[MUD-Dev] Re: Unix is a mud (Re: Ugh, IS Diablo a mud?)

[Ola Fosheim Grøstad <olag@ifi.uio.no>]

Koster, Raph wrote:
> Hmm. I've been thinking a lot about encryption and its use for this sort
> of thing, including distributed systems like what it appears Habitat is
> going to use. Mind you, I speak as someone inexpert in these matters...
> but it seems the stumbling block is that you can encrypt transmissions
> all you want, but if the machine you're on decrypts it, then it's in the
> clear in memory and you can get at it all you want and even use the
> client's built-in encryption capabilities to "legitimize" your changes
> to the client's memory. UO has already had a piece of software released
> by a pair of hackers that does exactly this in order to send spoof
> packets to the server...

I think I used the wrong words in my previous post. It should have been
"public key" and "authorization".  I can't find the information on the web
:( It was out there a couple of years ago... Maybe I remember wrong. Anway,
the idea AFAIK is that you will know who sent the package and thus you can
figure out if you have given that client the rights to do whatever he is
doing...
--
Ola