[quake3] non-cheatable game

Paul subsolar at subsolar.com
Tue May 15 18:59:47 EDT 2007


On Tue, 2007-05-15 at 02:00 -0300, Diego de Estrada wrote:
> You are missing the point, this has nothing to do with DRM.
> This is not security through obscurity. Here the "root" guy is the
> server, not the clients.
> A bulletproof system is possible, but not easy:
> 
> * Direct access to network data comming from the server must not give
> any advantage to the client.
> Example: instead of the server telling the client "an enemy is behind
> the wall" so that he can hear the foot steps, it's better to say
> directly "foot steps comming from that direction".
> This makes wall hack a dull boy.
> 
> * A "lie" comming from a client should be detected if and only if it
> gives him any advantage.
> Example: it's easy to detect a too fast walking or movement of the
> camera, so speed hack and auto aim, to some point, are detectable.

No totally, a "Trigger Bot" is an example of where sniffing the data
stream can give an advantage.  It works wonderfully with line of sight
weapons and AFAK there would be no possible way for the server to
detect.

Encrypting the data stream would help prevent sniffing the data, but
it's still possible to perform man in the middle attacks.

Paul




More information about the quake3 mailing list