Security
I'm developing a system in amxx, and i use mysql and if someone decompile amxx file can see my password, and i want know how i can encrypt the password.
|
Re: Security
Don't hardcode password for mysql in plugin. Retrieve it from cvar (the same goes for host, username, database name) and in this case you just need to make sure that noone can see your server config files.
Also if you give someone your plugin then you must provide source code. |
Re: Security
I want encrypt because some can hack game server host and try decompile.
|
Re: Security
If your game server host can be hacked, then it suck. Find better one.
If you want to make sure that nobody will be able to retrieve your password from server even if they get access to files, then you will probably need to make your own module... |
Re: Security
well i'm go try make my own module :).
The big problem is my plugin will be used by other persons who want use my gather system. I'm think in make plugin with http requests, but if have alot of servers connected at same time will be have others problems. |
Re: Security
i have check source code of mysql module. And i'm try find where i need put the info of connection for later recompile.
|
Re: Security
Use some method to encrypt your password.
Then use that in the plugin. On plugin start, you can decrypt your password with a reverse method of what you used to encrypt it. |
Re: Security
How is this supposed to help if he is worried about decompiling his plugin? If someone can decompile it then no matter what kind of encrypt method you use, that someone will be able to retrieve orginal password.
I would suggest something else: Don't store password on your server, but retrieve it from website or database that answers only to requests sent from your game server ip... |
Re: Security
Quote:
|
Re: Security
Wouldn't that be harder than decompiling .amxx?
|
All times are GMT -4. The time now is 01:28. |
Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.