Userscripts.org

Just looked at the code and the script has full access to your whole AE Account!

// @include http://*.astroempires.com/*

THAT IS JUST WRONG! ONLY AREAS THAT IT NEEDS SHOULD BE INCLUDED.

SET INCLUDES ONLY TO AREAS NEEDED! Not whole AE Site!
Stating otherwise is misleading, at least poor programming, and borderline spy-ware!
DOT NOT ALLOW "// @include http://*.astroempires.com/*" IN ANY SCRIPT!!!

I would change the INCLUDE to only areas it should have access!

// @include http://*.astroempires.com/base.aspx*
// @include http://*.astroempires.com/map.aspx*
// @include http://*.astroempires.com/empire.aspx*
// @include http://*.astroempires.com/fleet.aspx*
maybe
// @include http://*.astroempires.com/board.aspx*

I would add these EXCLUSIONS!

// @exclude http://*.astroempires.com/
// @exclude http://*.astroempires.com/*
// @exclude http://*.astroempires.com/home.*
// @exclude http://*.astroempires.com/home.aspx
// @exclude http://*.astroempires.com/home.aspx*
// @exclude http://*.astroempires.com/login.*
// @exclude http://*.astroempires.com/login.aspx
// @exclude http://*.astroempires.com/login.aspx*
// @exclude http://*.astroempires.com/messages.*
// @exclude http://*.astroempires.com/messages.aspx
// @exclude http://*.astroempires.com/messages.aspx*
// @exclude http://*.astroempires.com/account.*
// @exclude http://*.astroempires.com/account.aspx
// @exclude http://*.astroempires.com/account.aspx*
// @exclude http://support.astroempires.com/*
// @exclude http://forum.astroempires.com/*

I'm not sure which take precedence Include or Exclude, but why take the chance. :)

Paranoia and stupidity.

I would add these EXCLUSIONS!
// @exclude http://*.astroempires.com/
// @exclude http://*.astroempires.com/*

Retard, do you realize that second line just prevented your includes from working?

// @exclude http://*.astroempires.com/home.*
// @exclude http://*.astroempires.com/home.aspx
// @exclude http://*.astroempires.com/home.aspx*
// @exclude http://*.astroempires.com/login.*
// @exclude http://*.astroempires.com/login.aspx
// @exclude http://*.astroempires.com/login.aspx*
// @exclude http://*.astroempires.com/messages.*
// @exclude http://*.astroempires.com/messages.aspx
// @exclude http://*.astroempires.com/messages.aspx*
// @exclude http://*.astroempires.com/account.*
// @exclude http://*.astroempires.com/account.aspx
// @exclude http://*.astroempires.com/account.aspx*

Retard, what do you think * means?

In line with Script Authors comment.. ARE YOU STUPID OR JUST PLAIN RETARDED?

// @include http://*.astroempires.com/*

This first line lets the page load on all Non-excluded pages. That is all it does.. lets it READ the page and insert the added code. The lines below stop it from working on any important secure pages like account, login, wiki, and forum. Having the bove line in the "excludes" section will stop page loading at all.. So stop trying to screw the competition just because his coding is 100x better than yours.

// @exclude http://forum.astroempires.com/*
// @exclude http://wiki.astroempires.com/*
// @exclude *.astroempires.com/home.aspx*
// @exclude *.astroempires.com/login.aspx*

so, what need to be done and not done now????

Moreover one is freely able to RTFS for any spywarz code. :P

Mark is right. I've RTFS for any attempt to call out, which only occurs for version/upgrade. I recall at least one instance the AE Extras CP edition having the ability to call back and install new code that you wouldn't be able to view. I disabled it by finding all references to the server and replacing it with example.org.