Quote:
Originally Posted by Carolus
- Ensure players they can expect the gameserver to be well configured and fair
|
You're fighting a battle that hasn't begun.
Quote:
Originally Posted by Carolus
If I'm making the code open-source, it becomes extremely easy to do with no programming knowledge at all.
|
It's extremely easy to do anyway.
Quote:
Originally Posted by Carolus
So, my idea would be to use every possible plugin functionallity and have all of those return values feed the md5. This seems to be a good idea, but one problem here would be that some/most functions don't return anything.
|
You still have a single funnel point. Obfuscation is a hindrance but not a solution. NB: Someone can also modify functions without touching their functionality (see: detours). Most C++ coders in this community know how to use them.
Quote:
Originally Posted by Carolus
So I'm kinda out of ideas (well maybe there could be a way to directly read the memory where the plugin is loaded and feed that to the md5)...
|
I have a great idea. Give out license keys and tie them to the server IP. Let users request the license key of a server. Everyone loves license keys, right? Right?
Quote:
Originally Posted by Carolus
So what I meant by security was : insuring that loaded plugins are what they say they are.
|
It's not security- more like a phone locking you into only using signed apps. It's not about security: it's about control. We're not going to add functionality like that, it's not our mission. You're welcome to, though.
A while ago leagues realized that to make matches fair and consistent, the best solution was hosting official servers themselves, and force client-side AC. The best way to control is to be in direct control. Letting people operate servers under specific guidelines reduces risk, but does not eliminate it. There's still an element of distrust.
__________________