Have a look at the following two options: *Server-based IP enforcement *Secure client and server
Btw, there's a certain irony in rereading the option "secure client and server" one year later: "We've already agreed that the SecondLife client is probably not actually technically secure, but it is legally secure. That is, whilst anyone who does a little research could hack into it technically - and even distribute an executable to allow others to do the same easily - both of these actions would certainly be against ToS, and maybe that would make them illegal too, since the ToS is generally considered a legal document (see Appendix A) So, how did the SecondLife client become legally secure, and an OpenSource client is not? Well, because anyone can install the OSMP client simply by accepting the GPL agreement, there is no ToS beyond that. It may not be enough to simply distribute OSMP with a stronger ToS. However, what we can do is to keep OSMP as OpenSource, GPL etc, and then publish a secure client and server. The secure client and server is identical to the opensource version, except that we have incorporated a random crypto key, used to authenticate the client to server, and possibly to encrypt network traffic (maybe not necessary). Then, to connect to the secure server, you must use the secure client, and the secure client is only distributed with a click-through Eula forbidding things like hacking the network stream, memory scanning, hacking the cache, and reverse engineering. Advantages: - It's basically how SL's security works, so tried and tested - Independent of data-type, eg works for textures, prims, objects, and so on. - Fairly easy to do Disadvantages: - Not technically secure, only legally secure - Need to have the will and the means to enforce the ToS - Need to trust the person/organization who creates the secure client/server Appendix A: enforceability of ToS The ToS in SecondLife is probably a legal contract. Legal contracts usually (but not always, eg shrinkwrapped software) require "consideration". "Consideration" means both parties must gain something from the action of agreeing to the contract. Clicking on the "OK" creates a binding contract, because you gain the right to use SecondLife (you didnt have it before clicking Ok, unlike shrinkwrapped software), and SecondLife gains a subscriber. Disclaimer: I'm not a lawyer, I just read this on Slashdot one day. You use this information at your own risk; it could be completely wrong." On 11/17/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
And the only thing I said about protecting DVD's, was to point out that no one's managed to do it effectively thus far. However if there's a gaping hole in my logic, where I compare the ability to bootleg DVD's via high-end software and the ability to grab key encrypted image and prims data when it talks to your video card, please educate me. I'm keen to know what kind of differences "multiplayer servers" offer.
_______________________________________________ Libsecondlife-dev mailing list [email protected] https://lists.berlios.de/mailman/listinfo/libsecondlife-dev
