On Tue, Mar 15, 2016 at 3:04 PM, Kamil Cholewiński <harry6...@gmail.com> wrote: > I didn't suggest it to be enabled by default. Administrator's choice. > Users can spawn private instances. No more dangerous than installing > openarena-server from ports. > > Not a score daemon but a game server. If it's a simple daemon keeping > scores, it couldn't stop users from submitting any score they please and > thus cheating.
How is a game server better security (or better anything) than setgid for these games? In my opinion: You'd basically have to rewrite everything from scratch to turn them into game servers. And, ok, that might make a fun project for someone with an MVC bent and an intense interest in game archeology, but the development/debugging issues here are daunting (and offer lots of potential for security holes). Meanwhile, if you trim that back to just a score server, you need to create a networked equivalent of setgid - maybe not a bad project in itself, but more opportunity for flaws. But maybe you have some working code which shows otherwise? (Have you you looked at how these games were implemented?) Thanks, -- Raul
