More Secure Admin Claiming
#1
I had made a post about this here, but then realized that it could facilitate a better discussion in it's own thread.

So basically, I was wondering if we could have a 2-part process of taking admin in a server: typing in the admin pass, and also an IP check.

The process would probably go as follows.
1. Person types /setadmin 1 pass
2. Server could check the person's IP to see if it matches any of the IPs listed on an "admin list" (of course the IPs would have to be listed beforehand to be successful)
3a. If the IP doesn't match, regardless of whether or not the password is correct, then the person does not receive admin (i.e. gets kicked).
3b. If the person's IP does match a listed IP, and the password is correct, then voila, admin for you.

Yes, I know one issue is that some people have dynamic IPs - perhaps (and somebody correct me if i'm wrong, since i'm not too familiar with this IP business) a range could be accepted?

Theoretically, it seems like it could be implemented. I don't know how relevant this is, but I know that IPs can be matched to a given list using cube script - V-Man once made an "alias" script (and then made a revision) which identifies people when they enter a server (though I'm not sure if he distributed it here). Thoughts?
Thanks given by:
#2
on some lua server, you can register an account in few seconds :
- you cant impersonate anymore.
- you only have to login so you dont need to write /setadmin 1 password.
- also moderator names are blue !!

thought it was relevant.
Thanks given by:
#3
Mods for nothing... Plus we are not alone using the same IP (and range).
Thanks given by:
#4
my range takes up half of australia. this can never happen ever
Thanks given by:
#5
Half of australia being able to use your hacked/leaked admin pass is better than the whole world being able to.
Thanks given by:
#6
(11 Jan 13, 05:59PM)Xenon Wrote: my range takes up half of australia. this can never happen ever
That doesn't mean they'd all have the pass...unless you leak it again like you did with UK...?
Thanks given by:
#7
troll.jpg
Thanks given by:
#8
YOLO
Thanks given by:
#9
(12 Jan 13, 06:27PM)Xenon Wrote: YOLO
Best reason to do anything eh?
Thanks given by:
#10
"YOLO" seems to be a terms used by non-brain people to explain the bullshit they do everyday.
rofl
Thanks given by:
#11
i was clearly being sarcastic...
Thanks given by:
#12
Let's get an actual response that's not some Shorty/Xen/Exo failtroll.

(11 Jan 13, 02:32AM)Edward Wrote: on some lua server, you can register an account in few seconds :
- you cant impersonate anymore.
- you only have to login so you dont need to write /setadmin 1 password.
- also moderator names are blue !!
thought it was relevant.
Do you have any examples of servers like this?
Lol the blue names are the best part :P
Thanks given by:
#13
Dietrich and Hsos gema servers.
Thanks given by:
#14
Chidori's Gema Server was the best.
The login system was awesome. All I had to do was connect and I automatically login through my ip (you have to have an account already made with your ip).
The admin system was brilliant. If you were granted admin to your account, you could ban/kick without having a red name so you can have more than 1 admin at a time.
There were other useful mods like the blacklisting. You didn't have to open up your blacklist cfg and add an ip. All u needed to do was type !bl (name) person will be kicked and blacklisted automatically (also works with range bans too).
Thanks given by:
#15
yep I forgot to mention that. Shoudl be more love for lua :-(
Thanks given by:
#16
^Hence my idea in the hopes that somebody actually considers it :P
Thanks given by:
#17
WHAT I DO WITH HACKERS?
if one hack my AC, what i do?
if he have an account here, i use the thread?

wtf
i was an hacker, but stopped with this
i meet the AC hacks
Thanks given by:
#18
(17 Jan 13, 01:10PM)TheThief Wrote: WHAT I DO WITH HACKERS?
if one hack my AC, what i do?
if he have an account here, i use the thread?

wtf
i was an hacker, but stopped with this
i meet the AC hacks

(17 Jan 13, 01:01PM)TheThief Wrote: i was waiting to play assault cube...
(have an file called "OpenAL")
its one of the ways to the game DON'T start
(so, don't uninstall this file!!!)
;)

i have hear it have a version of assault cube to play at google chrome..
search at chrome web store: assault cube
its just install an "plug-in"(and i don't what is the plugin)
but is just this
DONT NEED TO SAY THANKZ
(LOL)

(17 Jan 13, 12:57PM)TheThief Wrote: heheheheeee.....
it's a problem...
it was happened with me...
AND I DON'T KNOW WHY!!!
WHY!!!!!!
but i just restarted my computer.

be careful, thus guys post random shit in random threads
Thanks given by:
#19
(17 Jan 13, 01:10PM)TheThief Wrote: WHAT I DO WITH HACKERS?
if one hack my AC, what i do?
if he have an account here, i use the thread?

wtf
i was an hacker, but stopped with this
i meet the AC hacks
God you're more self-absorbed than Jg99.
Thanks given by: