not fair klei towards the player "kipper0k"

[w1rt]

 This person found a bug that gave access to the game to the infected, infection occurs when someone logs into the server "kipperka", he infected hundreds of servers not to cause damage,and in order for klei to fix this.

.io was a function of infection 

if it wasn't for the keeper who found this bug and some other person with bad intentions THEN ALL DST PLAYERS WERE INJURED,it's just nonsense to ban a person who wanted this bug fixed.

when he spammed on behalf of all the infected ,this was a forced measure the developers simply wouldn't have done anything,  with their very stupid answer "don't go to other people's servers"

but in the end he was simply banned, although he wanted the Best.

 

I want this to be spread, please.

[Mr.CrazyPotato]

In my opinion Klei did their worst here, but the players who got "infected" with this virus is actually ones who is victims here,

Kipperock had to find a better way to show this problem without interfering with players who don't care about Klei, don't care about mods, and just enjoy the game. And if he couldn't find another solution, he shouldn't have done it in the first place, but should have tried to continue to convey his message diplomatically. Even if it didn't work out that way, even if Klei was completely ignored, he is still to blame for all the players who got his virus. Yes, Klei is also to blame here, but we can't deny his involvement in this.

P.S. It doesn't mean that Klei should not be ashamed of theirselfes.

Edited May 17, 2025 by Mr.CrazyPotato

[kipper0k]

Infect - not ban cause

 

[Captain_Rage]

Before playing Don't Starve Together you have to accept the end-user license agreement between you and Klei Entertainment. You might want to read through it before using their services.

Edited May 17, 2025 by Captain_Rage

[Frosty_Mentos]

You could always put this up for 'reviewing issue' instead of dragging over to be dramatic about it here. I'm sure they'll sort it out. Or won't if this was actual violation with evidence. Sucks to be you, basically, but hope you didn't do this so this would get resolved quickly.

[Sbryf]

I've known this player for a long time, and I know he's a big fan of the game. Sure he can go too far sometimes, but if he does something, it's always with good intentions. Maybe it's too much to ask, but I think he deserves a second chance. I'm sure he won't make the same mistakes.

[Maxil20]

TLDR: Remember that incident a few months back where Klei had to irreversibly change the entire modding community due to one guy exploiting it by making genuine trojan/worm mods? Kipper’s that guy! It goes without saying this ban is 100% deserved, no matter what way you put it.

Long explanation/context to get people who might not know about this incident to get you up to speed:

A few months back, Kipper messaged in a modding discord about a potential modding vulnerability in the API related to io.open, a process which allowed mod folders to communicate with outside sources, most notably programs on the internet and the like. He expressed concerns of it having access to the entire mods folder, and being able to copy local mods. When he pinged Zark about this, Zark initially handwaved the issue away, saying you shouldn’t be joining other people’s servers if you are concerned about others stealing local mods.

Now I’m not going to pretend that Zarklord’s response was the greatest ever and it was a bit disingenuious to just Handwave an exploit like this away, and he certainly takes some blame here. However, the way Kipper responded to this, on a moral scale of 1-10, was a -1000.

Kipper in response copied Multiple popular mods, most notably forged forge, and uploaded them to the workshop, while injecting malicious code into said mods to cause them to spam a message and infect every other mod in your mods folder. This impacted several servers, particularly in the Russian community.

A thread of these incidents quickly popped up shortly afterwards:

Kipper meanwhile was gloating about this incident, in the same discord, hours after he uploaded the trojan mods.

In response, Klei had to force an update to prevent the io.open folder from processing read requests, which as a consequence broke a significant amount of the mods people used, the most noteworthy example being modded skins, as a curated mod list for allowing vanilla items to be reskinned broke, breaking every mod that did this. Several mods that utilized files related to the net/cloud also entirely stopped working as well.

Afterwards, He got banned from just about every major DST discord server for what I hope is now Fairly Obvious Reasons, and proceeded to directly admit that he was responsible for the worm incident.

A few months later, he posted how he got banned from the game itself (which I am impressed didn’t happen sooner…?), using the same image the post has.

I can’t believe I had to explain how pulling something like this off gets you into serious trouble and results in a ban from the game. Regardless of Kipper’s morals of wanting to fix a genuine issue and how he was practically handwaved, going this far was absolutely not the way to go about it. His ban is rightfully deserved for both causing an immense scare and for permanently altering the way mods have to be handled from here on out, because he ruined it for everyone.

[Keller Max]

Bro is a definition of Anti-Villain.

