« previous next »
Pages: 1 ... 23 24 25 26 27 [28] 29 30 31 32

Author Topic: AfterBlock - Blockland Desktop Program [UPDATE 1.2 RELEASED]  (Read 38081 times)

Sheath

March 13, 2011, 07:42:43 PM
Quote from: DontCare4Free on March 13, 2011, 07:14:19 PM
It seems like that it isn't any security you want to preserve, rather your control of the application.

As I said, version 2.0 uses an encrypter which protects the code of people who build custom apps for AfterBlock. If you decompile the program, you can expose the encryption system and keys and blow open peoples apps. If you also decompile, you can learn more about the AfterBlock system and core resources which you could potentially abuse. For example, someone might program a snipplet that clears or damages core variables, breaking functionality. Its a security risk for my programming, a security risk for 3rd party programmers, and a general risk to the welfare of the AfterBlock project. If this doesn't make sense to you, then thats too bad.

Ad Bot

Advertisement

DrenDran

March 13, 2011, 08:00:46 PM
Quote from: Sheath on March 13, 2011, 07:42:43 PM
As I said, version 2.0 uses an encrypter which protects the code of people who build custom apps for AfterBlock. If you decompile the program, you can expose the encryption system and keys and blow open peoples apps. If you also decompile, you can learn more about the AfterBlock system and core resources which you could potentially abuse. For example, someone might program a snipplet that clears or damages core variables, breaking functionality. Its a security risk for my programming, a security risk for 3rd party programmers, and a general risk to the welfare of the AfterBlock project. If this doesn't make sense to you, then thats too bad.
Just approve apps before they're made public via your site.

Sheath

March 13, 2011, 11:10:31 PM
Quote from: DrenDran on March 13, 2011, 08:00:46 PM
Just approve apps before they're made public via your site.

A system like that is unlikely. My approval doesn't stop people using apps-- I'm not turning into a national socialist service like RTB either.

Wesley Williams

March 14, 2011, 01:30:07 AM
I hope AfterBlock gets a lot more apps. I would totally make something for it if I knew how...

It would be nice if it were possible for Brick Factory to make irregular bricks as well... such as ramps, corner bricks, etc. I don't know how easy that'd be though...

DontCare4Free

March 14, 2011, 11:21:51 AM
Quote from: Sheath on March 13, 2011, 07:42:43 PM
As I said, version 2.0 uses an encrypter which protects the code of people who build custom apps for AfterBlock. If you decompile the program, you can expose the encryption system and keys and blow open peoples apps. If you also decompile, you can learn more about the AfterBlock system and core resources which you could potentially abuse. For example, someone might program a snipplet that clears or damages core variables, breaking functionality. Its a security risk for my programming, a security risk for 3rd party programmers, and a general risk to the welfare of the AfterBlock project. If this doesn't make sense to you, then thats too bad.
Actually, that would be bad. If you didn't do that, people would have to make secure apps because of that everybody could review their code while they would have access to APIs that you didn't approve which might make the apps better.
For example, if you want it to be secure then you might block socket/networking. But what if someone wanted to make an rss client?

Anyway, why would this be useful at all? Everything in this could be made as stand-alone applications just as easy (at least) without this bloated "framework" made with a game engine.

DrenDran

March 14, 2011, 04:08:03 PM
Quote from: Sheath on March 13, 2011, 11:10:31 PM
A system like that is unlikely. My approval doesn't stop people using apps-- I'm not turning into a national socialist service like RTB either.
Didn't realize the national socialist's invented quality control.

Kalphiter

March 14, 2011, 06:18:34 PM
Quote from: DrenDran on March 14, 2011, 04:08:03 PM
Didn't realize the national socialist's invented quality control.
Does he realize how stupid he sounds when he tags think as being national socialist?
Sounds like Glenn Beck.

Wesley Williams

March 14, 2011, 06:26:49 PM
Quote from: Kalphiter on March 14, 2011, 06:18:34 PM
Does he realize how stupid he sounds when he tags think as being national socialist?
Sounds like Glenn Beck.

Think is a national socialist? What?

Tom

March 14, 2011, 06:51:27 PM
Quote from: Kalphiter on March 14, 2011, 06:18:34 PM
Sounds like Glenn Beck.
lolyeah
IcyGamma, the new Glenn Beck!

Killer2

March 14, 2011, 07:01:15 PM
Quote from: Kalphiter on March 14, 2011, 06:18:34 PM
Does he realize how stupid he sounds when he tags think as being national socialist?
Sounds like Glenn Beck.

He means he won't have a site up for distributing user created add-ons. I don't blame him either.

Sheath

March 14, 2011, 07:15:18 PM
Quote from: DontCare4Free on March 14, 2011, 11:21:51 AM
Actually, that would be bad. If you didn't do that, people would have to make secure apps because of that everybody could review their code while they would have access to APIs that you didn't approve which might make the apps better.
For example, if you want it to be secure then you might block socket/networking. But what if someone wanted to make an rss client?

You obviously don't understand what I wrote.

Quote from: DontCare4Free on March 14, 2011, 11:21:51 AM
Anyway, why would this be useful at all? Everything in this could be made as stand-alone applications just as easy (at least) without this bloated "framework" made with a game engine.

There is no bloated framework. This is a single application containing multiple functions rather than requiring separate programs. Its an all-in-one. Whats so hard to understand?

DontCare4Free

March 14, 2011, 07:23:43 PM
Quote from: Sheath on March 14, 2011, 07:15:18 PM
You obviously don't understand what I wrote.
I do understand what you wrote, but I fear that you didn't understand what I wrote.
Quote from: Sheath on March 14, 2011, 07:15:18 PM
There is no bloated framework. This is a single application containing multiple functions rather than requiring separate programs. Its an all-in-one. Whats so hard to understand?
The thing is that GM in itself is bloated when it comes to creating "applications". While it might be acceptable for a game to have to load for several seconds, for a small-to-medium-sized application it is not.

Sheath

March 14, 2011, 07:31:16 PM
Quote from: DontCare4Free on March 14, 2011, 07:23:43 PM
While it might be acceptable for a game to have to load for several seconds, for a small-to-medium-sized application it is not.

Then wait for AfterBlock 2.0.

And no, you don't understand what I wrote because you wrote "people would have to make secure apps because of that everybody could review their code " when apps are encrypted by the runner in AfterBlock, a point I was making over and over.

Tom

March 14, 2011, 07:36:31 PM

DontCare4Free

March 14, 2011, 07:38:52 PM
Quote from: Sheath on March 14, 2011, 07:31:16 PM
And no, you don't understand what I wrote because you wrote "people would have to make secure apps because of that everybody could review their code " when apps are encrypted by the runner in AfterBlock, a point I was making over and over.
You don't understand what I wrote.
I wrote that as a pro for removing the "encryption" and the restrictions.

Or how about this?
Applications can be in two forms:
  • "Encrypted"
    • Runs in a restricted environment
    • Source is protected
  • Raw GML source
    • Can do just as much as the built-in apps
    • Everybody can read source
Pages: 1 ... 23 24 25 26 27 [28] 29 30 31 32
« previous next »