best anti-hack mod prevention

Discussion in 'Archived: Plugin Requests' started by codereaper, Mar 22, 2012.

  1. Offline

    codereaper

    • All caps post
    WE NEED A SEVER SIDE PLUGIN THAT WILL SCAN MINECRAFT .JAR AND RETRIVE THE FILE SIGNITURE. THIS WILL INSURE THERE ARE NO CLIENT SIDE MODS. WOULD BE BEST IF THIS WAS PART OF BUKKIT FOR SECURITY REASONS. I COULD MAKE IT BUT I AM FLUENT IN C++ SO I WOULD HAVE TO DO ALOT OF EXTRA WORK TO PORT IT TO JAVA
    PLEASE COMMENT ON THIS SUBJECT
     
  2. Offline

    Harry8550

    Would LOVE to see who is using mods on my server. Please make this somebody :)
     
  3. Offline

    Sayshal

    a) Stop talking in all caps my eyes are bleeding.
    b) I'm 90% sure this isn't possible because of legal reason etc.
    c) Ban and rollback.
     
    TripleXPenguin likes this.
  4. Offline

    codereaper

    This is possible and legal providing its legit and performs only this sole function. The only thin need would most likey be a terms of service by the server. Many games do this many fps games incorperate this function along with many techniques that i do not like as in a root kit that shows everthing on your pc . We are talking about checking 1 file signatue.
     
  5. Offline

    Sayshal

    I'm pretty sure the client would need a modification as well though, or else this would've been done here a while ago.
     
  6. Offline

    codereaper

    you dont need to mod a file to check its signature such as (virus scanners) check file signatures with out a modification to them
     
  7. I think nobody here would create a Trojaner for a little Kid. Thats Shout like a Baby.​
    "OH GOD I HAVE CHEATER. PLS PLS GET OFF ME".​
     
  8. Offline

    codereaper

    we are not talking about a trojan and unless there is somthing to hide ---......... A simple scan of minecraft.jar on login to make sure its legit...... only griefers would not like this
     
  9. Offline

    Father Of Time

    A server can't access files on the client system because the server does not reside on the client system, the client does. People must understand that a client/server setup is a bundling of two pieces of software, the client and the server; they are independent from each other and therefore software running on the local machine (the client) can access files locally on the players PC, but the server which runs remote to players PC can not. This type of scan would need to either rely on port communication to gain access to a system to perform the scans or would require a client mod.

    I'm not saying this is the only way, I'm sure a cleaver person could find additional methods of handling this, but simply put, cheater won't open a port or download a mod that renders them incapable of playing on protected servers.

    The best solution to cheaters is vigilant administration.
     
  10. Offline

    codereaper

    this can be dont thru a simple win socket and click a yes or no along with a terms of service. There doesnt need to be a client mod There is already communication established and this program can run in ram never being written to disk then self terminate upon completion.
     
  11. Offline

    tritonx

    This can be done if you provide a custom client that the server owner provide. You can either modify you own bukkit server to check for it or have a plugin do it. I'd make it so they could log with the standard client but would need the custom client to build and play.

    I heard of some people doing it. But they were keeping it for themselves.
     
  12. Offline

    janiev1997

    i ve got to a problem, a player came on my server, he says i can crash this server it has no anti hack plugin, and the server crash....
    is there really no plugin to ban this people when they come online....
    cant you router see the files his router sends are no minecraft files...
     
  13. Offline

    Zaros

    So you don't want a plugin - client relation ship. You want a external program with terms and a client checker that communicates with the server.

    You should really be more specific.
     
  14. Offline

    CoolOppo

    • Not acceptable attitude. You could have stopped after the nocheat link.
    What you want is impossible to do. Get NoCheat and shut up.
     
  15. Offline

    Father Of Time

    Whats with the horrible attitude man, if you think his requests are dumb then don't read them. His request is very much possible, but it's not practical... Also, do you make a habit of recommending outdated plug-ins to people in need?

    You should really work on your civility, how you lashed out at the original poster for what seems like no reason is unacceptable in my eyes...
     
  16. Offline

    Ylar

  17. Offline

    CaelThunderwing

    to the Op, this hasnt been done before or can be done w/o modification for one fact (actually two)

    Vanilla minecraft does Not send out a its .jar Signature, to implement this without those w/ hacked clients noticing. is pretty much impossible. if such a feature was implemented , all they'd haveto do is Spoof it. easily bypassed. 2:

    this alienates Everyone. those w/ Modloader for WorldEdit CUI, or those that actually (Gasp) play a mix between SP and SMP and use ModLoader for some SP Mods, or even those with Optifine.

    you'd haveto get a file signature fore Every possible mod and hacked client out there and the server checking this upon every connection attempt would Cause some degradation of performance.if your that scared Bring up Whitelist., or Use (i cant belive im saying this) MCBans, average griefer stays clear of MCBans servers, i can say this those that frequent Nodus client's forums or IRC you Say MCBans, and they run away.

    only griefer team i can think of that bothers w/ servers using it is Team AVO as they got a shit load of alts.
     
  18. Offline

    winter4w

    lol
     

Share This Page