Opinion from Community

Aergad · #1 03-29-2009, 04:49 AM

ok butyour not listening here the LS doesnt TOUCH the account table what your talking about would require a total rewrite of how the ls works AND a rewrite of how world authenticates...

Ontop of that the lsacctid value wont match so world wont let the user in if they switch between loginservers each ls would assign its own loginserver id.

World is the only thing that touches the accounts table the login server runs off a different database

minilogin the official one doesnt even touch the account table look int he worldserver code worldserver handles the authentication minilogin jsut sends the ip to the worldserver

Aergad · #2 03-29-2009, 04:52 AM

minilogin doesnt use the database at all though thats wht you dont understand look in the code the worldserver handles all that all minilogin does is transmit the ip to world.exe thats why it works that way with minilogin but here is the catch the new minilogin uses a totally seperate table called login_accounts

**trevius** · #3 03-29-2009, 04:59 AM

What exactly are you proposing as the ideal solution, Aergad? To make everything 100% privately handled? I am sure that could be done very easily with the mini-login image wrote just by him removing the restrictions he set on it. Everything else is already in place for that.

All I am proposing is a solution that would work for everyone in almost any scenario. Sure, that would require some rewrites to the current code, but is it all that hard to change the table that it interacts with?

Also, the LSID shouldn't really matter at all. The Public LS uses it because it runs from it's own database and should always match up fine. Since it doesn't send a password to the server when an account logs in, checking the LSID should just be another way to verify that it is the correct account that is trying to connect. In the case of a private LS, you shouldn't even need to verify LSID, since you get the account and password, which should be plenty to authenticate securely with.

I am fully aware that the mini-login Image wrote uses different tables. But, since the Login Server and Server code both have the ability to be changed, anything is possible. If the issue was a limitation of the client, that would be a different story, but in this case, it isn't.

I am not trying to get anyone to do anymore work than they want to do on getting a solution created. I just wanted to mention what I consider to be the ideal permanent solution.

Aergad · #4 03-29-2009, 06:16 AM

one thing you are forgetting is that SOE made this to work a certain way eg the client for their use on one login server not 50 or 100 loginservers all sharing and transfering information. all it would take is ONE person with ill intentions and the skills to pull it off and what you propose would put everyone at risk because, and this is the key all the loginservers would have to communicate with one another. It is the only way to transfer lsaccount ids and so forth and edit them automaticly. ontop of that we cant make the client transmit anything it doesnt already transmit.

the more things connected to the loginservers the more insecure they are, hell look at the current public ls and what someone is doing bringing ti down, now imagine if all loginservers were connected to each other imagine what that one person could accomplish.

Along with THAT risk there is the risk of all that account info just floating about cyberspace its just a bad idea no matter how you slice it.

I think images original plan is the best ONE public loginserver and the private ones listed in a central place where people can pick and choose which they want to play on.

Hell you cant even transfer accounts between servers on live without paying them a hefty fee and when you do pay them it takes them a while to do it dont you think the reason for that is the fact that its not a simple thing to do?

I would NEVER condone a system in which if someone compromises one ls all would be at risk because they are all located centrally sharing account information and so forth. its just too dangerous

Not only that but there is no reason for it the minilogin users use minilogin to NOT be on the public loginserver for their own reasons i highly doubt they want their own login server connected to the puclic loginserver. what you are proposing doesnt make sense, and im sorry for saying that but it just doesnt.

Why go through all that work why put EVERYONES supposedly private ls at risk by them all being connected to the already massivly insecure public login server when the people who DO use minilogin dont WANT to be connected to the public LS anyway.

and please dont say its best that everyone is connected and sharing the public ls because shards of dalaya disproved that long long ago they are private and have a far far bigger userbase then any one server on the public ls heck probably all of them put together dont come close to the ammount of players SoD has at any given time most ive seen on PEQ the most popular server on the public LS is about 200 or so

the LSID IS in the NEW Release of minilogin your talking about totally reinventing the wheel. and yes we can put anything we wnat in any hunk of code but the questions are one will it actually work properly TWO how secure will it be cause i sure as hell dont want my server compromised because its connected to another server that gets hacked like the public LS Does DAILY. nor do i want my users in a possition to have their accounts hacked because someone compromises their account through someone elses server.

not only is your idea an enourmous ammount of work for the develpers but then the users are gunna have to keep track of the ls password then the password theyt use on each and every worldserver they connect to...

