+- Mirage Engine (https://mirage-engine.uk/forums)
+-- Forum: Mirage Source (Nostalgia) (https://mirage-engine.uk/forums/forumdisplay.php?fid=61)
+--- Forum: Archive (2006-2011) (https://mirage-engine.uk/forums/forumdisplay.php?fid=18)
+---- Forum: Resources (https://mirage-engine.uk/forums/forumdisplay.php?fid=49)
+---- Thread: Packet Encryption (/showthread.php?tid=1536)
Packet Encryption - Xlithan - 29-01-2008
Just lately, I've noticed people duplicating items in my game, probably though packet hacking with WPE. I need an effective packet encryption tutorial to reduce the chance of some idiot messing with the packets being sent to the server.
I've no experience with networking in Visual Basic, so a good guide is going to be needed.
Thank you.
Re: Packet Encryption - Coke - 29-01-2008
rename packets like "ModifyYourItemsHereForFreeTo9999Stats" to abbreviations and numbers... such as,
say i have a packet atm called
"CreateItem"
If i rename this to:
"C18273I"
I know that this is the create item packet because it starts with C and ends with I, and also I (you) are clever enough to keep a key somewhere telling me what all the packets old names and new names are.
Now, providing you have nice server checks so that even if some noob see's through our packet they can't just send them off and get free items, regardless of how basic the encryption you put on it most nubcakes that are gay enough to try and hack a lil vb6 game will just say wtf as their packet sniffer lulz at them and their packet decrypter thingie seems not to be working =P
Honestly, with things like modifying items, maps, spells, anything like that, check the request is being sent by a player, that is online, who's SERVER SIDE PLAYER FILE says they have access to do this. This way unless they somehow go into your server pc, figure out how to modify their own binary player file and physically do this (at which point its obviouse your server security sucks) there is no physical way, packet sniffing, packet editing, anything, that if they are not an admin they can do anything. Its just not possible. If your servers not stupid, it can't happen - renaming packets and things will throw noobs off and is tbh an un-needed step, as long as your server is making appropriate checks they cant physically do anything.
Packet encryption isn't the way forward, why add weight to your packets, just throw a few checks in and you win.
Re: Packet Encryption - Coke - 30-01-2008
Dave Wrote:Obscurity is not security.
The kind of people who are going to be retarded enough to try and packet sniff a mirage game are kids, if they get gobbledegook back they will give up. Besides, don't they have homework and masturbation to be doing? >_>;