[Wawchik]

Judging by Maxils post this is almost entirely kippers fault. Also, a relatively big russian YouTuber posted a short on this topic yesterday, so this is probably the reason why people started caring because even in the comments everyone's been saying that it's unfair and Klei shouldn't have banned him

[Zandberg]

I'll be honest I have no sympathy for kipperok here. This attention-seeking bro made the modding environment worse for everyone.

[Captain_Rage]

1 hour ago, Maxil20 said:

absolutely not the way to go about it.

White hat > gray hat > black hat > brown hat.

[SilentConstruct]

Scrolling down to section 11 of the End User License Agreement, and it says the following;

I have highlighted what I believe to be the important bit. Did Kipper0k violate the EULA? Looks like a pretty definitive yes, so a ban was issued in response. You could argue that their intent was not inherently malicious, but either way the virus was still a virus. Just because it was significantly more tame compared to what hypothetically may have occurred if this issue was ignored, does not mean this was the correct way to bring this issue to Klei's attention.

While I cannot and will not defend either Zarklord or Klei for dismissing this security issue so readily, the actions that were taken in response by Kipper0k to get this bug fixed has had permanent ramifications for the DST modding space as a whole, and we're all worse off for it.

[Uedo]

2 hours ago, Maxil20 said:

TLDR: Remember that incident a few months back where Klei had to irreversibly change the entire modding community due to one guy exploiting it by making genuine trojan/worm mods? Kipper’s that guy! It goes without saying this ban is 100% deserved, no matter what way you put it.

Long explanation/context to get people who might not know about this incident to get you up to speed:

A few months back, Kipper messaged in a modding discord about a potential modding vulnerability in the API related to io.open, a process which allowed mod folders to communicate with outside sources, most notably programs on the internet and the like. He expressed concerns of it having access to the entire mods folder, and being able to copy local mods. When he pinged Zark about this, Zark initially handwaved the issue away, saying you shouldn’t be joining other people’s servers if you are concerned about others stealing local mods.

Now I’m not going to pretend that Zarklord’s response was the greatest ever and it was a bit disingenuious to just Handwave an exploit like this away, and he certainly takes some blame here. However, the way Kipper responded to this, on a moral scale of 1-10, was a -1000.

Kipper in response copied Multiple popular mods, most notably forged forge, and uploaded them to the workshop, while injecting malicious code into said mods to cause them to spam a message and infect every other mod in your mods folder. This impacted several servers, particularly in the Russian community.

A thread of these incidents quickly popped up shortly afterwards:

Kipper meanwhile was gloating about this incident, in the same discord, hours after he uploaded the trojan mods.

In response, Klei had to force an update to prevent the io.open folder from processing read requests, which as a consequence broke a significant amount of the mods people used, the most noteworthy example being modded skins, as a curated mod list for allowing vanilla items to be reskinned broke, breaking every mod that did this. Several mods that utilized files related to the net/cloud also entirely stopped working as well.

Afterwards, He got banned from just about every major DST discord server for what I hope is now Fairly Obvious Reasons, and proceeded to directly admit that he was responsible for the worm incident.

A few months later, he posted how he got banned from the game itself (which I am impressed didn’t happen sooner…?), using the same image the post has.

I can’t believe I had to explain how pulling something like this off gets you into serious trouble and results in a ban from the game. Regardless of Kipper’s morals of wanting to fix a genuine issue and how he was practically handwaved, going this far was absolutely not the way to go about it. His ban is rightfully deserved for both causing an immense scare and for permanently altering the way mods have to be handled from here on out, because he ruined it for everyone.

The only thing i'd critisize is Zark saying that if you don't want people to steal mods don't join servers. He should do well to remember that if he ever gets mugged, should have left his money at home - wild take.

[Ridley]

Sounds like a well deserved ban to me.

[_mylilsunshine_]

so that person is the one who got the modding scene to change, and broke Modded Skin API. well-deserved, a ban is too merciful if i'm being real

[hyoton123]

Holy moly. Haha.

[AliceShiki]

4 hours ago, Maxil20 said:

 

Tbh, I think like Zarklord's response is 100% appropriate to the issue that Kipperok brought up.

"Make a server mod to download other people's local mods" is definitely not a problem. Mods are just harmless modifications to the game that simply alter game aspects, and there is nothing wrong with people using the same mod you are using locally.

Like... Yeah, who cares if that happens? Let's be real. You're most likely not even going to know other people are also using the same local mods as you, because you might very well never meet them in a server again. And even if you do find out they're using the same mod as you... So what? It's not like this will harm your game experience in any way, it's just two people using the same mod, this is definitely not an issue.

