Notice: Any messages purporting to come from this site telling you that your password has expired, or that you need to verify your details, confirm your email, resolve issues, making threats, or asking for money, are
spam. We do not email users with any such messages. If you have lost your password you can obtain a new one by using the
password reset link.
Due to spam on this forum, all posts now need moderator approval.
Entire forum
➜ Programming
➜ General
➜ Giving Troublesome Users the Flick
|
Giving Troublesome Users the Flick
|
It is now over 60 days since the last post. This thread is closed.
Refresh page
| Posted by
| KevJB
(1 post) Bio
|
| Date
| Fri 05 Nov 2004 01:28 PM (UTC) |
| Message
| Ok, I've thought about some of the more basic ways of making stupid people leave a mud alone but now I'm thinking hi-tech. What can I do that will make bans more effective. What I hate about the banning system is that it just bans a site. Be it an IP address or DNS name it gone but nothing more. If a user wants to cause problems they are going to use something to hide their IP address. ANd generally owner of said something won't tell you anything unless you bash down their door with a Federal Warrent.
So how do I make sure a user really is who they claim to be. One method is to ban every known anymous proxy in the universe but I thnk that's a little overboard. I've heard that SSH can do some funky stuff by using RSA keys to indetify the connection. Is there a way to use RSA to crypt enough user info to enforce a ban without being so specific that the user can change one thing about them (new client, different aunonymous proxy etc) and be back on the air abusing my mud players again.
Anyone got any other thoughts other than registering all players using e-mail and getting them to use that registered name to create any "sub-characters" as such?
Thanks in advance,
Kevin-John Beasley | | Top |
|
| Posted by
| Nick Gammon
Australia (23,173 posts) Bio
Forum Administrator |
| Date
| Reply #1 on Sun 07 Nov 2004 12:58 AM (UTC) |
| Message
| I don't think you can do a huge amount. Read the other recent post about "SMAUG: SMAUG coding: IP spoofing".
A registration system might be the only way to go, or possibly combine an IP address check with registration. That is, if the address is suspicious, then require registration. Suspicious might mean one the same or similar to one that has caused problems in the past, and you can probably get a list of proxies fairly easily. |
- Nick Gammon
www.gammon.com.au, www.mushclient.com | | Top |
|
The dates and times for posts above are shown in Universal Co-ordinated Time (UTC).
To show them in your local time you can join the forum, and then set the 'time correction' field in your profile to the number of hours difference between your location and UTC time.
11,487 views.
It is now over 60 days since the last post. This thread is closed.
Refresh page
![[Go to top]](/images/gototop.gif)
top