Search found 190 matches

Return to advanced search

Re: Oh crap!

[intllib-using mods fail security tests] Oddly, this is not even the boilerplate code from the intllib README. But when I looked on earlier versions of intllib, the dofile was still there. [I wrote patches to fix a bunch of the affected mods] The dofile was basically just a way to make sure intllib...
by ShadowNinja
Thu Nov 10, 2016 02:37
 
Forum: Mod Releases
Topic: [Mod] Internationalization Library [intllib]
Replies: 80
Views: 16096

Re: [Mod] Advanced area protection [areas]

A "protection stick" would still require size limitations unless a number of sticks were consumed proportional to the size of the area. The stick would have to be fairly difficult to craft for it to serve as an effective replacement for the area number limit, and if it was that hard it wou...
by ShadowNinja
Wed Sep 28, 2016 15:20
 
Forum: Mod Releases
Topic: [Mod] Advanced area protection [areas]
Replies: 133
Views: 39509

Re: [Mod] Server login over IRC [irc_commands]

I do /msg (server) tmanyo (pass) and it replies with nothing. So I do /msg (server) tmanyo and it says Playername and Password required. I try to use the commands to see if it is just a bug and I am really logged in, but sadly it gives me the message, you are not logged in. Well, the command is /ms...
by ShadowNinja
Sat Aug 27, 2016 03:23
 
Forum: Mod Releases
Topic: [Mod] Server login over IRC [irc_commands]
Replies: 14
Views: 3673

Re: [Mod] Agree rules or kick V3 [agreerules]

It looks like the "Ingles" button is for spanish, but in Spanish "Ingles" means "English". Did you mean to use "Español"?
by ShadowNinja
Mon May 09, 2016 15:54
 
Forum: Mod Releases
Topic: [Mod] Agree rules or kick V3 [agreerules]
Replies: 20
Views: 1260

Re: [Website] Security alert from Avast

I get the same exact warning... I've made some changes to the stats setup (uses stats.minetest.net, which has direct A and AAAA records to the server), and now Avast shouldn't have any idea that minetest.net has anything to do with anything InchraNet. Are you sure that you're still getting the warn...
by ShadowNinja
Tue Mar 15, 2016 06:32
 
Forum: Bugs and Problems
Topic: [Website] Security alert from Avast
Replies: 24
Views: 1247

Re: Redcrab's server

The authentication file? Sounds like a bad idea... The passwords are hashed. The hash isn't particularly secure (SHA-1 with player name salt), but nobody should be using passwords they care about with MT anyways. It may be a good idea to not release the auth file publicly, but only give it to one o...
by ShadowNinja
Sat Feb 27, 2016 04:41
 
Forum: Servers
Topic: Redcrab's server
Replies: 5001
Views: 418209

Re: Redcrab's server

The server is back. Considering that you often disappear for several months, would you consider making the full world available for download, including player files and perhaps the authentication file? Others have used local map saving to capture parts of your world and hosted it, but they haven't ...
by ShadowNinja
Sat Feb 27, 2016 00:28
 
Forum: Servers
Topic: Redcrab's server
Replies: 5001
Views: 418209

Re: [Mod] Server login over IRC [irc_commands]

I am unable to login to new servers from irc. This issue is an incompatibility with the new Secure Remote Password (SRP) authentication system. irc_commands isn't able to verify passwords with the new authentication tokens. As rubenwardy pointed out, you can disable SRP for your account by resettin...
by ShadowNinja
Fri Feb 26, 2016 18:38
 
Forum: Mod Releases
Topic: [Mod] Server login over IRC [irc_commands]
Replies: 14
Views: 3673

Re: [Website] Security alert from Avast

srifqui/PoignardAzur: Is this still an issue? Has BrandonRese's false-positive report fixed it? If it's still an issue, please also report it as a false positive, and I'll try to get it fixed.
by ShadowNinja
Fri Feb 12, 2016 05:59
 
Forum: Bugs and Problems
Topic: [Website] Security alert from Avast
Replies: 24
Views: 1247

Re: [Mod] Advanced area protection [areas]

My loaded conf file contains: areas.self_protect = true [...] I edited settings.lua manually and changed this line to true: setting("boolean", "self_protection", false) Notice the difference? You set "areas.self_protect", but the mod is looking for "areas.self_pro...
by ShadowNinja
Wed Feb 10, 2016 04:22
 
Forum: Mod Releases
Topic: [Mod] Advanced area protection [areas]
Replies: 133
Views: 39509

Re: [Mod] Advanced area protection [areas]

Having added areas.self_protection = true to my conf file, users still get the error that they don't have self protection ability (can't protect). There are a few things involved in self-protection. First it has to be enabled of course, but there are still a few restrictions on it. Only players wit...
by ShadowNinja
Tue Feb 09, 2016 02:01
 
Forum: Mod Releases
Topic: [Mod] Advanced area protection [areas]
Replies: 133
Views: 39509

Re: Bad translation interface

The refferer check is probably an attempt to protect from CSRF. There are better ways to do this that don't require you to check the referrer though.
by ShadowNinja
Sat Oct 31, 2015 15:29
 
