|
|
|||||||
| General discussion Topics related to various aspects of Champions of Regnum |
| View Poll Results: ?? | |||
| Very secure... |
   
|
9 | 30.00% |
| Not secure at all |
  
|
21 | 70.00% |
| Voters: 30. You may not vote on this poll | |||
 |
|
|
Thread Tools | Display Modes |
01-19-2008, 07:42 PM
|
#11 | ||
|
Duke
 
Join Date: Nov 2006
Location: 0x00CAFE
Posts: 3,366
 |
Quote:
Sorry, I confused packages with packets (translation to Spanish would be: enpaquetados with paquetes  ). My fault.Quote:
), but you can do the exact same thing to retrive the user and pass from anyone in the game. Unfortunately, this will keep happening because there's a large number of innocent-minded players that trust everyone.
__________________
I don't have a solution, but I admire the problem. |
||
|
|
|
01-19-2008, 07:44 PM
|
#12 | |
|
Master
 
Join Date: Feb 2007
Location: Altaruk :) Posts:31,337
Posts: 446
|
Quote:
EDIT: my fault. my bad english...  SuraK: encrypt SOMETHING
__________________
I'm an outsider, outside of everything... RAM  NAElegida Miss Ignis 2009 por votación popular |
|
|
|
|
|
01-19-2008, 09:24 PM
|
#13 | |
|
Marquis
Join Date: Mar 2007
Location: Edge of the Abyss
Posts: 2,066
|
Quote:
|
|
|
|
|
|
01-20-2008, 04:11 AM
|
#14 | |
|
Initiate
Join Date: Jun 2007
Posts: 159
|
Quote:
But what I ask myself here is: "Is this a security issue?" I do not think so. It possibly makes life easier for cheaters, but it does not compromise anyone's account data (username/password combination). One more thought on security: It's not an on/off or black/white thing. You have to define what you want to secure and against what. This is always a compromise between cost of implementation and cost of not implementating. This is why I do not vote here as there is not thing as "very secure" or "not secure at all". Security is always something in-between. Unless you define what you want to secure and against what, you can't really give a reasonable answer.
__________________
Ra: Lucinda {Silverbow,Wintersun,Ironfist} Horus: Laleja - Conjurer (42) Retired: Laleja / Faer / Nalys Silverbow / Tain / Vorr |
|
|
|
|
|
01-20-2008, 12:23 PM
|
#15 |
|
Banned
Join Date: Apr 2007
Posts: 309
|
God you guys sure are anal about security. Who cares, its a game.
Choose a good password, thats enough and totally up to you. If you get hacked, who could use your account anyways? You'd lose your stuff, and be completely at fault yourself if you choose a lame password. |
|
|
|
|
01-20-2008, 10:52 PM
|
#16 | |
|
Count
Join Date: Dec 2006
Location: Germany
Posts: 1,655
|
Quote:
the game is launched with the username and the hashed password as commandline switches. So any other user on your system or any other running application can grab your login. Then the unencrypted network traffic and packages could be a problem too but i havent looked into it. For some reason i also doubt the coding quality when it comes to buffer overflows and similar methods of remote code execution. I can imagine there arises a lot of trouble when someone does some security-auditing |
|
|
|
|
|
01-29-2008, 01:24 PM
|
#17 |
|
Apprentice
Join Date: Jan 2008
Location: ~/gam/regnum
Posts: 88
|
This poll needs a third option, because your accountname is indeed visible, but this only means you can get "hacked" if your password is too easy. All the pressure is on the password. The stronger the password, the safer you are. But I see no reason a real hacker would steal someones account? Those people usually have more interesting things to do
|
|
|
|
|
01-29-2008, 02:42 PM
|
#18 |
|
Count
Join Date: Nov 2007
Location: Infinite Improbability Drive
Posts: 1,287
|
well that's the issue here, 2 words come to mind: script kiddies
__________________
Hit me, nail me, make me God. Panoramix :: Half Elf Hunter ## Miraculix :: Half Elf Marksman ## Aspirinix :: Wood Elf Conjurer Syrtis :: Horus :: Antartes |
|
|
|
|
02-01-2008, 03:15 AM
|
#19 |
|
Pledge
Join Date: Aug 2007
Posts: 13
|
The simplest way to stop password de-hashing using a db is to do something like MD5(username + password) or MD5(username + MD5(password)).
It will add a few magnitudes of difficulty to the process of getting at the password. The network stuff is scarily scant.... |
|
|
|
|
02-01-2008, 03:26 AM
|
#20 |
|
Banned
Join Date: Aug 2007
Location: with ur mom
Posts: 939
 |
hackers
hakers r every where these days this 1 in youtube tried to hack but he got a bunch of viruses
 illigal defence mailed him a virus 4 pay back the only sucureness we get from our user name is that we dont use it game but hackers will look 4 us a forums and u can gues passes 4 ever so i goood hacking program can hack anyone in 5mins at most i know this from playing runescape a game in wich hacking is everysingle god danm day and if ur not with them they are aginst u but im not like that p.s some idiot made a tread asking for a hack for regnum morons like him are just BS real hackers use sht like him so ppl ignore wahts coming becareful in youtube look in my favorites i think i got an anty hacker thing if they send u a keylogger they get constant spam and my password is the same for everything because its alt codes i sugjest more ppl use this
|
|
|
|
|
|
|
I suggest that you use a new account for forums so people do not see your login name..... I said this when regnum was still in beta... but im saying it again, because someone I know got hacked... and lost their account..
Linear Mode