Its full of more holes then swiss cheese security wise. images method is best in this case all loginservers standalone listed in a central location not interacting with all thee other loginservers plus one that getshacked every day and brought down that is the most secure way.

again MOST people are going to use the public LS anyway the people who DONT use it already are the ones who are going to be using this the most.

and yes there are client limitations why do you think you cant have an eqhost.txt file full of loginservers to choose from. remember this system was made by soe yes it was reverse engineered by the emu staff past and present but the way its got to work with the client is the same and that setup is only for ONE login server the way they designed the client thats how it works.

but all that aside the worst part of your idea is the huge security risks to EVERYONE that it poses

**trevius** · #5 03-29-2009, 06:59 AM

You obviously are still completely misunderstanding what I am proposing and why it is the best solution and still just as secure as anything you might propose.

I said nothing at all about sharing account information between any servers, private or public. There is no sharing involved at all... All account information for this idea would be held and accessed only on the server running it's own private Login Server. It would work exactly like a private Login Server should, exactly like you are suggesting, accept with more options. It has nothing to do with any other server's Private LS and doesn't interfere or interact with them in any way at all. I don't know why this is hard to understand as the concept is really quite simple.

Yes, the eqhost.txt file cannot accept multiple Login Servers to be set in it to be used at the same time, but you can set as many as you want in there and comment them out using the # sign and then simply uncomment whichever one you are wanting to use at that time and comment the previous one you were using out. Something like this works perfectly fine:

Code:

[LoginServer]
#Host=eqemulator.net:5998
Host=192.168.1.101:5999
#Host=209.17.190.80:5999

Also, I am positive that moving an account from 1 server to another on EQLive or WoW, or whatever is as simple as having an admin either run a very simple command or just click a button in a UI. It isn't an involved process. It shouldn't be any more involved than our webtool being able to move a character from 1 account to another, which takes about 2 seconds. Really, that has nothing to do with this conversation, but since you brought it up, I figured it was worth clarifying that.

I'm not sure what it is that you are not getting about this idea, but I think that if you understood it, you would be perfectly fine with it.

As far as how much work it would take to code exactly what I am talking about, I really don't think it would be that much at all. Then again, I have been working on getting the Secrets of Faydwer expansion to be fully compatible with the emulator for 4 months now for hours every single night. So, compared to that, most things pale in comparison :P At least it is almost done now, so it shouldn't be long before I can move onto doing other things and hopefully find time to start working on new content for the server I run.

I may be wrong, but I think Image said it only took him a couple of days to code the whole new Mini-Login and Public LS that they have now. If that is so, even if a good portion of it had to be adjusted to work for this idea, it isn't like we are talking about an insane amount of work to do it. Not that I am asking him to do it, but just saying it probably isn't as bad as you are thinking it is.

The whole concept of this idea would be to have dual LS capability for server. People would set their server to connect to the public LS just like normal (though, that would be optional and not required if you just wanted to use the Private one). Then, they would also set it to use the Private LS running on their own server and using their own accounts database at the same time. Ideally, servers would be connected to both all of the time. But, in the case that the Public LS goes down for any reason, their players could then change their eqhost.txt to point to the private one for that particular server. Also, if people wanted to avoid the Public LS even when it was up, they would still be able to use just the Private LS for that particular server since they would both be connected at all times.

The private LS wouldn't use the LS account ID numbers like the Public one does. Authentication for the private LS would ignore the "lsaccount_id" field completely since it would have no way of knowing what it should be. Instead, it would use the password field when people log into their private LS and then just forward any accounts that pass the authentication check at that point straight to the server as authenticated. That is it. Am I missing anything to make this more clear?