Forum: General Discussion
Topic: Bad translation interface
Replies: 5
Views: 322

Re: Postgresql Backend

Minetestforfun: A MySQL backend was made when database backends were first made plugable, but it wasn't included in the final code, possibly because MySQL is bad.
by ShadowNinja
Sat Jul 25, 2015 17:02
 
Forum: Partly official engine development
Topic: Postgresql Backend
Replies: 31
Views: 2811

Re: [Game] Technic [technic_game]

Calinou moved his repos again. I've fixed the URLs and updated the mods, but you'll have to run `git submodule sync` and `git submodule update --init`.
The warnings were normal since the zip was of a fairly old version, I've updated the zip to the latest version though.
by ShadowNinja
Sun Jul 19, 2015 23:04
 
Forum: Subgame Releases
Topic: [Game] Technic [technic_game]
Replies: 40
Views: 16617

Re: Postgresql Backend

I beat you to it. :-P
I wrote a PostgreSQL backend a few months ago, but didn't bother to put it in a PR.
It automatically sets up the tables and only requires one extra setting (postgresql_connection_info).
Here it is: https://github.com/ShadowNinja/minetest/tree/PostgreSQL
by ShadowNinja
Sun Jul 19, 2015 20:24
 
Forum: Partly official engine development
Topic: Postgresql Backend
Replies: 31
Views: 2811

Re: [Game] Technic [technic_game]

caffe23: You should read README.txt. You need to clone the submodules, use `git submodule update --init`.
by ShadowNinja
Sun Jul 19, 2015 20:09
 
Forum: Subgame Releases
Topic: [Game] Technic [technic_game]
Replies: 40
Views: 16617

Re: Forum is now hosted by celeron55 (report issues here)

Issues I've noticed: ⋅ The FAQ page returns a 403. ⋅ The PHP run time limit is set too low for a long-running database operation that I need to do (it needs to be set to a good 10-20 minutes or so, although it should probably be turned back down after I finish). ⋅ The S...
by ShadowNinja
Sat Jul 18, 2015 18:22
 
Forum: News
Topic: Forum is now hosted by celeron55 (report issues here)
Replies: 45
Views: 5842

Re: Forum is now hosted by celeron55 (report issues here)

[PunBB compatibility has been fixed thanks to hacky code] Here's a cleaner solution that I came up with that goes in your nginx config instead: http://sprunge.us/CTSV This version also redirects you to the new URL instead of just showing the content at both URLs (just change "redirect" to...
by ShadowNinja
Sat Jul 18, 2015 07:12
 
Forum: News
Topic: Forum is now hosted by celeron55 (report issues here)
Replies: 45
Views: 5842

Re: Request a subforum

Turkish sub-forum added.
by ShadowNinja
Thu Jul 02, 2015 23:01
 
Forum: Discussion in other languages
Topic: Request a subforum
Replies: 9
Views: 1904

Re: [Mod] Technic [0.4.11] [technic]

nvrsbr: Your error isn't showing much information because of an engine bug that has since been fixed. Please try a build after 3a8c7888 (September 5, 2014). You can find one in the builds forum
by ShadowNinja
Mon Jun 15, 2015 16:42
 
Forum: Mod Releases
Topic: [Mod] Technic [0.4.11] [technic]
Replies: 1355
Views: 337267

Re: [0.4.12-dev] Mod security

I wonder why the security won't be activated it as default. If I see it correctly, there are actually only a few mods which would be possibly affected, of which almost all have already be edited to comply with the new mod security system. It will be on by default soon, I just left it off for a bit ...
by ShadowNinja
Mon Jun 08, 2015 14:42
 
Forum: News
Topic: [0.4.12-dev] Mod security
Replies: 26
Views: 3905

Re: [0.4.12-dev] Mod security

You forgot to mention that “untrusted” mods also can't (shouldn't) set any setting starting with “secure.”. The list isn't meant to be exhaustive, but I've added your suggextion. What other functions are considered “insecure”? Can you give a list? And what about “dofile”? Actually, no, because ther...
by ShadowNinja
Mon Jun 08, 2015 02:52
 
Forum: News
Topic: [0.4.12-dev] Mod security
Replies: 26
Views: 3905

[0.4.12-dev] Mod security

Mod security has recently been implemented. This prevents rogue mods from doing whatever they want to your computer. For now the feature is disabled, because it breaks a few legitimate mods (although most of them have been patched by now). You can explicitly enable it by setting secure.enable_securi...
by ShadowNinja
Fri Jun 05, 2015 23:04
 
Forum: News
Topic: [0.4.12-dev] Mod security
Replies: 26
Views: 3905

Re: [Mod] Advanced area protection [areas]

TheMasterAnimatronic wrote:How would i protect the entire map by default?

Just add an area that extends from -32000 to 32000 or so in all dimensions.
by ShadowNinja
Tue May 26, 2015 16:02
 
Forum: Mod Releases
Topic: [Mod] Advanced area protection [areas]
Replies: 133
Views: 39509

Re: [Mod] Unified Inventory [1.0] [unified_inventory]

supercutsminetest wrote:When I hit "Go home," I fall through the floor.

Fixed.
by ShadowNinja
Sat Apr 18, 2015 19:35
 
Forum: Old Mods
Topic: [Mod] Unified Inventory [1.0] [unified_inventory]
Replies: 161
Views: 70619
Next

Return to advanced search