Author Topic: Add-On Management Website / Service (Read 1737 times)

WALK2222 · June 22, 2014, 10:19:02 PM

Quote from: RarwMuffinz on June 22, 2014, 09:31:46 PM

What about a service that will provide certificates to ensure the safety of add-ons and developers can choose to include this certificate. That way any add-on posted on any site can be approved.

That's an interesting concept. However, how would we be able to tell if it was correctly certified. Couldn't someone easily add a fake certificate to their add-on? Unless of course the certificate was server sided on our website..

Ad Bot · Advertisement

Ipquarx · June 22, 2014, 11:44:28 PM

Quote from: WALK2222 on June 22, 2014, 10:19:02 PM

That's an interesting concept. However, how would we be able to tell if it was correctly certified. Couldn't someone easily add a fake certificate to their add-on? Unless of course the certificate was server sided on our website..

We could store an online database of signatures that are associated with the specific addon content. We could ask the website to give us a key that we could use to verify the addon's certificate. It really isn't that hard actually since the addon can't overwrite TCP objects

Greek2me · June 23, 2014, 01:33:18 AM

It's a good idea but at this point in time it's not needed. There aren't very many malicious mods out there and they can always just be CRC banned.

WALK2222 · June 23, 2014, 02:51:14 PM

Quote from: Ipquarx on June 22, 2014, 11:44:28 PM

We could store an online database of signatures that are associated with the specific addon content. We could ask the website to give us a key that we could use to verify the addon's certificate. It really isn't that hard actually since the addon can't overwrite TCP objects

That sounds like an interesting idea, and I'm sure it could be pulled off. Might need some fine-tuning, but for the most part it sounds fool-proof.

Quote from: Greek2me on June 23, 2014, 01:33:18 AM

It's a good idea but at this point in time it's not needed. There aren't very many malicious mods out there and they can always just be CRC banned.

You are correct, luckily we haven't run into many harmful mods so far. I do believe that the finished add-ons section is a bit unorganized however. We don't have the organized groups for add-ons like RTB had, (eg: weapons, bricks, etc). Now obviously this is simply one feature, but it could be expanded on. Maybe if the demand for organized add-ons goes up, this could be made.

Headcrab Zombie · June 23, 2014, 09:51:07 PM

Quote from: Ipquarx on June 22, 2014, 11:44:28 PM

We could store an online database of signatures that are associated with the specific addon content. We could ask the website to give us a key that we could use to verify the addon's certificate. It really isn't that hard actually since the addon can't overwrite TCP objects

This seems like way more effort than just making something like what RTB did, and I don't see any benefit to it

Ipquarx · June 23, 2014, 09:53:06 PM

Quote from: Headcrab Zombie on June 23, 2014, 09:51:07 PM

This seems like way more effort than just making something like what RTB did, and I don't see any benefit to it

I'm just telling them how they could go about making their idea happen, not trying to critique their idea or anything

TristanLuigi · June 24, 2014, 02:29:34 AM

Quote from: WALK2222 on June 23, 2014, 02:51:14 PM

You are correct, luckily we haven't run into many harmful mods so far. I do believe that the finished add-ons section is a bit unorganized however. We don't have the organized groups for add-ons like RTB had, (eg: weapons, bricks, etc). Now obviously this is simply one feature, but it could be expanded on. Maybe if the demand for organized add-ons goes up, this could be made.

I agree, it was a lot easier to find add-ons in RTB than on the forums.