Jump to content




HTTP Requests sent from client (on a multiplayer server)


7 replies to this topic

#1 GravityScore

  • Members
  • 796 posts
  • LocationLand of Meh

Posted 20 January 2013 - 09:04 AM

Hey,

I was wondering if it would be possible at all to send the HTTP requests (using the http.post, get and request methods) from the client's IP address instead of the server's, when playing on a multiplayer server? This would be super useful when sending requests to PHP scripts on a web server.

It would allow you to limit accounts created to 1 per IP address, as you wouldn't have to worry about limiting/blocking everyone on the server. Also it would allow you to properly rate limit IP addresses, as you would only be affecting 1 person, not everyone on a server.

Thanks!

#2 Cloudy

    Ex-Developer

  • Members
  • 2,543 posts

Posted 20 January 2013 - 09:06 AM

Nope, not possible I'm afraid. How would the server know what client to use if more than one person in the GUI?

#3 GravityScore

  • Members
  • 796 posts
  • LocationLand of Meh

Posted 20 January 2013 - 09:09 AM

View PostCloudy, on 20 January 2013 - 09:06 AM, said:

Nope, not possible I'm afraid. How would the server know what client to use if more than one person in the GUI?

Ah damn. I see your point.

Ok thanks :P

#4 bbqroast

  • Members
  • 124 posts

Posted 24 January 2013 - 08:50 PM

Also, it becomes a security risk (not that servers where people who would do risky things are on should have HTTP enabled in the first place).

#5 ElvishJerricco

  • Members
  • 803 posts

Posted 02 February 2013 - 05:00 PM

View Postbbqroast, on 24 January 2013 - 08:50 PM, said:

Also, it becomes a security risk (not that servers where people who would do risky things are on should have HTTP enabled in the first place).

Maybe I just don't know enough, but I'm pretty sure that HTTP is pretty secure. You send text, you get text. Nothing is forcefully executed and if it were, in the case of computercraft it'd be within the sandbox of the computer, which is strict enough to be zero threat.

#6 cant_delete_account

  • Members
  • 484 posts

Posted 02 February 2013 - 05:09 PM

View PostElvishJerricco, on 02 February 2013 - 05:00 PM, said:

View Postbbqroast, on 24 January 2013 - 08:50 PM, said:

Also, it becomes a security risk (not that servers where people who would do risky things are on should have HTTP enabled in the first place).

Maybe I just don't know enough, but I'm pretty sure that HTTP is pretty secure. You send text, you get text. Nothing is forcefully executed and if it were, in the case of computercraft it'd be within the sandbox of the computer, which is strict enough to be zero threat.
I think he means being able to get the client's IP.

#7 Skullblade

  • Members
  • 470 posts
  • LocationThe Big Apple, NY

Posted 02 February 2013 - 05:43 PM

What/who are you worried about getting your IP? the server...no they have it. The website...no they have it. Pretty much anywhere you go online has ur ip...

#8 immibis

    Lua God

  • Members
  • 1,033 posts
  • LocationWellington, New Zealand

Posted 02 February 2013 - 06:13 PM

View Postthesbros, on 02 February 2013 - 05:09 PM, said:

View PostElvishJerricco, on 02 February 2013 - 05:00 PM, said:

View Postbbqroast, on 24 January 2013 - 08:50 PM, said:

Also, it becomes a security risk (not that servers where people who would do risky things are on should have HTTP enabled in the first place).

Maybe I just don't know enough, but I'm pretty sure that HTTP is pretty secure. You send text, you get text. Nothing is forcefully executed and if it were, in the case of computercraft it'd be within the sandbox of the computer, which is strict enough to be zero threat.
I think he means being able to get the client's IP.
* Send request to facebook.com from the client's IP.
* Get the client's facebook page.

(or replace facebook.com by some site that uses IPs for authentication (which is a bad idea but it happens))

Or even:
* Send request to 192.168.1.254
* Muck with client's router's settings.





1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users