|
|
|||||||
| IL-2 Sturmovik: Cliffs of Dover Latest instalment in the acclaimed IL-2 Sturmovik series from award-winning developer Maddox Games. |
 |
|
|
Thread Tools | Display Modes |
|
|
|
#1
05-22-2011, 11:24 AM
|
|||
|
|||
Excuse me if I am misunderstanding Ralith, but are you agreeing that their is indeed potential for malicious single player missions? If so, I hardly think this is alarmist by fearlessfrog.
Many players of the original IL2 seies (including myself) are/were offline players predominantly or solely. I downloaded and played a huge, and I mean huge, amount of missions and campaigns over the ten or so years of IL2. I've even downloaded and played user made missions for CoD already. If there is indeed a security vulnerability in the way missions (single offline or online) can be built and/or scripted, then it needs to be addressed sooner rather than later. Again, If I have misunderstood, my apologies, but thanks for pointing it out Frog and I hope Luthier is or becomes aware of the potential issue. 
|
|
#2
05-22-2011, 11:43 AM
|
||||
|
||||
|
SP missions are not sandboxed currently. This means, that mission script can get same rights as an user you use to run a game. So, watch what you download.
MP mission scripts are executed on server, so you should not be exposed to malicious code just by connecting to server. However, there are classes, whose are responsible for briefing and UI elements scripted on server, but displayed on client. Those could be used for malicious stuff, but so far it seems they aren't accessible from scripts (or I simply don't know the way).
|
|
| Thread Tools | |
| Display Modes | |
|
|
Hybrid Mode
