NwN Server and security update

[Legacy_wyldhunt1]

               @WhiZard

ultima03 wrote...

I'm not sure for how long this thing is down but there is a security breach for all servers

1 - Anyone can enter any account without knowing the password
2 - Inside the account they can delete the character if the server offer the option
3 - They can delevel - relevel if the server offers the option
4 - They can impersonate
5 - They can mess with the purchased items (sell them) and also mess with quicklots

Some server offers the option to protect their character with an in-game password, and thats another security problem :

1 - We don't know if they encrypt password
2 - No notice to prevent people from using a password that's used for an email or other importants things.

Putting
a password in-game only protect against server options (delete/relvel)
if coded properly, it won't protect from selling all items,
impersonating, etc.

It is therefore critical that the master
server authentification comes back as fast as possible. It has been away
too long and that caused a lof of torouble, character wipes, and vault
wipes.

Please take this into serious consideration

This is what Ultima03 the concern troll has stated as his concern; none of which are possible on any server using halfway decent code.



1 - Anyone can enter any account without knowing the password
True
2 - Inside the account they can delete the character if the server offer the option
False. They would be KeyBanned the moment they logged in.
3 - They can delevel - relevel if the server offers the option
False. They would be KeyBanned the moment they logged in.
4 - They can impersonate
False. They would be KeyBanned the moment they logged in.
5 - They can mess with the purchased items (sell them) and also mess with quicklots
False. They would be KeyBanned the moment they logged in.

Some server offers the option to protect their character with an in-game password, and thats another security problem :

1 - We don't know if they encrypt password
You also don't know if they encrypt your password on most of the PW websites/forums. It is nearly impossible to extract anything from the PW's database without direct access to the database.
2 - No notice to prevent people from using a password that's used for an email or other importants things.
Most players likely use the same password that they use when logging in to the PW's forums/website, which may be the same as their e-mail. Stealing your password from a PW server would be considerably more difficult than stealing from/hacking the PW's forums. The PW admin already has direct access to all of that from their website, so there is not an increased risk from them having access to the PW database.
Putting
a password in-game only protect against server options (delete/relvel)
if coded properly, it won't protect from selling all items,
impersonating, etc.
False. They would be KeyBanned the moment they logged in.
               
               

               

                     Modifié par wyldhunt1, 07 janvier 2012 - 11:57 .
                     
                  

            

[Legacy_NWN_baba yaga]

               raising up this issue on and on again does not help "nwn" in the end. its a matter of listening to the people here who tried their best to help others. its just disrespect and you can brag 5 pages more and nothing will change for you.... and i know why! you dont want to enjoy nwn!

p.s. curse you:devil:
               
               

               

                     Modifié par NWN_baba yaga, 08 janvier 2012 - 12:29 .
                     
                  

            

[Legacy_wyldhunt1]

               If nothing else, we may get new troll models out of it.
I'd use them often. A dungeon full of Ultima03 concern troll's for the players to level up on could be fun.
I may even ask DMSelena to make some +3 pixel swords for them so the players can take them.

I'll have to come up with some inventive one liners for them to yell when they see players in their dungeon.
               
               

               

                     Modifié par wyldhunt1, 08 janvier 2012 - 12:49 .
                     
                  

            

[Legacy_zunath]

               

wyldhunt1 wrote...

If nothing else, we may get new troll models out of it. '>
I'd use them often. A dungeon full of Ultima03 concern troll's for the players to level up on could be fun.
I may even ask DMSelena to make some +3 pixel swords for them so the players can take them.

I'll have to come up with some inventive one liners for them to yell when they see players in their dungeon.

Make sure you send me the IP for that server. I'd be down for some Ultima03 concern troll hunting.
               
               

               
            

[Legacy_DMSelena]

               Concern Troll
Race: Goblinoid
HD: 5
Habitat: Concern trolls prefer lurking on the edges of societies, especially niche interest groups.
Special abilities: pearl clutching, howl of despair, level drain, wall of text (AoE)
Racial abilities: natural +5 resistance to sonic attacks
Feats: entitlement
Weapons of choice: bulleted lists
Unique ability: familiar (sockpuppet)
-------------
STR: 12
DEX: 12
CON: 12
INT: 4
WIS: 4
CHA: 10
               
               

               

                     Modifié par DMSelena, 08 janvier 2012 - 01:37 .
                     
                  

            

[Legacy_Rolo Kipp]

               <rotf...>

DMSelena wrote...
Concern Troll
...

OMG! *Sooo* funny!

<...lmao>
               
               

               
            

[Legacy_Pstemarie]

               

Cause we all need a suitable avatar...
               
               

               

                     Modifié par Pstemarie, 08 janvier 2012 - 02:47 .
                     
                  

            

[Legacy_HipMaestro]

               

Pstemarie wrote...



Cause we all need a suitable avatar...

Suddenly, the loop has come full circle. *lol*
               
               

               
            

[Legacy_The Amethyst Dragon]

               wyldhunt1,

Your responses have lead to some custom content. '>
               
               

               
            

[Legacy_wyldhunt1]

               Amazing work as always, AD.
They shall be put to good use.
               
               

               
            

[Legacy_ultima03]

               I'm a troll because I ask for security and quality. And you are hysterical because I mentioned nwn traffic shut down.
               
               

               
            

[Legacy_zunath]

               

ultima03 wrote...

I'm a troll

I stopped reading there.
               
               

               
            

[Legacy_ultima03]

               

zunath wrote...

ultima03 wrote...

I'm a troll

I stopped reading there.

So what do you think about the latest Justin Bieber dvd ?
               
               

               

                     Modifié par ultima03, 08 janvier 2012 - 07:24 .
                     
                  

            

[Legacy_UrkOfGreyhawk]

               

DMSelena wrote...

Concern Troll
Race: Goblinoid
HD: 5
Habitat: Concern trolls prefer lurking on the edges of societies, especially niche interest groups.
Special abilities: pearl clutching, howl of despair, level drain, wall of text (AoE)
Racial abilities: natural +5 resistance to sonic attacks
Feats: entitlement
Weapons of choice: bulleted lists
Unique ability: familiar (sockpuppet)
-------------
STR: 12
DEX: 12
CON: 12
INT: 4
WIS: 4
CHA: 10

OMFG I think I felt something pop while I was laughing.
               
               

               
            

[Legacy_Pstemarie]

               

ultima03 wrote...

zunath wrote...

ultima03 wrote...

I'm a troll

I stopped reading there.

So what do you think about the latest Justin Bieber dvd ?

And the truth is finally revealed for all those patient enough to wait...

Justin aka ultima03, go peddle your dvd's elsewhere. '>