FOSS gamedev and creative worlds
This is a mostly frozen copy of the Minetest forums through 2017. If you know phpBB3 and would like to host any G-rated forum here, you can email: me@minetest.org If the email doesn't work, find out who's taken over Final Minetest from OldCoder and email them to get write access or an admin account.
I should have set this up years ago. But it's no tale of woe.
Whether the temperature is high or low, regardless of cold winds blow,
away we go like Edgar Allan Poe, on now with the show. BTW rhymes are welcome.
password encryption [solved]
4 posts
• Page 1 of 1
password encryption [solved]
When a user creates a new account to join a server does the password encryption start at client before traveling the internet or does this take place on the server side?
Last edited by TARD on Fri Sep 23, 2016 01:36, edited 1 time in total.
-
ExeterDad - Member
- Posts: 1121
- Joined: Sun Jun 01, 2014 20:00
- In-game: ExeterDad
Re: password encryption
Client side. Password is never really sent over the wire. Only hashes unique to the server. In other words, if you use the same password on every server you play, the stored hash on the servers will not be the same, nor can be used by a evil server owner to log in as you on another server.
Re: password encryption
ExeterDad wrote: nor can be used by a evil server owner to log in as you on another server.
Solved, Thank. This what I was worry about because I ask stolen account user's if they use same password on other servers and they say yes.
- est31
- Member
- Posts: 172
- Joined: Mon Dec 29, 2014 01:49
Re: password encryption [solved]
For increased security, make sure the send_pre_v25_init option is flipped to false, which is the default in the dev version, but 0.4.14 still defaults to true.
4 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 8 guests