The actual real problem was that this vulnerability could let someone create a Worm or a Virus or a Trojan Horse or however else you wanna call it... This was not the issue Kipperok brought up, and Zarklord clearly didn't think of this implication. If Kipperok had brought it up as something that could potentially lead to Virus mods being created, Zarklord's response would have probably been very different, something along the lines of, "We'll investigate the issue internally and work on a solution", I'd guess.

Like, Zarklord's first reply is very clear, "At risk of what?" Zarklord clearly didn't notice the virus potential of this vulnerability, that's why the issue was handwaved... Kipperok saw a vulnerability and instead of reporting the actual issues it could cause, they reported a non-issue, then proceeded to try making a call for action by actually exploiting the vulnerability in a harmful way without even first telling Klei about the harmful ways that were possible with this exploit.

So yeah, I wouldn't even say Zarklord handwaving the issue was a problem. Someone brought up a non-issue and they treated it as a non-issue, because it was not brought to their attention that there was a real issue hidden within that vulnerability... You could maybe try arguing that Zarklord should have noticed the real harmful potential of this vulnerability themselves, but I can't take this argument seriously when Zarklord directly and openly asked what were the potential risks. I'm not gonna blame someone who took the initiative to actually ask the very perpetrator of the virus about what were the potential risks, and ended up getting an answer that didn't highlight the actual problem, only for Kipperok to create a virus later on. This just doesn't feel logical to me. Kipperok is 100% in the wrong here.

[Frosty_Mentos]

Zarklord definitely should have listened to this potential breach, though Kip intentionally becoming a villain just to solve this problem by messing with everyone's games definitely is deserving of a ban there.

There's rules and agreements that are set in place. I suppose Kip has the excuse as he didn't read and didn't know (and that's legally valid, I think?) but he also could have endanger much of a community due to spite.

Bug reports exist for a reason. Devs are busy with their current job and likely have real life problems to deal with too. Things are to be fixed in time and it only takes patience and to make them aware of these things, if not one dev then another.

I'm willing to forgive Zark but hopefully that wouldn't happen again. Least we want is another situation like this.

[Duck986]

Hmmm. Very interesting. I knew this guy for a long while. Didn't know he was the reason behind that patch.

It's still funny that it is the method he used to drag attention to that. It may have been a stupid decision with a rather deserved ban but funny nonetheless.

Edited May 17, 2025 by Duck986

[SilverSpoon]

This is all just my personal opinion. I apologize for saying something presumptuous.

Considering that Klei might be able to sue Kipper, I must say that this is still a generous response. If we want fairness in this situation, I think we can only ask Klei to appropriate action regarding Zarklord’s decision that led to this outcome.

No matter how justified it may be, a person who takes action even if it means committing a crime must be a martyr who accepts the corresponding punishment with resignation. If we forgive a crime because of justification, many people would come along who think, "My justification makes my crime acceptable too."

Edited May 17, 2025 by SilverSpoon

[Valase]

Congrats for him, I guess.

4 hours ago, Keller Max said:

Bro is a definition of Anti-Villain.

People just take themselves way too seriously.

I think that you guys are ignoring that he kinda commited a crime in reuploading a bunch of mods loaded with "malicious code", like I know that he wanted best, but like, I'm not even talking about the "user's agreement" or something, I'm talking about a "crime" crime.

[Duck986]

Just now, Valase said:

I know that he wanted best, but like, I'm not even talking about the "user's agreement" or something, I'm talking about a "crime" crime.

I am rather sure there are ways to demonstrate the problem without exploiting it to create trojans

[Echsrick]

he went to far by what is like infecting other peoples games with a virus like thing and makin other people suffer, even if there are good intentions, makin others suffer just simply is not the way to do things

[Frosty_Mentos]

5 minutes ago, SilverSpoon said:

No matter how justified it may be, a person who takes action even if it means committing a crime must be a martyr who accepts the corresponding punishment with resignation. If we forgive a crime because of justification, many people would come along who think, "This crime is forgiven because of my justification."

I'm completely against this idea. Zark's done a lot of good for the community, from API to now working for Klei. He is a valuable asset and is well respected in the community. I feel like this is just a mishap that can be brushed aside once.

[SilverSpoon]

16 minutes ago, Frosty_Mentos said:

I'm completely against this idea. Zark's done a lot of good for the community, from API to now working for Klei. He is a valuable asset and is well respected in the community. I feel like this is just a mishap that can be brushed aside once.

Thank you for responding respectfully to my opinion.

I respect your opinion and I wouldn’t think that is wrong, even wouldn’t argue back because there’s not much more I can add beyond what I said in my first post.
However, I admit I’m too stubborn to change my belief on this matter.

Thank you for your understanding.