[DiscordArchive] doesn't it use ssl?

Forums WoW Modding Support Archives Azerothcore Discord Archives [DiscordArchive] doesn't it use ssl?

Pages (6): Previous 1 2 3 4 5 6 Next

rektbyfaith
Administrator

09-12-2023, 11:32 PM

#21

Archived author: Rymercyble • Posted: 2023-09-12T23:32:27.831000+00:00
Original source

it doesnt even matter if its encrypted in most cases....encryption is way to protect man in middle attack but u are client u must have that data unencrypted otherwise u wouldnt be able to work with it

rektbyfaith

09-12-2023, 11:32 PM #21

rektbyfaith
Administrator

09-12-2023, 11:33 PM

#22

Archived author: Deleted User • Posted: 2023-09-12T23:33:00.552000+00:00
Original source

yeah, but packet sniffing and reading memory are much different

rektbyfaith

09-12-2023, 11:33 PM #22

Archived author: Deleted User • Posted: 2023-09-12T23:33:00.552000+00:00
Original source

yeah, but packet sniffing and reading memory are much different

rektbyfaith
Administrator

09-12-2023, 11:33 PM

#23

Archived author: Revision • Posted: 2023-09-12T23:33:07.887000+00:00
Original source

There are issues with AzerothCore, just like *every* other emulator available, but so far I've found that AC is by far the best one for WotLK. Yes, there are issues like with ICC and Ulduar but eh.

rektbyfaith

09-12-2023, 11:33 PM #23

rektbyfaith
Administrator

09-12-2023, 11:33 PM

#24

Archived author: Deleted User • Posted: 2023-09-12T23:33:29.090000+00:00
Original source

sniffing packets is much easier, if the client confirms the certificate with a ca then uses end to end encrypted connection, that (reading memory) would be the only option you have

rektbyfaith

09-12-2023, 11:33 PM #24

rektbyfaith
Administrator

09-12-2023, 11:34 PM

#25

Archived author: Revision • Posted: 2023-09-12T23:34:44.006000+00:00
Original source

```
All world packet headers are encrypted using the session key negotiated during login, except for SMSG_AUTH_CHALLENGE and CMSG_AUTH_SESSION.
```

I'm not sure what that means though.

rektbyfaith

09-12-2023, 11:34 PM #25

rektbyfaith
Administrator

09-12-2023, 11:35 PM

#26

Archived author: Deleted User • Posted: 2023-09-12T23:35:28.649000+00:00
Original source

if it's negotiated during login, you can set up a fake server that forwards your packets to the actual server i think

rektbyfaith

09-12-2023, 11:35 PM #26

rektbyfaith
Administrator

09-12-2023, 11:35 PM

#27

Archived author: Revision • Posted: 2023-09-12T23:35:32.089000+00:00
Original source

Supposedly the header is encrypted but the rest isn't

rektbyfaith

09-12-2023, 11:35 PM #27

Archived author: Revision • Posted: 2023-09-12T23:35:32.089000+00:00
Original source

Supposedly the header is encrypted but the rest isn't

rektbyfaith
Administrator

09-12-2023, 11:35 PM

#28

Archived author: Rymercyble • Posted: 2023-09-12T23:35:33.254000+00:00
Original source

probably bigger part than sniffing is disassembly of exe though

rektbyfaith

09-12-2023, 11:35 PM #28

Archived author: Rymercyble • Posted: 2023-09-12T23:35:33.254000+00:00
Original source

probably bigger part than sniffing is disassembly of exe though

rektbyfaith
Administrator

09-12-2023, 11:36 PM

#29

Archived author: Revision • Posted: 2023-09-12T23:36:25.955000+00:00
Original source

We already have sniffer tools that intercepts all the data and logs it for you as you encounter it. We don't really need a whole server for it.

rektbyfaith

09-12-2023, 11:36 PM #29

rektbyfaith
Administrator

09-12-2023, 11:36 PM

#30

Archived author: Deleted User • Posted: 2023-09-12T23:36:29.367000+00:00
Original source

[Image: Public_key_shared_secret.svg.png?ex=690b...a8954bcf8&]

rektbyfaith

09-12-2023, 11:36 PM #30

Archived author: Deleted User • Posted: 2023-09-12T23:36:29.367000+00:00
Original source

[Image: Public_key_shared_secret.svg.png?ex=690b...a8954bcf8&]

Pages (6): Previous 1 2 3 4 5 6 Next

Recently Browsing
1 Guest(s)