Aux-connection's are often used to handle critical/real-time mechanisms. From the other side, without proper authentication, it can bring many security flaws(here, I have to mention unpacking errors causing allocation of GBytes of memory - fixed in RC5).
I suggest adding two fields into auxsvc.cfg(per service):
-IPMatch
-RawData
For critical data sent via aux connection, we could use 'IPMatch 127.0.0.1' (ie. if we use aux to create accounts via php script), so nothing bad will happen.
I've also noticed that sending great amounts of packed aux data(strings/arrays) via aux connection still degrades performance(we can perform flood attack without actually sending much data ie. 's100:', 's100:', 's100:') - that could be moderated with RawData field(setting RawData to 1, would disable receiving and sending packed data).
Auxsvc.cfg and IPMatch/RawData
Archive of the older Feature Request Forum Posts
Moderator: POL Developer
-
- New User
- Posts: 28
- Joined: Mon Apr 23, 2007 8:18 am
Return to “Feature Request Archive”
Jump to
- Contrivance
- ↳ POL Server Website
- ↳ General Discussion
- ↳ Rants
- Novice & Help Area
- ↳ Hello world
- ↳ General Help
- ↳ Scripting Help
- ↳ Guides
- ↳ First steps
- Official POL Distribution (Distro)
- ↳ Development Discussion
- ↳ Distro Bug Reports
- ↳ Test shard
- ↳ Contribute to the distro
- ↳ Contributed Optional Packages and Scripts for the Distro
- Core Discussions
- ↳ Current development (100)
- ↳ Current stable release (099)
- ↳ Bug Reports & Feature Requests
- ↳ Solved issues
- ↳ Old requests
- ↳ Contribute to the core
- 3rd Party Scripts
- ↳ Contributed Scripts & Packages
- ↳ Complete Worlds
- 3rd Party Software
- ↳ POL Tools
- ↳ UO Tools
- ↳ Packet World
- ↳ Hosted Projects
- ↳ UOFiddler
- General Shard Development
- ↳ Miscellaneous Development Discussion
- Archive
- ↳ Older Core Versions
- ↳ POL Core 095
- ↳ General Help (095)
- ↳ POL Core 096
- ↳ General Help (096)
- ↳ POL Core 097
- ↳ Feature Request Archive
- ↳ General Help (097)
- ↳ Bug Reports (097)
- ↳ Solved Bugs (097)
- ↳ POL Core 098
- ↳ General Help (098)
- ↳ Bug Reports Archive (098)
- ↳ Old distros
- ↳ POL Core Patch Submissions
- ↳ Distro Patch Submissions