Server Help

[Qndre's Metaspace]

You know I am still writing my Metaspace client solution for subgame2 based server systems. I placed this thread into "trash talk" because many people think the project is trash
_
This threads should be a place to suggest new features to my client, which the original subspace or continuum client doesn't have yet.
_
Of course I'll implement a new kind of graphics engine to render wireframes instead of cutting bitmaps together. Even if it's based on blitting. But it'll use opengl hardware acceleration.
_
If you have any other suggestions, at example for graphics, maybe a particle generator, suggest it here and i'll try to implement. I think the graphics of subspace could be much more improved.

[Smong]

I think it should try and keep track of the items each player has. So if metaspace thinks XYZ has 3 thors, but they fire 4, then it can use ?cheater on them.

Or if they keep greening brick, when it isn't even in the prizeweight, or there are other things in the prizeweights that you are more likely to pick up.

Or if they pick up a flag/ball when they are no where near it. While I'm at it, also if they don't drop the flags when the time runs out, or don't fire the ball when the time runs out.

I think there should be an option to change screen resolution.

[Qndre's Metaspace]

Hello, Smong. Thanks for your opinion!

[Qndre's Metaspace]

Addition:

This client/server project should make CONT platform indipendant (at example linux compatible) like ASSS does but not only for the server but also for the client.

[Qndre]

Report in between:
Metaspace has grown and became a full client (no SPEC service for the browser any more).
_
You're right! It doesn't make any sense without C++. I'm just learning it. Already found a solution to log in to a ContinuumOnly zone with a given "scrty1" file stolen out of the server's directory, but haven't implemented it yet (it's just some pseudo C-code). Since this isn't possible on other servers, I'll need to find a way to generate a valid keystream (which I probably won't find).
_
What client already can do (but only new features):
Chat, display a ship in the center of the map, which no one can kill, download settings, handle a full database of Settings, Ships, Data, etc.!
_
What will be the next step:
User database (lookup names for a given userID), graphics engine.

[ExplodyThingy]

1. IT can display an invincible ship at the center of the map, but so can bots. Can people actually view the ship local? So far from that list I can see things that bots can do, but no one views the games via bots.

2. Why does a client have a user database?

3. Are you ever going to release this, the prealphas, or teh sources?
_________________
There are no stupid question, but there are many inquisitive idiots.
Loot

Dr Brain> I hate clean air and clean water. I'm a member of Evil Conservitive Industries

[Qndre]

[ExplodyThingy]

[nintendo64]

Only suggestion for now, SETTINGS SHOULD NOT BE WRITTEN TO A FILE OR SHOWN TO THE USER OR PLUGIN DEVELOPER AT ALL, that alone can get your client not supported everywhere, nobody likes the idea of someone getting access to their settings besides the sysop.

-nintendo64

[Qndre]

[Qndre]

The client has become a very simple administrative tool for subgame2. which could be useful for SysOPs who want to remote-administrate their server from everywhere. There is a very secure (524.288 bit key) encryption, which isn't simple XOR any more (things like "xxxxx" and "xxxxy" encrypt to very different things (the input decides which part of the key to take). Server-side implementation isn't successful yet.
_
User-Database lookup made trouble but another feature has been added:
Peer-to-peer connection between clients without a server is possible: (users are able to PM each other and see the other's name and IP address)
_
This serverless connection is possible over a LAN or over Internet (at the internet you don't have a userlist because it's a too high IP range to scan and some people could worry if they are always pinged )
_
If you don't scan the LAN, you are also invisible to other users so this is not like "Are you on? [No reply] Are you on? [No reply] Are you on? Yes!" but like "I am on, I am on, I am on, ..." These "online" messages are sent out every 20 seconds.
_
Next step will be the graphics, which will be done through DirectDraw (I know this is not the newest technology). A software graphics engine is already in development.
_
Thanks to all the people and sorry for my sceptical attitude, now I saw everything you told me was right even if I think there might have been a more friendly way of saying it. But sometimes you really need to shout at someone else if he's just not able to understand or not ready to understand.

[Cyan~Fire]

No, we don't need to shout.

And also, don't sysops already have a remote admin tool? *putfile basically covers all bases.
_________________
This help is informational only. No representation is made or warranty given as to its content. User assumes all risk of use. Cyan~Fire assumes no responsibility for any loss or delay resulting from such use.
Wise men STILL seek Him.

[Qndre]

Just tried out some assembly. I wrote a program to read data out of the stack in hope to get the call "subgame2" does to get keystream from CONT but there doesn't seem to be any security hole like that!
_
Also wrote some MacID and PermID spoofing code but it doesn't work. Neither for CONT nor vor VIE Subspace.
_
This software can be downloaded as Source-Code, Objectcode or Binary distribution on my download-centre:http://www.subspace-addicted.de.vu/downloads/
_
PS: I haven't stolen the code from anywhere - I've written it on my own.

[Qndre]

The server-side implementation of the METAenc encryption (the encryption of my client) is ready to be used, but not finished at all. If you want to see some data encrypted with it, click here:
http://www.subspace-addicted.de.vu/downloads/packets3.txt
S2C doesn't use METAenc but VIEenc, but C2S uses METAenc and server is able to decrypt the data sent by the client. This is ONE key example while METAenc supports 16,777,216 different keys (24-bit seed). The keystream generator is a very modified version of the S.I.G.M.A. algorithm (the original S.I.G.M.A. encryption only encrypts 256-bit keys and no keystreams without any seeds, etc.). The keystream is 524,288 bits long (while only the first 262,144 bits are used for encryption). The key offset is generated out of a 16-bit checksum of the leftshifted input data, so it cannot be spoofed client-side because server is able to check that offset after decryption. The offset is hidden within the data and can be seperated from the data with the first 16-bit of the encrypted packet. Of course the algorithm also uses feedback.

[Mr Ekted]

Once again you are wrong. A seed is a key. A 24 bit seed (key) can create 16 million streams. Thus, an attack on data takes a maximum of 16 million iterations, and an average of 8 million--something any reasonable desktop system could do in hours.

Do you understand that if the algorithm is known, then it is useless in a client to prevent client-side tampering? Publishing your algorithm destroys it.
_________________
4,691 irradiated haggis!

[Mr Ekted]

[-Smong-]

[k0zy]

[Qndre]

[-Smong-]

Translation: let the anarchy begin!

[Qndre]

So you don't think MODs abuse BAN/permission-only? Haven't you ever been banned for no reason? Or worried about permission-only?

[-Smong-]

If you think the staff are unreasonable you can either tolerate it or go somewhere else.

There is a black list .txt similar to permit.txt, if you stick someone's name in it they can't enter the zone. I guess this is what staff might have done to keep you out, and let everyone else in. I remember someone said they couldn't get into TW with the name 'analyser' because it contains 'anal'.

[Qndre]

[Dr Brain]

All I can say to that is: "Wow, you understand a lot less than I thought you did." And trust me, that's really saying something.

I don't mean to be cruel, but honestly, you don't really understand how this game works at any level. From the technical to the social.
_________________
Hyperspace Owner

Smong> so long as 99% deaths feel lame it will always be hyperspace to me

[Mr Ekted]

Zones are privately run. Don't you think people should be able to say who can play in their zone or not? Don't you think you should be able to say who can come in your house?