It amazes me sometimes what happens around here. Yesterday Alan "The Idiot" Williams (his alias, not ours) abused his rights as a developer by using information from his game's database once located at: http://aodrpg.co.uk to exploit an users account on Dark Legacy (http://dlrpg.com). This bug resulted in Dark Legacy's economy being corrupted. A dump of an older database has been restored.

This conversation with Alan followed today:

Jim (jim@bravegamer.com), Alan (alan_A_williams@hotmail.com)

(7:50:08 PM) Alan WIlliams The Idiot: So I'm guessing what I did on a scale of 1 to 10 for unacceptability was like 42? XFD
(7:50:18 PM) Alan WIlliams The Idiot: *lets out a light sigh* It was fun though, :P
(7:50:29 PM) Jim: More like a 106.
(7:50:47 PM) Alan WIlliams The Idiot: :-O *yay* :L
(7:51:03 PM) Alan WIlliams The Idiot: I know I shouldn't have, but like I said, it was fun
(7:51:20 PM) Alan WIlliams The Idiot: Atleast I was kind enough to tell Tim the bug I used {{{
(7:51:25 PM) Alan WIlliams The Idiot: He had no idea how I did it XD
(7:51:48 PM) Jim: I'm sorry to say I cannot let you have AoD back on the server. As part of this network we are supposed to support each other in our efforts of development. What you did went agiasnt that totally.
(7:52:17 PM) Alan WIlliams The Idiot: Hey, I know that, and I was actually expecting this to happen to be honest =D I know what I did couldn't go unpunish, so meh :B
(7:52:57 PM) Alan WIlliams The Idiot: But on the brightside, I DID point out a MAJOR flaw in DL... They NEED automated backups ;)
(7:52:58 PM) Alan WIlliams The Idiot: XD
(7:53:09 PM) Alan WIlliams The Idiot: And I found a bug that was laying there since it was released...
(7:53:10 PM) Alan WIlliams The Idiot: XD
(7:53:30 PM) Jim: Yes, and in doing so you should have just informed them of the bug and then let it go. Not abuse it to any extent.
(7:53:59 PM) Alan WIlliams The Idiot: But where is the fun in that for someone that likes to abuse bugs? :P
(7:54:42 PM) Alan WIlliams The Idiot: Well actually, I didn't just abuse a bug.. I did hack another players account, and THEN abuse it while getting a known "hacker" to sign up at the same time as when I was doing what I did so it kinda make it look like HE was the one who was doing it, not me :P
(7:54:53 PM) Alan WIlliams The Idiot: But I had to confess to clear those who were innocent :( XD
(7:55:24 PM) Alan WIlliams The Idiot: Meh, you're most likely a busy man, so I'ma leave you in peace now :B
(7:55:37 PM) Jim: Have a good day.
(7:55:42 PM) Alan WIlliams The Idiot: You too =D

As a notice to all of you watch yourselves and how you keep your passwords when developing. While it is great to be able to send back a user their password if they lose it, why not go the extra mile and have a reset function so you can encrypt the passwords one-way with md5()? Or if you wish for a user to be able to retrieve it use something like AES for being able to decrypt it as well.