Backup system

[vogyy]

So you're perfectly capable of doing it, but are just worried you'd get banned?

Well, let me alleviate that worry then! People who report exploits, for example, have to be able to do it and tell us how it's done. They don't get banned for it, and depending on the severity of the exploit even get rewarded with coins. With that in mind, and with your skills in consideration, it would be foolish to not get your hands on some easy coins by showing us how the encryption is weak so we can make it better, yes?

That's not what I said. If I were interested in exploiting the server, being banned would be the last thing on my mind. I respect the server enough not to want to.

I inboxed you on how the attack could be performed, if you're interested in hiring a pen tester I would be happy to do business :)

-Cheers

[Islingr]

@vogyy

when warmane first released the backup there was a thread requesting any ideas on improvement or possible flaws to be mailed in, I'd assume with a few dozen brainiacs on their team and at least a few hundred techy people sending in tips and suggestions... the local backup is quite secure as is, if your idea actually works you're something like a supergenius

[vogyy]

@vogyy

when warmane first released the backup there was a thread requesting any ideas on improvement or possible flaws to be mailed in, I'd assume with a few dozen brainiacs on their team and at least a few hundred techy people sending in tips and suggestions... the local backup is quite secure as is, if your idea actually works you're something like a supergenius

It's easier to break than build.

[Islingr]

It's easier to break than build.

aye, when you make something noob-proof, someone's just gonna go and make a better noob

adapted from common saying because apparently using the original word gets it censored >.>

[Obnoxious]

That's not what I said. If I were interested in exploiting the server, being banned would be the last thing on my mind. I respect the server enough not to want to.

I inboxed you on how the attack could be performed, if you're interested in hiring a pen tester I would be happy to do business :)

-Cheers

Yes, and you should remember the word I used to describe what you're doing.
Either way, if you "respect the server enough," make it enough to expose this easily exploited security issue so it can be fixed.
And if you want a job - and know anything about technological applications besides bragging - show you have something to offer, don't expect to be hired because you can type.

[vogyy]

I assure you it's not an easy exploit, to be honest it may not even be possible but if it were, the way to do so would be the way I described in the PM.

I made a tester application, I have a resume as well that I didn't include which could show my technical skills.

I promise I'm not bragging, I'm only trying to contribute to the community. Sorry if I've struck a nerve.

[Sixtyninee]

Ok lets say I decrypt it and modify it. The server get's wiped and I upload my modified backup.

Let's say you modify it. Now tell me how exactly you'll escape the account table and spread a botnet. Oh wait, you wont. And regardless of how technical it goes I still said it's not an easy way to get a botnet.. Now I'm wondering how on earth you linked me to "that guy"

[vogyy]

Let's say you modify it. Now tell me how exactly you'll escape the account table and spread a botnet. Oh wait, you wont. And regardless of how technical it goes I still said it's not an easy way to get a botnet.. Now I'm wondering how on earth you linked me to "that guy"

No you were right about the botnet thing. lol