I am not trying to start an argument here. It seems that no matter what I say, you have to disagree, Aergad. That is perfectly fine, as everyone is entitled to their own opinion and you aren't breaking any kind of rules. But, I am not going to bother discussing it any further with you until you can understand that I am not out to control you or anyone else. All I am here for is to be helpful. I know you haven't been around this community long (maybe 2 weeks), but if you give it time, you might see that I am a fair person who just wants to help :P

**AndMetal** · #6 03-29-2009, 03:27 PM

Quote:

Originally Posted by trevius

The whole concept of this idea would be to have dual LS capability for server. People would set their server to connect to the public LS just like normal (though, that would be optional and not required if you just wanted to use the Private one). Then, they would also set it to use the Private LS running on their own server and using their own accounts database at the same time. Ideally, servers would be connected to both all of the time. But, in the case that the Public LS goes down for any reason, their players could then change their eqhost.txt to point to the private one for that particular server. Also, if people wanted to avoid the Public LS even when it was up, they would still be able to use just the Private LS for that particular server since they would both be connected at all times.

The private LS wouldn't use the LS account ID numbers like the Public one does. Authentication for the private LS would ignore the "lsaccount_id" field completely since it would have no way of knowing what it should be. Instead, it would use the password field when people log into their private LS and then just forward any accounts that pass the authentication check at that point straight to the server as authenticated. That is it.

I second.

I think it would be good to have an option to turn off the "public" part of it for those who either just want to play on a LAN, or just don't want to be connected to the public login server (either in the short term during development, or in the long term for whatever reasons).

I think ideally it would be best to incorporate this into world, but we'd need to keep the crypto out of the source (.dll, .so, etc) so others can't just start packet sniffing client authentication & reverse the username/password hash.

Quote:

Originally Posted by image

I see what we are getting at with the shared LS, we would need a way to generate UNIQUE id's that way, sort of like how everquest has those item id tags.

The reason I say this is, if I have LSID account 1 on my public server (which we obviously do), the private server would have LSID 1 of a different user. The Login server uses the LSID to identify and pass. Yes you can setup a private password with #setpass if they have the tables meshed in the same database, but the LSID would still be an issue.

So I think this would require a bit of re-work.

Edit: The reason I want unique LSID's is there still are a lot of database functions/calls that use the LSID and this would cause problems with login and world.

I think if we change to use the id rather than the lsaccount_id from the account table, that should help clear that up. Then, if an account authenticates via the public login server instead, we can update the lsaccount_id column with the info, but still use the local id.

After brief digging into the world source, I wasn't able to determine how dependent we are on the lsaccount_id, so I'm not really sure how difficult of a change this would be.

**trevius** · #7 03-29-2009, 05:18 PM

Image, if your last post that mentioned "shared LS" was a reply about my idea, then I still don't think you are understanding the idea. There would be no sharing of the Login Server. There would be a public (optional) Login Server connection and also a private (unshared and also optional) mini-login-like connection.

Here is a simple example of how it could work:

[Client]--->[Public Login Server]--->[Authenticate to Public LS Database]--->[Server]

Or

[Client]--->[Private Login Server]--->[Authenticate to Server's Account Table]--->[Server]

No sharing involved :P

image · #8 03-29-2009, 05:31 PM

I don't think I am able to express the design limitations of this to you, so I am just going to leave it at that.

KingMort · #9 03-30-2009, 10:19 AM

Well folks you know my stance .. Have gained heated discussion in other topics..

I 100% support EQEMU but everyone knows that the Eqemu staff may resolve to go open source... and maybe they don't... that's fine too.....

This is no time to lose confidence the team is making MUCH PROGRESS .....

Funds will be given and things will move forward as always...

REMEMBER we are a community... and we must NOT split up by any means .....

I don't care what happens to my own server as long as we pull together in these hard times...

Do not make the mistake to totally disregard Eqemu.... Do not make the mistake to totally disregard other options...

I strongly believe that KLS and Doodman and the other team members will pull through this.. However it's good that folks have been working on other options...

KEEP UP THE GOOD WORK !!!

King