Hi, Myself and a friend manage and run a custom coded Australian minecraft server. We have about 30-50 players throughout the week and feature a whole different game play experience. My friend (WedgedWolf) is experienced in developing for bukkit and we came up with the idea to create a anti hack client that players would be forced to use if they were caught using hacks. Basically you code a minecraft mod and make it send an md5 of your jar data to our server which our bukkit plugin then verifies. If the md5 is one of the ones that are verified, (Just incase we want multiple verified modpacks) the server will allow the player to play. However if it doesnt, the player will get kicked after a period of time (say 10 seconds). We have a server side (bukkit) already coded however when attempting to try minecraft modding for the first time WedgedWolf have a few difficulties figuring everything out and trying to get it to build. We did start using Forge however figured that LiteLoader would work better because its more lightweight and allowed us to check for a player when a player logged into a server. Although we ended up having to many issues with MD5's (Not much experience) and also trying to get it to build. So we're looking for someone who is experienced to help us code a simple client side mod and of course if you would like have a copy of our server side as well. If anyone is interested i appreciate it if you could pm me or comment below or if you have any general input that would be great as well. Thanks for your time.
It sounds sure to really help anyone with a big hacking and spam problem.
Will it be free for public use once it's done?
The problem with making a thing like this public is the concern that other developers will find a bypass for it. It would be impossible for the average player to bypass but not for a dev that knows what he is doing. However there is a public plugin that has similar features, but works differently and isn't fully updated to 1.7.9 and he seems to have lost interest in the development of it. However if a server owner wants our version enough then we could possibly hook them up, of course as long as they are trustworthy.
Here's the link if you would like to check out the public one I mentioned.
Yeah, I'm the author of this mod. Somehow I stumbled on this thread (which is months old), but still felt the need to reply.
Oh, and after reading some of your thoughts above, SHA should be used instead of MD5 (should never use this). Your method is correct in what you are wanting to do, but unless you completely randomize all traffic going to and from the server, it'll be hacked. Not only that, if you don't properly encrypt your code, it can easily be decompiled and from there the hacker can see the logic. Even if SCE was hacked, and simple changed / recompile would correct the problem, and the hacker would have to start from scratch.
I stopped due to a lack of interest in the public, which was due to a lot of talk about how it'll be easily hacked... yet, no one was able to hack it. I might end up updating it again, we'll see.
Yeah, I'm the author of this mod. Somehow I stumbled on this thread (which is months old), but still felt the need to reply.
Oh, and after reading some of your thoughts above, SHA should be used instead of MD5 (should never use this). Your method is correct in what you are wanting to do, but unless you completely randomize all traffic going to and from the server, it'll be hacked. Not only that, if you don't properly encrypt your code, it can easily be decompiled and from there the hacker can see the logic. Even if SCE was hacked, and simple changed / recompile would correct the problem, and the hacker would have to start from scratch.
I stopped due to a lack of interest in the public, which was due to a lot of talk about how it'll be easily hacked... yet, no one was able to hack it. I might end up updating it again, we'll see.
What a coincidence! I had previously already had interest in SCE but with you deciding to no longer update it I had to result to other options. We got a version working (which we did ourselves) and were able to keep the average joe at bay. Sadly I know longer work with the dev that i mentioned before, however I am working with another fellow now and his mate who codes. We're creating a custom armor class pvp type server and we've already discussed trying to implement this mod/plugin again. I'de really love to be able to discuss SCE with you.
Could you perhaps add me up on skype - criux_
- Criux (Skype - criux_)
It sounds sure to really help anyone with a big hacking and spam problem.
Will it be free for public use once it's done?
Excessive hat tipping to the people that press the Like button for things they found useful or helpful
*hat tipping intensifies
The problem with making a thing like this public is the concern that other developers will find a bypass for it. It would be impossible for the average player to bypass but not for a dev that knows what he is doing. However there is a public plugin that has similar features, but works differently and isn't fully updated to 1.7.9 and he seems to have lost interest in the development of it. However if a server owner wants our version enough then we could possibly hook them up, of course as long as they are trustworthy.
Here's the link if you would like to check out the public one I mentioned.
http://www.sakkiswonderland.com/forum/m/6600162/viewthread/11559202-sce-sakkis-client-essentials
I gathered that you aren't a developer right?
Yeah, I'm the author of this mod. Somehow I stumbled on this thread (which is months old), but still felt the need to reply.
Oh, and after reading some of your thoughts above, SHA should be used instead of MD5 (should never use this). Your method is correct in what you are wanting to do, but unless you completely randomize all traffic going to and from the server, it'll be hacked. Not only that, if you don't properly encrypt your code, it can easily be decompiled and from there the hacker can see the logic. Even if SCE was hacked, and simple changed / recompile would correct the problem, and the hacker would have to start from scratch.
I stopped due to a lack of interest in the public, which was due to a lot of talk about how it'll be easily hacked... yet, no one was able to hack it. I might end up updating it again, we'll see.
http://www.sakkiswonderland.com
What a coincidence! I had previously already had interest in SCE but with you deciding to no longer update it I had to result to other options. We got a version working (which we did ourselves) and were able to keep the average joe at bay. Sadly I know longer work with the dev that i mentioned before, however I am working with another fellow now and his mate who codes. We're creating a custom armor class pvp type server and we've already discussed trying to implement this mod/plugin again. I'de really love to be able to discuss SCE with you.
Could you perhaps add me up on skype - criux_