Page 4 of 4
Posted: 28 Nov 2006, 10:39
by iamacup
bAn.
Posted: 28 Nov 2006, 14:33
by Betalord
The reason why server broadcasts IPs is to ease communication when starting games since players participating in a battle have to figure out host's IP in one way or another. It can be done so that they only receive IPs that they really need when they need it, but at the time I was implementing it that meant additional work and more complex protocol.
I will try to redo the protocol until next version (depends on how much work that will mean), because I agree this information should not be so easily accessible. But meanwhile I'd like to ask you iamacup not to expose IPs directly.
Posted: 28 Nov 2006, 15:48
by MrNubyagi
discriminatingly banned by decimator
Posted: 28 Nov 2006, 15:50
by Betalord
MrNubyagi wrote:md5 server/client, encrypt the data sent, decrypt it with lobby client and bye bye IP lists
not sure how would encrypting it help? (you can still write a bot that connects to server and retrieves IP list)
Posted: 28 Nov 2006, 16:21
by MrNubyagi
discriminatingly banned by decimator
Posted: 28 Nov 2006, 16:25
by Betalord
The problem is much more trivial actually, server simply sends a list of users containing their external IPs (which it shouldn't) :)
The solution is to not send the IP of every user but only for battle hosts of course. (looking at the code I can't figure out why it was needed to send IP for every user back then when it was implemented other than for hosting purposes)
Posted: 28 Nov 2006, 18:26
by MrNubyagi
discriminatingly banned by decimator
Posted: 28 Nov 2006, 18:30
by Peet
springdir\script.txt
Anyone who has played a game with the host can get his IP (IMO not a problem)
Posted: 28 Nov 2006, 18:31
by Betalord
MrNubyagi wrote:Even so can't clean IP data be extracted by host(wich includes bots me thinks)? IMO crypt it.
No I meant only send IP of the host of the battle user is participating in. This way user only gets IP of a single user (of the host).
Posted: 28 Nov 2006, 18:34
by iamacup
add md5 hashes of maps to the protocall aswell
Posted: 28 Nov 2006, 18:40
by MrNubyagi
discriminatingly banned by decimator
Posted: 30 Nov 2006, 22:57
by Licho
Well IPs of players are entirely harmless.. I can't see why people have problems with that... Most people who are afraid have very limited knowledge of networks...
They scream their IP to world at every moment and every click on internet..
Btw Iamacup - if you want I can quickly do special bot which will report IP and user name to some web service and we can make global database of smurfs..