Fw: Epic Games threatens to sue security researchers

From: Thor Larholm (thor@PIVX.COM)
Date: 02/11/03

  • Next message: Kurt Seifried: "Re: Windows Update (again) unavailable for non Internet Explorer users" 
    Date:         Tue, 11 Feb 2003 22:25:03 +0100
From: Thor Larholm <thor@PIVX.COM>
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    ----- Original Message -----
    From: "Mark Rein" <mrein@epicgames.com>
    To: <bugtraq@securityfocus.com>
    Sent: Tuesday, February 11, 2003 8:31 PM
    Subject: Re: Epic Games threatens to sue security researchers

    > In-Reply-To: <01ce01c2d1f1$1beebef0$858370d4@wks.jubii.dk>
    >
    > Thor,
    >
    > I have sent your company an apology for those completely unfortunate
    > comments that I sincerely regret. We did provide an official statement
    > and I was not, at the time, aware that my verbal reaction, in a moment of
    > shock and surprise, was being captured for the article.
    >
    > The comment was a complete over-reaction to seeing the list of games
    > including future games that have not yet been published. It had nothing
    > to do with the security issues themselves, the validity of the report, or
    > the way Pivx presented it to us. Pivx gave us more than fair enough
    > warning of the bugs and we simply failed to fix them in the allotted
    > time. We released a statement last week to the Unreal community
    > indicating that "we fucked up" in not addressing these concerns within
    > the given time and that we were already testing a patch with the security
    > issues corrected. In addition the official statement we gave pointed out
    > that we were fixing the holes and that the Pivx report was fair and
    > accurate. Licensees were already provided with the source code for the
    > security fixes.
    >
    > Again this was a moment-of-stupidity reaction and I sincerely apologize
    > to Pivx and the entire security community. Epic has already stated that
    > we will take these matters far more seriously in the future.
    >
    >
    > Mark Rein,
    > Epic Games Inc.
    >
    > Visit us at http://www.epicgames.com
    >
    >

    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
    Delivery co-sponsored by TruSecure Corporation
    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
    TICSA - Anniversary Special - Limited Time

    Become TICSA certified for just $221.25 US when you register before 3/31/03
    with PROMO "TS0103" at www.2test.com. NO membership fees, certification
    good for 2 years. Price for international delivery just $296.25 US, with
    this offer. Offer cannot be combined with any other special and expires
    3/31/03. Visit www.trusecure.com/ticsa for full details.

    oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo