Latest Uploads
image-25-0 ... 26-04.jpeg

Jayenkai

Help_Fight ... rivacy.png

Jayenkai

Gameboy...Colour!!

rychan

Day 1 - Ga ... eboy Racer

rychan

Pain_Claim.png

Jayenkai

Monkey Maz ... pload test

Pakz

Forum Home

Open and secure?

UserMessage
Posted : Saturday, 25 February 2012, 04:01 | Permalink
Afr0


WW Entries : 3
Lately I've been working on a patching system for Project Dollhouse.
The system is awesome and works great, but last night I realized it has a gaping flaw - security.
The thing is, I want Project Dollhouse to remain 100% open source, and I am not willing to make any compromises there.
I want people to be able to run their own servers. But as of right now, there is no stopping people from leaking off each other's bandwidth.
Scenario:

Person A runs his own server, but is too cheap to provide a webserver for patching.
Person B runs his own server, including a webserver that hosts patches.
Person A directs PDPatcher to download patches from person B's server. This can be done either through a recompile or through a *.ini file.

Does anyone have any ideas to prevent this scenario?
My patch scripts can be found here.

Edit: I realize that providing patches, per definision, is a pretty open service that should and could neccessarily be accessed by anyone, but I'd just like some kind of insurance against systematic leaking, if possible...

-----
Afr0 Games

Project Dollhouse on Github - Please fork!
Homepage : http://www.afr0games.com
Posted : Saturday, 25 February 2012, 04:22 | Permalink | Mark Here
Afr0


WW Entries : 3
Oh!
I just realized I can instruct people to change 'patch.php' so that instead of accepting a URL of "?Version", it'll accept an entirely different URL.
That would also involve recompiling PDPatcher... I think I'll have to change the license, because the Mozilla License requires you to release any source modifications under the Mozilla License free of charge.

-----
Afr0 Games

Project Dollhouse on Github - Please fork!
Homepage : http://www.afr0games.com
-=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- (c) WidthPadding Industries 1987 -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=-
Latest Posts
CD Ripping with iTunes
Jayenkai Thu 15:23
NerdBlock
Jayenkai Thu 13:44
''New'' Spectrum
Jayenkai Thu 11:46
GfK's Father
steve_ancell Thu 10:34
AGameAWeek : 2016 - Part One
Jayenkai Wed 12:27
Comcast's TwitterFail
GfK Tue 10:29
HoboBen's Return
Jayenkai Tue 08:44
RIP : Some astrologer dude
rockford Tue 08:26
Windowblinds 10
rockford Tue 08:20
Leicester : The Underdog Wins
GfK Tue 05:35
More

Latest Items
Showcase : No Plumbing Required
steve_ancell Mon 10:51
Blog : Feedback
Pakz Fri 14:05
Blog : Pixeljoint
Pakz Thu 14:08
Blog : Sprite editor getting better.
Pakz Thu 01:25
Showcase : 8-Bit Boulders
steve_ancell Wed 08:19
Blog : Testing out my Pixel editor
Pakz Wed 07:10
Dev-Diary : PS2 to N64 Adapter
Jayenkai Wed 03:07
Dev-Ideas : Pixel editor
Jayenkai Mon 23:40
Showcase : Geartography
Jayenkai Mon 02:55
Showcase : Blitzplus Pixeling Tool Project
Pakz Sun 21:36
Snippet : Sprite editor 16x16 10 colors
Jayenkai Sat 12:50
Showcase : Nags Heed Darts
Dabz Tue 11:05
News : Newsletter #259
Dabz Tue 02:20
Showcase : Farming Game
realtime Thu 18:53
News : Newsletter #258
Dabz Fri 12:59
More

Who's Online
Dabz
Thu, at 22:17
Jayenkai
Thu, at 21:02
HoboBen
Thu, at 16:40
9572AD
Thu, at 16:28
steve_ancell
Thu, at 16:08
rockford
Thu, at 15:38
GfK
Thu, at 15:17
rychan
Thu, at 14:15
shroom_monk
Thu, at 13:02
spinal
Thu, at 11:55
Link to this page
Site : Jayenkai 2006-Infinity | MudChat's origins, BBCode's former life, Image Scaler.