View previous topic :: View next topic |
Author |
Message |
Viloresi Expert Cheater Reputation: 0
Joined: 02 Feb 2017 Posts: 149
|
Posted: Wed Apr 26, 2017 3:20 pm Post subject: |
|
|
STN wrote: | Quote: | In an untrusted network an attacker can intercept the communication between the victim and the cheatengine.org server and replace the body of the HTTP response packets of the download with the contents of his own malicious executable file in a totally transparent manner. |
Whoa...which movie is this from ? |
I don't think that someone would be interested in doing that stuff here on cheat engine... I mean what kind of people you'll get? Just video-game players :/ , I mean it would be a good way to spread a virus but I don't think it would be worth it.
Btw I think darkbyte / atomos knows what he does, I would think twice before blaming something about programming with him lol! .
P.s. aniway from my point of view that maybe will be not really important... I agree that some more protections would make this site safer.
|
|
Back to top |
|
|
C0rn3j Advanced Cheater Reputation: 0
Joined: 28 Aug 2012 Posts: 52 Location: Czech republic
|
Posted: Fri Apr 28, 2017 9:53 am Post subject: |
|
|
> I don't think that someone would be interested in doing that stuff here on cheat engine... I mean what kind of people you'll get? Just video-game players :/
How about a botnet that simply replaces all executable download links on their network with its own executable(easily feasible) or replaces all executables with a modified one(also feasible, even though it breaks file signature nobody reads).
The thing is, the problems are there, and the solution is free, it just takes a small bit of time.
I'm totally willing to help with this if it's a problem for Dark Byte.
|
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8517 Location: 127.0.0.1
|
Posted: Fri Apr 28, 2017 2:14 pm Post subject: |
|
|
C0rn3j wrote: | > I don't think that someone would be interested in doing that stuff here on cheat engine... I mean what kind of people you'll get? Just video-game players :/
How about a botnet that simply replaces all executable download links on their network with its own executable(easily feasible) or replaces all executables with a modified one(also feasible, even though it breaks file signature nobody reads).
The thing is, the problems are there, and the solution is free, it just takes a small bit of time.
I'm totally willing to help with this if it's a problem for Dark Byte. |
Every example you are giving completely invalidates your point lol... I understand your idea and thoughts behind adding more security to the site, but every situation you have given so far makes having SSL completely invalid and pointless and will not protect anything.
_________________
- Retired. |
|
Back to top |
|
|
Dark Byte Site Admin Reputation: 458
Joined: 09 May 2003 Posts: 25295 Location: The netherlands
|
Posted: Fri Apr 28, 2017 2:18 pm Post subject: |
|
|
Keep in mind that the current plans include that in the future every user will have their own subdomain on *.forum.cheatengine.org
_________________
Do not ask me about online cheats. I don't know any and wont help finding them.
Like my help? Join me on Patreon so i can keep helping |
|
Back to top |
|
|
atom0s Moderator Reputation: 198
Joined: 25 Jan 2006 Posts: 8517 Location: 127.0.0.1
|
Posted: Fri Apr 28, 2017 2:24 pm Post subject: |
|
|
Dark Byte wrote: | Keep in mind that the current plans include that in the future every user will have their own subdomain on *.forum.cheatengine.org |
Thought this has been a thing for a while now, or rather the site responds to any additional sub-domain given.
_________________
- Retired. |
|
Back to top |
|
|
C0rn3j Advanced Cheater Reputation: 0
Joined: 28 Aug 2012 Posts: 52 Location: Czech republic
|
Posted: Mon Aug 07, 2017 1:53 pm Post subject: |
|
|
Dark Byte wrote: | Keep in mind that the current plans include that in the future every user will have their own subdomain on *.forum.cheatengine.org |
Starting January 2018, Let's Encrypt will enable people to get wildcard certificates.
|
|
Back to top |
|
|
|