|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Support::MiniLogin Support forum for problems with the official MiniLogin release. |
10-16-2004, 04:38 PM
|
Hill Giant
|
|
Join Date: Sep 2004
Posts: 184
|
|
Feature request
After some testing, I've noticed that this minilogin bases who gets logged in solely on the ip address matching minilogin_id, even if the login/password is invalid. I understand that this is basically an alternate method of verificaiton to bypass the crypto, but in the future do you see adding a login/password check instead as being viable? Or would that make it a real public LS instead of Minilogin and therefore fall under the category of what the dev team hasn't wanted to release in the past? Just curious more than anything else, as this alone at least allows testing and world development when the emu LS is down or confused.
The other feature that would be nice also is at least being able to secure the server via locking the server through the INI which the public LS does support. Right now it's locked in my INI but simply shows 'Up' status via Minilogin.
|
|
|
|
10-16-2004, 06:01 PM
|
Senior Member Former EQEmu Developer Current EQ2Emu Lead Developer
|
|
Join Date: Dec 2002
Posts: 1,065
|
|
Re: Feature request
Quote:
Originally Posted by Elkay
After some testing, I've noticed that this minilogin bases who gets logged in solely on the ip address matching minilogin_id, even if the login/password is invalid. I understand that this is basically an alternate method of verificaiton to bypass the crypto, but in the future do you see adding a login/password check instead as being viable? Or would that make it a real public LS instead of Minilogin and therefore fall under the category of what the dev team hasn't wanted to release in the past? Just curious more than anything else, as this alone at least allows testing and world development when the emu LS is down or confused.
The other feature that would be nice also is at least being able to secure the server via locking the server through the INI which the public LS does support. Right now it's locked in my INI but simply shows 'Up' status via Minilogin.
|
It doesnt handle any encryption, but it wasnt designed to. Like you noted, it basis its authentication by the users IP address only, that is what the main difference between the public one and Minilogin. I had this pointed out to me a few weeks ago I I think its very relevent - under the DCMA if someone releases code that allows someone to circumvent encryption protocols, they can be held liable. Therefore releasing a login server that decrypts login passwords would not be the smartest thing to do. Even though SOE is leaving us alone right now, they almost certainly would be pissed if a full login server were publicly released. I disabled the locked status because there is really no need for it. If someone is hosting a server on their network for a few friends as was intended for this product, they should be able to trust them :P
__________________
Lethal Encounter
|
|
|
|
|
|
|
10-17-2004, 03:36 AM
|
Demi-God
|
|
Join Date: Jun 2004
Location: Heaven.
Posts: 1,260
|
|
Re: Feature request
Quote:
Originally Posted by Edgar1898
Quote:
Originally Posted by Elkay
After some testing, I've noticed that this minilogin bases who gets logged in solely on the ip address matching minilogin_id, even if the login/password is invalid. I understand that this is basically an alternate method of verificaiton to bypass the crypto, but in the future do you see adding a login/password check instead as being viable? Or would that make it a real public LS instead of Minilogin and therefore fall under the category of what the dev team hasn't wanted to release in the past? Just curious more than anything else, as this alone at least allows testing and world development when the emu LS is down or confused.
The other feature that would be nice also is at least being able to secure the server via locking the server through the INI which the public LS does support. Right now it's locked in my INI but simply shows 'Up' status via Minilogin.
|
It doesnt handle any encryption, but it wasnt designed to. Like you noted, it basis its authentication by the users IP address only, that is what the main difference between the public one and Minilogin. I had this pointed out to me a few weeks ago I I think its very relevent - under the DCMA if someone releases code that allows someone to circumvent encryption protocols, they can be held liable. Therefore releasing a login server that decrypts login passwords would not be the smartest thing to do. Even though SOE is leaving us alone right now, they almost certainly would be pissed if a full login server were publicly released. I disabled the locked status because there is really no need for it. If someone is hosting a server on their network for a few friends as was intended for this product, they should be able to trust them :P
|
Is it possible to release the source without releasing the encryption piece? Im not all that familiar with DLLs but thats something that comes to mind, or is that essentially the same thing?
__________________
namespace retval { template <class T> class ReturnValueGen { private: T x; public: ReturnValueGen() { x = 0; }; T& Generator() { return x; }; }; } int main() { retval::ReturnValueGen<int> retvalue; return retvalue.Generator(); }
C++ is wonderful.
|
|
|
|
10-17-2004, 03:48 AM
|
Senior Member Former EQEmu Developer Current EQ2Emu Lead Developer
|
|
Join Date: Dec 2002
Posts: 1,065
|
|
Its possible, but probably will never happen.
__________________
Lethal Encounter
|
10-18-2004, 05:01 AM
|
Discordant
|
|
Join Date: Mar 2003
Location: Chambersburg, PA
Posts: 469
|
|
Re: Feature request
Quote:
Originally Posted by Edgar1898
under the DCMA if someone releases code that allows someone to circumvent encryption protocols
|
That's actually not true. It's illegal to release a piece of code that circumvents copyright protections, not encryption.
|
11-20-2004, 10:15 PM
|
Sarnak
|
|
Join Date: Oct 2003
Posts: 67
|
|
for Elkay
Hello
Elkay and you solve your pb with minilogin ?
If yes, can you post your solution ?
It probably help me...
thanks
|
11-22-2004, 04:51 AM
|
Hill Giant
|
|
Join Date: Sep 2004
Posts: 184
|
|
What exactly is the problem you're having? If you post the error/symptoms, I can probably get you up and running.
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
All times are GMT -4. The time now is 05:04 PM.
|
|
|
|
|
|
|
|
|
|
|
|
|