[DiscordArchive] Now I should know the warden internals and have basic knowledge of reverse engineering. What else?
[DiscordArchive] Now I should know the warden internals and have basic knowledge of reverse engineering. What else?
Original source
While true, it's more visible: an explicit update, some new binary delivered, that will be scanned by anti-virus (likely won't detect anything), that can be analysed.
RCE is the fact the code can be changed at any time without notification.
rektbyfaith
09-13-2025, 10:46 AM #21Archived author: stoneharry • Posted: 2025-09-13T10:46:00.994000+00:00
Original source
While true, it's more visible: an explicit update, some new binary delivered, that will be scanned by anti-virus (likely won't detect anything), that can be analysed.
RCE is the fact the code can be changed at any time without notification.
Original source
_and_ that Blizzlike servers can even do it without a custom exe
rektbyfaith
09-13-2025, 10:46 AM #22Archived author: stoneharry • Posted: 2025-09-13T10:46:30.294000+00:00
Original source
_and_ that Blizzlike servers can even do it without a custom exe
Original source
People already profile what warden instructions (modules) are being deployed by servers
rektbyfaith
09-13-2025, 10:47 AM #23Archived author: stoneharry • Posted: 2025-09-13T10:47:09.549000+00:00
Original source
People already profile what warden instructions (modules) are being deployed by servers
Original source
I mean, yeah. But still there are tons of easier ways to be malicious.
Don't think a server who wants to be malicious gonna do it through RCE.
rektbyfaith
09-13-2025, 10:47 AM #24Archived author: Saty • Posted: 2025-09-13T10:47:47.306000+00:00
Original source
I mean, yeah. But still there are tons of easier ways to be malicious.
Don't think a server who wants to be malicious gonna do it through RCE.
Original source
I agree, but RCE is definitely the most dangerous and least visible form of being malicious. I stand by it should not be public knowledge
rektbyfaith
09-13-2025, 10:48 AM #25Archived author: stoneharry • Posted: 2025-09-13T10:48:39.559000+00:00
Original source
I agree, but RCE is definitely the most dangerous and least visible form of being malicious. I stand by it should not be public knowledge
Original source
I think it should be public knowledge so people can protect against it.
The more is known, the more people can develop counter measures
rektbyfaith
09-13-2025, 10:49 AM #26Archived author: Saty • Posted: 2025-09-13T10:49:23.054000+00:00
Original source
I think it should be public knowledge so people can protect against it.
The more is known, the more people can develop counter measures
Original source
You can't protect against it fully. Not without seriously limiting the ability to prevent bots/hacks. I won't go into more detail
rektbyfaith
09-13-2025, 10:49 AM #27Archived author: stoneharry • Posted: 2025-09-13T10:49:59.719000+00:00
Original source
You can't protect against it fully. Not without seriously limiting the ability to prevent bots/hacks. I won't go into more detail
Original source
Warden is already known to be easily bypassed. So disabling it completely has no negative impact honestly.
It's a flawed system from the get go, and a better way to protect your server is by doing client mods, doing your own checks.
Then we get in the territory of "its easier to be malicious".
rektbyfaith
09-13-2025, 10:52 AM #28Archived author: Saty • Posted: 2025-09-13T10:52:25.568000+00:00
Original source
Warden is already known to be easily bypassed. So disabling it completely has no negative impact honestly.
It's a flawed system from the get go, and a better way to protect your server is by doing client mods, doing your own checks.
Then we get in the territory of "its easier to be malicious".
Original source
Not to mention that 99% of players will blindly download anything anyways. So the RCE only applies to people like us, who might look for malicious stuff.
Everyone else just downloads malware freely <:kek:1117578868140806164>
rektbyfaith
09-13-2025, 10:53 AM #29Archived author: Saty • Posted: 2025-09-13T10:53:54.166000+00:00
Original source
Not to mention that 99% of players will blindly download anything anyways. So the RCE only applies to people like us, who might look for malicious stuff.
Everyone else just downloads malware freely <:kek:1117578868140806164>
Original source
It's not easily bypassed since servers will just stop you being able to play if the client doesn't respond to a query
rektbyfaith
09-13-2025, 10:55 AM #30Archived author: stoneharry • Posted: 2025-09-13T10:55:25.906000+00:00
Original source
It's not easily bypassed since servers will just stop you being able to play if the client doesn't respond to a query
1 Guest(s)
1 Guest(s)