Cca has made a script to bypass authentication.

[Ipquarx]

isn't that the time when there was some sort of master server screwery and we all played on badspots block party with randomized bl_ids

Pretty much lol

[Ad Bot]

[McZealot]

couldnt you already do this? isnt it was ephi did to host a survivors server back when the master server was getting ddos'd?

[JoeysWorldTourLIFE]

so basically he bypassed the game so he can join servers even though he is key-banned?

[Marios]

so basically he bypassed the game so he can join servers even though he is key-banned?

He found a way to make a server accept clients without any authentication needed.
However, the server needs to override a function itself, no injection from the client possible. (unless super admin eval)
Can't join any servers that don't override authentication.

[Ipquarx]

so basically he bypassed the game so he can join servers even though he is key-banned?

No, he only edited his own server so that people without a key can join.

[JoeysWorldTourLIFE]

No, he only edited his own server so that people without a key can join.

wow what an ass

[Dannu]

If I understand this correctly, it was quite a rookie mistake on Badspots part to not include the authentication provision in a guarded function.

[cooolguy32]

No, he only edited his own server so that people without a key can join.

what the forget.

[Ravencroft·]

what the forget.

what

[Marios]

If I understand this correctly, it was quite a rookie mistake on Badspots part to not include the authentication provision in a guarded function.

Maybe the function was guarded, otherwise this would've been discovered years ago.

[Metario]

I talked to port about this. "he says a lot of dumb things. I'm sure I've talked to Cca before but I haven't helped him with that". So, who helped him with the authentication spoof?

[Ipquarx]

I talked to port about this. "he says a lot of dumb things. I'm sure I've talked to Cca before but I haven't helped him with that". So, who helped him with the authentication spoof?

Probably one of his actual coder friends, you know, the ones he gives admin to on his servers. It's not that difficult to do either.

[Ravencroft·]

I talked to port about this. "he says a lot of dumb things. I'm sure I've talked to Cca before but I haven't helped him with that". So, who helped him with the authentication spoof?

Cca would likely have screenshots of every interaction he had with Port if it were true.

[SWAT One]

I'm on the side of not enough hard evidence.

Same mud-flinging, crowd-gasping drama that is common to the BLF.  Feels like a stereotypical portrayal of a dramatic court case in early religious-legalist America with some powder-wigged magistrate overseeing procedures.  Mostly rhetoric and a constructed ethical crCIA on the drama community's shoulders.

[Dannu]

Maybe the function was guarded, otherwise this would've been discovered years ago.

No, a guarded function means it can't be altered via torquescript or hindered in any way. Essentially

[player tries to connect to server] > [guarded function handles authentication and other sensitive stuff that needs to happen untampered] > [it triggers a function such as onConnect for modder interaction]

Thats how it would work ideally on a very basic level.