardry!) and hosted on an entirely different system.

 

anyway, thanks.