Pages:
Author

Topic: Can you hack my game? - page 2. (Read 1907 times)

legendary
Activity: 1792
Merit: 1008
/dev/null
August 10, 2013, 10:19:39 AM
#7
setup SSL Wink self-signed is perfect, just post the hashes here and optionally GPG sign it Smiley
Or you could buy a 5$ SSL cert on namecheap with bitcoins Wink

Or are you referring to a downloadable version?
i trust a self-signed more than a bought one, as self-signed only someone that hacks him can make fake certs, if you buy it, tonfs of organizations + ppls can create fake certs...

Doesn't that mean users will get a warning untrusted certificate when they visit the site?
Are cheap SSL's really risky?
yes they will get a warning. no matter how much you pay for your SSL cert, its still vulnerable.
the SSL system is pretty broken @ the trust part. currently SSL is mostly a scam to make tons of $$$ while serving a broken system.
in case your interested, check this out: https://www.youtube.com/watch?v=Z7Wl2FW2TcA
newbie
Activity: 28
Merit: 0
August 10, 2013, 10:16:38 AM
#6
setup SSL Wink self-signed is perfect, just post the hashes here and optionally GPG sign it Smiley
Or you could buy a 5$ SSL cert on namecheap with bitcoins Wink

Or are you referring to a downloadable version?
i trust a self-signed more than a bought one, as self-signed only someone that hacks him can make fake certs, if you buy it, tonfs of organizations + ppls can create fake certs...

Doesn't that mean users will get a warning untrusted certificate when they visit the site?
Are cheap SSL's really risky?
newbie
Activity: 9
Merit: 0
August 10, 2013, 08:57:26 AM
#5
setup SSL Wink self-signed is perfect, just post the hashes here and optionally GPG sign it Smiley

AHA nothing more secure than self-signed Grin
legendary
Activity: 1792
Merit: 1008
/dev/null
August 10, 2013, 04:53:43 AM
#4
setup SSL Wink self-signed is perfect, just post the hashes here and optionally GPG sign it Smiley
Or you could buy a 5$ SSL cert on namecheap with bitcoins Wink

Or are you referring to a downloadable version?
i trust a self-signed more than a bought one, as self-signed only someone that hacks him can make fake certs, if you buy it, tonfs of organizations + ppls can create fake certs...
legendary
Activity: 1442
Merit: 1005
August 10, 2013, 04:34:18 AM
#3
setup SSL Wink self-signed is perfect, just post the hashes here and optionally GPG sign it Smiley
Or you could buy a 5$ SSL cert on namecheap with bitcoins Wink

Or are you referring to a downloadable version?
legendary
Activity: 1792
Merit: 1008
/dev/null
August 10, 2013, 04:28:38 AM
#2
setup SSL Wink self-signed is perfect, just post the hashes here and optionally GPG sign it Smiley
newbie
Activity: 28
Merit: 0
August 09, 2013, 11:41:26 PM
#1
I've spent the last month developing a bitcoin tower defense game in html5/js/node.js..
Essentially you play 1v1 with some other player for a wager (or free).
It's currently running on the testnet bitcoins.. you can get some free testcoins from one of the faucets (link in /account page)

Right now everything appears to run smoothly, but I know there's probably something I have overseen.
If anyone has any interest in flexing their hacker muscles, please HACK MY GAME. I want to be convinced that the service is safe for use with real BTC. I don't have any prize money right now, but I'll be sure to reward you for any found exploits!

So far I've gotten some great feedback from bitcoin testers from /r/bitcoin regarding this project. I am pleased how many people were excited about it. It was quite unstable at that point, with xss issues, frequent crashes, etc. It's been quite battle-hardened now.

For those of you who have played it earlier, there have been a few updates:

- Games get saved to database and persist in case of server crash or update. Upon an update/reset, all active games get paused.
- Sessions persist so crashes are virtually unnoticeable.

# of games is unlimited right now, I'm trying to see how many games can be persisted at at time.

LINK: http://www.bitstrat.com

Any advice/feedback/questions welcome!
Pages:
Jump to: