So I was reading this post

demonstar55 · #1 08-07-2009, 10:53 PM

there are already server-side detection of some hacks (MQ2Warp, etc) but they do generate false positives, and yes, there are hacks to circumvent the detections :/

best bet would be to improve on the current detection systems and add any other detections that can be done reliably

The current system just logs to the hackers table in the DB

And the current MQ2Warp detection makes more false positives for SoF (the time between loc updates is longer than Titanium or something)

3z3ki3l · #2 08-07-2009, 11:17 PM

Quote:

Originally Posted by demonstar55

there are already server-side detection of some hacks (MQ2Warp, etc) but they do generate false positives, and yes, there are hacks to circumvent the detections :/

best bet would be to improve on the current detection systems and add any other detections that can be done reliably

The current system just logs to the hackers table in the DB

And the current MQ2Warp detection makes more false positives for SoF (the time between loc updates is longer than Titanium or something)

MQ is not "detectable" in the right hands because it can run completely passively depending on which features you sacrifice. Detection methods are redundant as fuck and the huge margin of error allows the other lesser known hacks to run freely -- VZTZ pushed these anti-hacking methods as far as they could and the problems only snowballed (if you didn't notice).

Its funny because I had the same discussion with Null (most recent joke dev on VZTZ) and after alot of pining I came to the conclusion the only "real" solution would be a piece of software that coordinates with the server to make sure nothing is toying with the client. To which he brought up the "failure" of the Bane of Life software... so I checked it out and the fucking thing hadn't even been compiled yet, much less failed.

Ultimately I can't chalk this up to anything but some serious penis envy and total technical ignorance to the issues at hand. All of which is perpetuated and displayed here in this and related threads.

demonstar55 · #3 08-07-2009, 11:26 PM

Quote:

Originally Posted by 3z3ki3l

MQ is not "detectable" in the right hands because it can run completely passively depending on which features you sacrifice. Detection methods are redundant as fuck and the huge margin of error allows the other lesser known hacks to run freely -- VZTZ pushed these anti-hacking methods as far as they could and the problems only snowballed (if you didn't notice).

Its funny because I had the same discussion with Null (most recent joke dev on VZTZ) and after alot of pining I came to the conclusion the only "real" solution would be a piece of software that coordinates with the server to make sure nothing is toying with the client. To which he brought up the "failure" of the Bane of Life software... so I checked it out and the fucking thing hadn't even been compiled yet, much less failed.

Ultimately I can't chalk this up to anything but some serious penis envy and total technical ignorance to the issues at hand. All of which is perpetuated and displayed here in this and related threads.

I understand that, just say the best bet to stop MQ2 active hacks at least would be better detection methods, but not sure if we've reached the limit yet

3z3ki3l · #4 08-07-2009, 11:30 PM

Quote:

Originally Posted by demonstar55

I understand that, just say the best bet to stop MQ2 active hacks at least would be better detection methods, but not sure if we've reached the limit yet

Check out Yeor's server: www.baneoflife.com. The "Client Manager" is what you should read into -- it successfully detects anything latching into the client and will instaban the user (by more than IP) with NO margin for error.

That's where the cock envy I spoke of entered the picture.

blackdragonsdg · #5 08-08-2009, 02:21 AM

Quote:

Originally Posted by 3z3ki3l

Check out Yeor's server: www.baneoflife.com. The "Client Manager" is what you should read into -- it successfully detects anything latching into the client and will instaban the user (by more than IP) with NO margin for error.

That is an interesting way to hinder or stop cheaters.

demonstar55 · #6 08-08-2009, 02:32 AM

Quote:

Originally Posted by 3z3ki3l

Check out Yeor's server: www.baneoflife.com. The "Client Manager" is what you should read into -- it successfully detects anything latching into the client and will instaban the user (by more than IP) with NO margin for error.

That's where the cock envy I spoke of entered the picture.

and if they're not running the client manager? juts kick and yell at them to use it?

3z3ki3l · #7 08-08-2009, 08:15 AM

Quote:

Originally Posted by demonstar55

and if they're not running the client manager? juts kick and yell at them to use it?

They literally cannot play without running the client manager. They cannot start the client without it and it is synced with the server... if the client manager stops the server will kick you.

Leere · #8 08-08-2009, 10:08 AM

That client manager is a complete failure of concept. It's an external add-on linking to the server with its own protocol. The server has no way of telling it apart from something imitating that protocol and sending that everything is just fine.

Face it, any kind of client-side protection is at best an attempt at making it too much of an effort to circumvent, and you've as good as lost that battle to begin with by needing to provide access to the client software in the first place.

The only way to make something like that work is to have OS support for segregated data where nothing can access your memory space or even physical data files. About the only way to currently even attempt something like that is to basically install the equivalent of a virus.