Per-Server authentication

What do you want to see in Armagetron soon? Any new feature ideas? Let's ponder these ground breaking ideas...
Post Reply
User avatar
Tank Program
Forum & Project Admin, PhD
Posts: 6711
Joined: Thu Dec 18, 2003 7:03 pm

Post by Tank Program »

Last I checked the client generated a random salt for its password which requires the server's password for the client to have the same salt- and since it's random, it requires the password to be in plain text... At least, this is my experience of it.
Image
Top
User avatar
Z-Man
God & Project Admin
Posts: 11589
Joined: Sun Jan 23, 2005 6:01 pm
Location: Cologne
Contact:
Contact Z-Man

Post by Z-Man »

It should work a bit differently. In step 1, the client gets the plain MD5 hash of the password. The server sends a random salt, the client scrambles the hash again with that salt and sends the resulting second level MD5 hash back. The server can verify that, only knowing the MD5 sum of the password. If that's not how it works, it's a bug and all the more reason not to use the system right now :)
Top
User avatar
Tank Program
Forum & Project Admin, PhD
Posts: 6711
Joined: Thu Dec 18, 2003 7:03 pm

Post by Tank Program »

Good point.

Don't use the current system!
Image
Top
flea
On Lightcycle Grid
Posts: 24
Joined: Thu Mar 09, 2006 2:24 am

Post by flea »

havent tracked the forums in a while

just wondering if this is still being pondered or what.

arma devs are great!
Top
User avatar
TiTnAsS
Match Winner
Posts: 655
Joined: Sun Jan 23, 2005 2:44 am
Location: Reppin the Bay Area!

Post by TiTnAsS »

*BUMP* What else need be said other then, DONT RUIN IT AGAIN LUKE-JR ....
Damn, it sure has been a while!
Top
Luke-Jr
Dr Z Level
Posts: 2246
Joined: Sun Mar 20, 2005 4:03 pm
Location: IM: luke@dashjr.org

Post by Luke-Jr »

TiTnAsS wrote:*BUMP* What else need be said other then, DONT RUIN IT AGAIN LUKE-JR ....
I never ruined anything. We have plans for authentication, but not per-server.
Top
Post Reply

Return to “Development”