• Welcome to Valhalla Legends Archive.
 

War3 Login

Started by iago, May 16, 2004, 09:49 PM

Previous topic - Next topic

Spht

Quote from: Mephisto on May 18, 2004, 12:31 AM
Quote from: Skywing on May 17, 2004, 11:05 PM
Quote from: Maddox on May 17, 2004, 10:35 PM
BNLS defeats the whole purpose of the login system they have in place, to increase security and protect against eavesdropping.
Actually there have been plans for a BNLS over a secured standard protocol with readily-available libraries useable from many languages, but it didn't seem like enough people would use it to justify the time (among other problems).

I think he meant that because BNLS requires your password and CD-Key when you connect to the server, and BNLS returns what you need to connect to Battle.net.  Battle.net should be the only ones to see your CD-Key, and the purpose of hashing is to protect people from getting that information easily.  With added implementation, creators of BNLS could easily log CD-Key, password, and account information and use it for whatever reasons.  Though this is not really a concern for most people, it is for those paranoid people, and people who think that it's wrong for others to have that access to your information.  But it hasn't proven to be any real threat/situation in the years BNLS has been around has it?

Like Skywing said, which you seem to misinterpret, is that not enough bot developers were interested enough in supporting a secure login to BNLS, so Skywing never botherd to take the time to implemented it.

iago

Granted - but that doesn't change the fact that you're sending keys in plaintext.  Just because more people think something's right doesn't make it right (that's why democracy is wrong) :)
This'll make an interesting test for broken AV:
QuoteX5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*


Tuberload

I wish more people would be interested in a secure BNLS protocol. I would definitely like to see it made. I like the idea of BNLS because it is a good way to keep idiots from using my bot inappropriately.
Quote"Pray not for lighter burdens, but for stronger backs." -- Teddy Roosevelt
"Your forefathers have given you freedom, so good luck, see you around, hope you make it" -- Unknown

PaiD


Dyndrilliac

Quote from: Tuberload on May 18, 2004, 03:36 PM
I wish more people would be interested in a secure BNLS protocol. I would definitely like to see it made. I like the idea of BNLS because it is a good way to keep idiots from using my bot inappropriately.

How does BNLS keep people from misusing your bot? Isn't it's only purpose to log on to Battle.net without needing the files or the protocol to do so yourself?
Quote from: Edsger W. DijkstraIt is practically impossible to teach good programming to students that have had a prior exposure to BASIC; as potential programmers they are mentally mutilated beyond hope of regeneration.

Tuberload

Quote from: Dyndrilliac on May 22, 2004, 06:24 PM
Quote from: Tuberload on May 18, 2004, 03:36 PM
I wish more people would be interested in a secure BNLS protocol. I would definitely like to see it made. I like the idea of BNLS because it is a good way to keep idiots from using my bot inappropriately.

How does BNLS keep people from misusing your bot? Isn't it's only purpose to log on to Battle.net without needing the files or the protocol to do so yourself?

Simple, I don't release it with my BNLS ID/Password. I make them supply their own. If they cant get a BNLS ID that's their problem.

I was told one day a reason that BNLS is allowed is because it provides a method for controlling Binary Gateway access. This way if people abuse my bot they will get shut down, not everyone else as well.
Quote"Pray not for lighter burdens, but for stronger backs." -- Teddy Roosevelt
"Your forefathers have given you freedom, so good luck, see you around, hope you make it" -- Unknown

TheMinistered

What's up with all the ranting and raving?  Why can't you guys ever just give a simple, "Good work!"?  -- That's my 2cents! :)

|