Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[Painis Cupcake]

Torso for Rocketman:
Invader:https://www.dropbox.com/s/yycfgxuab6fc0td/Inavder.7z?dl=0

[Fuzion]

WN doesn't accept items anymore.

[kanak]

I have a problem with launching server

Code: [Select]

___________________________________________
ERROR in
action number 1
of Other Event: User Defined 0
for object __newobject846:

Error in code at line 48:
    ds_list_add(global.myself.gg2i_head_list, '');
                                ^
at position 31: Unknown variable gg2i_head_list


[SakkeHimself]

I dont know if the author still visits this page, but this plugin is not working rn at all.

EDIT: i get the same error in the reply above while trying to host this.

[Kevin Kuntz]

this plugin isn't being supported, you have to either play melodytchi's manor or make one yourself

[AKVARI]

I dont know if the author still visits this page, but this plugin is not working rn at all.

EDIT: i get the same error in the reply above while trying to host this.

The creator hasn't been here in ages (notice the Last Online status on his page) and I doubt he'll be back anytime soon.
Other players have also seen that this plugin isn't being supported anymore and that it's glitched.

[Fuzion]

He's active in discord.

[Heapons]

He's active in discord.

And (maybe) also on Steam.

[ajf]

Sorry to necropost but it's better than creating a separate topic.

Rather embarrassingly, it seems like a serious security issue with the server-sent plugin slipped by me when I reviewed the 2016-08-17 update to gg2i and all later versions. As you may know, the server-sent plugin approval process exists specifically to avoid security issues…

https://youtu.be/1Q-U2THOF00

I doubt WoodNeck had any malicious intentions, nor do I think WoodNeck ever exploited this, but I don't know for sure. The summary is that the plugin contains a (probably unintentional) backdoor in the plugin.gml file: it downloads a ZIP and extracts it to a temporary directory, and then calls execute_file() for files in that same directory. I think it's just intending to execute the GML files that came with the plugin, but a maliciously-crafted ZIP could overwrite those GML files with ones I haven't reviewed and which can do, in principle, anything.

As a result, I will remove all versions of gg2i from the plugins repository. The first versions of the plugin didn't have this issue but I suppose there's no point keeping them.

Please delete all copies of gg2i from your local ServerPluginsCache directory as well.

Sorry everyone.

I know this plugin is basically dead now so it's only of historical interest, thankfully, but I really should have caught this.