Skip to Content
12-10-2010 @ 4:07PM
But my Curse Client and I *LOVE* each other... :'( She would *NEVER* give me an ATV (Automatically Transmitted Virus)...
12-10-2010 @ 4:12PM
I would totally instal one if it gave me an ATV (All Terrain Vehicle)
12-10-2010 @ 6:23PM
Curse has had its installer program infected before (they got hacked server side) and they have also sold ad space to unscrupulous companies that used known security flaws in windows to compromise machines. Nothing is perfect. I still use curse client.
12-10-2010 @ 7:16PM
I use curse client to check for updates then manually download/install them intead us using the client.
12-10-2010 @ 7:04PM
I keep feeling like people are missing the point here. It doesn't matter what limits blizzard places on addons. That's not what he's saying.What he *is* trying to say, is that your addon client could be downloading anything that calls itself "generic addon 12" regardless of whether it's the actual addon or whether a hacker got into the guys addon account and uploaded a virus-laden addon. Because you're not actually looking at the files that are getting installed, you can't see whether or not there's a .exe that's being installed.Yes, curse monitors addons for viruses. Mostly through feedback. Which means that people get the virus first, and then leave feedback. Which means that people had to get issues in the first place.If you consider the potential of sneaking a /exe into an addon the morning of a big expansion, just the number of people downloading it each second is going to give someone a lot of information. Yeah, it'll get reported and taken down. But not before x number of people installed it to their computers.Seriously. I don't care how long you've been in the "tech" business, or what you think blizzard limits addons to. The point, again, is that you could end up downloading something other than an addon. LUA itself might be limited, but you're not necessarily just getting LUA.
12-10-2010 @ 10:54PM
Who cares? If you care about your account security you use an authenticator. The chances of a successful attack against an authenticator is very low and as far as I know one has never been seen in the wild.My bank account is less secure than my wow account.There is no point worrying about getting malware through an addon auto-updater when you are several orders of magnitude more likely to get malware from the flash ads on a site like WoW Insider (unless you use browser settings which disable them).
12-11-2010 @ 2:39PM
Or just use the Blizz authenticator, at first I didnt like the 2nd password, but this expansion has been stable, and im not constantly kicked off. Glad to read Curse, takes security seriously, for $20 a year, its worth using.
1-02-2011 @ 2:01AM
if it's not broke, don't fix it.I install my addons manualy because i don't trust cruse. But do you realy need to update them that often?DBM now and then when there is new content, Auctionator, Atlas loot.But that's about it. Most other add ons just don't seem to need much updating between patches.
First time? A confirmation email will be sent to you after submitting.
Members enter your username and password.
Enter your AOL or AIM screenname and password.
Please keep your comments relevant to this blog entry. Email addresses are never displayed, but they are required to confirm your comments.
When you enter your name and email address, you'll be sent a link to confirm your comment, and a password. To leave another comment, just use that password.
To create a live link, simply type the URL (including http://) or email address and we will make it a live link for you. You can put up to 3 URLs in your comments. Line breaks and paragraphs are automatically converted — no need to use <p> or <br /> tags.