Latest Uploads
Smaller Scar?

zzoom

Big Scar

Jayenkai

Swirly Thing

Jayenkai

Best Title

rychan

Spaceplosi ... nator 2086

rychan

Damn Bounces

AndyH

Forum Home

Open and secure?

UserMessage
Posted : Saturday, 25 February 2012, 04:01 | Permalink
Afr0


WW Entries : 3
Lately I've been working on a patching system for Project Dollhouse.
The system is awesome and works great, but last night I realized it has a gaping flaw - security.
The thing is, I want Project Dollhouse to remain 100% open source, and I am not willing to make any compromises there.
I want people to be able to run their own servers. But as of right now, there is no stopping people from leaking off each other's bandwidth.
Scenario:

Person A runs his own server, but is too cheap to provide a webserver for patching.
Person B runs his own server, including a webserver that hosts patches.
Person A directs PDPatcher to download patches from person B's server. This can be done either through a recompile or through a *.ini file.

Does anyone have any ideas to prevent this scenario?
My patch scripts can be found here.

Edit: I realize that providing patches, per definision, is a pretty open service that should and could neccessarily be accessed by anyone, but I'd just like some kind of insurance against systematic leaking, if possible...

-----
Afr0 Games

Project Dollhouse on Github - Please fork!
Homepage : http://www.afr0games.com
Posted : Saturday, 25 February 2012, 04:22 | Permalink
Afr0


WW Entries : 3
Oh!
I just realized I can instruct people to change 'patch.php' so that instead of accepting a URL of "?Version", it'll accept an entirely different URL.
That would also involve recompiling PDPatcher... I think I'll have to change the license, because the Mozilla License requires you to release any source modifications under the Mozilla License free of charge.

-----
Afr0 Games

Project Dollhouse on Github - Please fork!
Homepage : http://www.afr0games.com
-=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- (c) WidthPadding Industries 1987 590|0 -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=- -=+=-
Latest Posts
Weekend Plans?
Cower Sat 13:45
Ai Making music (Golden age of music)
Jayenkai Sat 02:06
AL MICKSES A MACKEY TRACKEY
Jayenkai Sat 00:27
Red Dwarf XI and XII
zzoom Fri 23:13
WIP - DDC : Daily Doodle Challenge
Pakz Fri 11:10
Another Broken Poll
Jayenkai Fri 02:59
BB.com ''There until you need it''
GfK Thu 10:52
RIP : Zzoom's Mother-in-Law
spinal Thu 09:20
RIP : Jake Boultons
spinal Thu 09:18
TEN : Happy Birthday, SoCoder!
zzoom Thu 08:10
More

Latest Items
Dev-Diary : Intellivision Controller Adapter
zzoom Sat 13:45
Snippet : Contour Map from Data
HoboBen Fri 18:14
Snippet : FPS Control (WASD+Mouse)
Pakz Wed 22:30
Article : Concurrency in C#
Afr0 Sun 12:28
Snippet : Mandelbrot in BMax
Jayenkai Sun 03:37
News : Newsletter #281
HoboBen Fri 04:18
News : Newsletter #280
Jayenkai Sat 05:10
Blog : Monkey-X Box2D: Learning from my perspective... Hopefully!
steve_ancell Sun 14:49
Snippet : JNKrunch v1.0
spinal Sun 12:02
Snippet : Dungeon/Cave Generator - Simple
Pakz Wed 15:05
Snippet : Platform Sprite Generator
Jayenkai Tue 15:22
Snippet : Code Creates Crates
HoboBen Tue 07:02
Snippet : Texture - Leafy camouflage
HoboBen Tue 07:00
Snippet : Texture - Stone 3
Pakz Mon 09:55
Snippet : Texture - Stone 2
Pakz Mon 09:50
More

Who's Online
spinal
Sat, at 14:20
Cower
Sat, at 13:45
zzoom
Sat, at 13:45
GfK
Sat, at 13:20
Jayenkai
Sat, at 13:17
rychan
Sat, at 11:04
HoboBen
Sat, at 10:43
rockford
Sat, at 10:41
Pakz
Sat, at 10:25
shroom_monk
Sat, at 10:22
Link to this page
Site : Jayenkai 2006-Infinity | MudChat's origins, BBCode's former life, Image Scaler.