[RELEASE]Login from unique client

Release scritta in: | Release wrote in:

ITALIAN
ENGLISH

IT: andate nella registrazione del vostro sito, e nella query modificate, aggiungendo la funzione Password() di mySQL nell'username.

ENG: go in your website registration, in the QUERY add the function Password() in the username.

ES:
IT: Ora andate nel vostro client e su intrologin fate come è stato fatto sull'immagine:
ENG: Now go in your client and edit the intrologin.py:

[Only registered and activated users can see links. Click Here To Register...]

[Only registered and activated users can see links. Click Here To Register...]

IT: Nuova funzione da aggiungere vicino alle altre, come nello screen:
ENG: New Function (To add the function see the screenshot):

IT: Infine modificate in
ENG: Edit to

------------ ------------ ------------ ------------ ------------ ------------ ------------ ------------
WE WANT MORE? [Only registered and activated users can see links. Click Here To Register...]
------------ ------------ ------------ ------------ ------------ ------------ ------------ ------------

Quote:

Originally Posted by WarXWar go in your website registration, in the QUERY add the function Password() in the username. ES: Code: $query="INSERT INTO db.table (id, password, etc) VALUES([COLOR="Red"]Password('$id')[/COLOR], ...)"; Now go in your client and edit the intrologin.py: See this. [Only registered and activated users can see links. Click Here To Register...] New Function: Code: def SetLoginInfo(self, id, pwd): self.stream.SetLoginInfo("*"+sha.sha(sha.sha(id).digest()).hexdigest().upper(), pwd) Edit self.stream.SetLoginInfo(id, pwd) to self.SetLoginInfo(id, pwd) ------------ ------------ ------------ ------------ ------------ ------------ ------------ ------------ WE WANT MORE? [Only registered and activated users can see links. Click Here To Register...] ------------ ------------ ------------ ------------ ------------ ------------ ------------ ------------

mit bildchen ;)
btw: it´s nice

thanks

not work..connecting to server...

A Pic from the Feature wheres nice so I don´t know what you mean

Sonny I to! War can you say us what do the Funktion ??

Sonny ich dachte du gehst Takos essen^.^

please me Full root and uiscript !!

Quote:

Originally Posted by αятυя-νєηтσχ Sonny I to! War can you say us what do the Funktion ?? Sonny ich dachte du gehst Takos essen^.^

Hab ich geschrieben bevor ich essen gegangen bin und zum thread ich werde immer noch nicht schlau daraus zu was des gut sein soll...

skids..skids everywhere
that function makes the login unique for your server.
what means?
taking a fast example ...when you try to log-in in your server, you will send id and password through the game and mysql then.
once did that, mysql compares your id with its id in tables, if that result TRUE you'll go to the next step.

Now what does happen if i insert a prefix?
no-one with the correct prefix/encryption in its intrologin will be able to log-in.
it's quite a simple workaround bypassable in easy way, but also works for the majority of people.

a quicky-sneaky refers for who didn't understand a shit

standard client/mysql/reg.php

MYSQL/REG

$Login=(mysql_real_escape_string(strip_tags($_POST['rainXD'])));
$password=mysql_real_escape_string($_POST['byebye']);

rainXD *MYSQL5_ENCRYPTION_OF_(byebye)

CLIENT

def Connect(self, id, pwd):
#some controls
self.stream.SetLoginInfo(id, pwd)
self.stream.Connect()
----------------------------------------------------------------------

with prefix/encryption


MYSQL/REG
function with_prefix($username)

$Login=with_prefix(mysql_real_escape_string(strip_ tags($_POST['rainXD'])));
$password=mysql_real_escape_string($_POST['byebye']);

prefixrainXD *MYSQL5_ENCRYPTION_OF_(byebye)

CLIENT

def Connect(self, id, pwd):
#some controls
self.stream.SetLoginInfo("prefix"+id, pwd)
self.stream.Connect()

Quote:

Originally Posted by RaiN.. skids..skids everywhere that function makes the login unique for your server. what means? taking a fast example ...when you try to log-in in your server, you will send id and password through the game and mysql then. once did that, mysql compares your id with its id in tables, if that result TRUE you'll go to the next step. Now what does happen if i insert a prefix? no-one with the correct prefix/encryption in its intrologin will be able to log-in. it's quite a simple workaround bypassable in easy way, but also works for the majority of people. a quicky-sneaky refers for who didn't understand a shit standard client/mysql/reg.php MYSQL/REG $Login=(mysql_real_escape_string(strip_tags($_POST['rainXD']))); $password=mysql_real_escape_string($_POST['byebye']); rainXD *MYSQL5_ENCRYPTION_OF_(byebye) CLIENT def Connect(self, id, pwd): #some controls self.stream.SetLoginInfo(id, pwd) self.stream.Connect() ---------------------------------------------------------------------- with prefix/encryption MYSQL/REG function with_prefix($username) $Login=with_prefix(mysql_real_escape_string(strip_ tags($_POST['rainXD']))); $password=mysql_real_escape_string($_POST['byebye']); prefixrainXD *MYSQL5_ENCRYPTION_OF_(byebye) CLIENT def Connect(self, id, pwd): #some controls self.stream.SetLoginInfo("prefix"+id, pwd) self.stream.Connect()

La funzione che ho fatto è l'emulazione dell'algoritmo MySQL.
[Only registered and activated users can see links. Click Here To Register...]
Se noti MySQL utilizza SHA256 più volte, e trasforma tutto in UPPERCASE.