What are backdoors in addons?

[dcseal]

This sounds and is stupid, But I really needed to understand this and didn't know were to post it, So i'm going with it here, What are backdoors in addons?

All I know they are some sort of shady thing put in a addon's script?

[Ad Bot]

[The Resonte!]

shady thing is right


basically when the creator adds some stuff so that the creator can abuse it if someone is using it

like: add-on creator makes add-on with a backdoor that gives him admin

[dcseal]

shady thing is right


basically when the creator adds some stuff so that the creator can abuse it if someone is using it

like: add-on creator makes add-on with a backdoor that gives him admin

Oh.. so a backdoor would count as a thing that gives you infinite health if you made the addon? Oh. I get it now kinda. Thanks.

[Pah1023]

It can range from something as completely harmless, such as a message that is displayed, to completely malicious, such as access to the hosts console, in which can the client can do nearly anything to your server.

[Kyuande]

Be careful who you download add-ons from, if it's private ask few people about it. A backdoor could literally delete every file in your blockland folder.

[Lego lad]

it also lets burglars in, make sure to lock them

bu dum tss

[Conan]

backdoors can literally allow people to upload viruses through eval and such to your computer, or as vis mentioned, delete all your blockland files. This was actually attempted once by Zapk or something when Slayer was updated with a short script that proceeded to delete every single file in your BL folder once ran (it runs when you open blockland).

thankfully the fallout was limited by the fact it was stupid and deleted core files before deleting things like addons or saves, so BL would crash before the damage was complete.

[Kyuande]

If I remember you can use tcp objects to download exes, I could be wrong

[Pah1023]

If I remember you can use tcp objects to download exes, I could be wrong

99% sure you can, considering you can download a zip file.

[Dannu]

If I remember you can use tcp objects to download exes, I could be wrong

You can download binary files, but you can't upload them. Also you can't execute them or deploy them anywhere where they may be unawarely launched, so the chances of an attack possibility is quite minimal.

[Zeblote]

If I remember you can use tcp objects to download exes, I could be wrong

You can download them but you can't do anything with the downloaded files, so it's completely pointless.

[Juliun03]

it also lets burglars in, make sure to lock them

bu dum tss

/badjoke

[Tendon]

Be careful who you download add-ons from, if it's private ask few people about it. A backdoor could literally delete every file in your blockland folder.

This is why I refuse to use the Auto-Updater that comes with most add-ons.  Version 1 might have been ok.  But version 2, that could be anything.

The add-ons are not checked, do not come from a trusted platform, and literally any add-on can use the system.

[The Resonte!]

This is why I refuse to use the Auto-Updater that comes with most add-ons.  Version 1 might have been ok.  But version 2, that could be anything.

The add-ons are not checked, do not come from a trusted platform, and literally any add-on can use the system.

master plan:

1. create amazing add-on that everyone uses with auto-updater
2. make an update that also sneaks in a back door
3. ???
4. get revoked

[Conan]

master plan:

1. create amazing add-on that everyone uses with auto-updater
2. make an update that also sneaks in a back door
3. ???
4. get revoked

slayer