Minetest logo

IRC log for #minetest-hub, 2017-12-04

| Channels | #minetest-hub index | Today | | Google Search | Plaintext

All times shown according to UTC.

Time Nick Message
00:02 Jordach OwO
00:02 Jordach https://jordach.net/images/kzsmrhvfgjnaipefdk.png https://jordach.net/images/qpgxzbenydzpqhjjhr.png
00:09 rubenwardy that's a really ugly random string
00:09 rubenwardy if it's random, looks like it could be finger spam
00:09 rubenwardy !math (25*2+10)^6
00:09 rubenwardy !calc (25*2+10)^6
00:10 rubenwardy !c (25*2+10)^6
00:10 MinetestBot 58
00:10 rubenwardy !c (25*2+10)**6
00:10 MinetestBot 46656000000
00:10 rubenwardy with a 6 character string, you get that many possible names
00:10 Fixer Jordach: chest with brick texture? o_0
00:11 Jordach rubenwardy, php handles that m8
00:11 rubenwardy ew
00:11 Jordach i gave it 12 chars since i'll end up killing the default of 6 chars
00:12 rubenwardy I mean, even with only 25 characters you get:
00:12 rubenwardy !c 25**6
00:12 MinetestBot 244140625
00:12 Jordach fun fact, there is a reason why those slots are limited to 3
00:13 rubenwardy https://i.rubenwardy.com/dPka4ki5nJ.jpg
00:13 rubenwardy tbh, your shorter domain name slightly makes up for the use of images/
00:13 Jordach rubenwardy, that's a symlink ;)
00:13 Jordach symlinked to a glorious 150GB LSSD
00:16 sniper338 joined #minetest-hub
00:16 sniper338 joined #minetest-hub
00:35 sniper338 joined #minetest-hub
00:36 sniper338 joined #minetest-hub
01:32 Megaf Folks, I got a fake Chinese product on eBay, it was advertised as genuine. Should I return the product and get money back and just forget about it or should I do all I can to get the seller down?
01:33 rubenwardy what was it and for how much?
01:34 Megaf MacBook Pro charger for 40 pounds.
01:34 rubenwardy that's quite a lot, I'd return it and report them
01:34 rubenwardy plus it's electronics
01:34 rubenwardy it could prove faulty and burn someone
01:34 paramat joined #minetest-hub
01:37 Calinou buying such a thing on eBay sounds risky
01:37 Megaf problem is, I will be without computer till I get a new charger
01:38 lhofhansl joined #minetest-hub
02:12 ThomasMonroe joined #minetest-hub
02:32 ThomasMonroe joined #minetest-hub
03:06 CBugDCoder joined #minetest-hub
05:41 sofar rubenwardy: am I reading this wrong, or is privilegeareas never checking player privs in it's formspec receive method?
05:41 sofar https://github.com/minetest-mods/pr​ivilegeareas/blob/701ec1f06081e6d39​8e9f873f3b894e89ae82d4f/gui.lua#L34
05:41 sofar afaic I can just send it formspec data from any player and make new areas to give me anything I'd want
05:43 sofar actually, that would crash the server
05:57 Aello joined #minetest-hub
06:40 rubenwardy joined #minetest-hub
07:05 sofar Ohhh, I thought I had almost found a giant gaping security hole in a mod...
07:06 sofar even wrote the exploit
07:06 * sofar foiled by sheer dumb luck that it isn't exploitable
07:17 nerzhul joined #minetest-hub
07:23 sofar https://i.imgur.com/3vbpzb4.png
07:23 sofar tonight's haul of security issues
07:24 sofar anyone wanting me to take a look at their mods, please ask
07:26 nerzhul sofar, heh it seems your overabuse CSM to test privileges on mods, it's nice
07:26 nerzhul CSM pentesting tool :p
07:27 sofar yeah
07:27 sofar I actually made a valid minetest packet with my lua fuzzer
07:27 sofar formspecs are easy to exploit
07:27 sofar other stuff will come next
07:28 sofar building up a library of packets, so to speak
07:28 sofar I almost thought that inventory_plus was vulnerable
07:28 sofar lol
07:41 sofar oh, found another one
07:44 sofar VanessaE: ping if you need a fix crafted for that one
07:45 sofar I wonder if tetris is exploitable, lol
07:59 sofar I'm discovering quite a lot of unpublished anti-abuse mods
09:18 tenplus1 joined #minetest-hub
09:18 tenplus1 hi folks
09:21 shivajiva Morning tenplus
09:21 tenplus1 hi shiva, how's u ?
09:22 shivajiva good thanks, usual Monday feeling aside :)
09:23 tenplus1 eheh, a garfield monday in progress :D
09:32 shivajiva just wondering what to do, think I'll add active ban caching to sban to speed up the process of rejecting a banned player attempting to join
09:33 tenplus1 sounds interesting :)
09:33 tenplus1 I had a qtel command like that which auto-teleports players from one location to spawn if they were found to be inside an area that crashes server for some reason or another
09:36 shivajiva ever get to the bottom of why certain places become crash points?
09:37 shivajiva I've heard owners mention they have had issue with a certain chunk causing crashes, never experienced it myself
09:38 tenplus1 certain nodes trying to activate say a dodgy furnace code (fixed) or sign entity (fixed) or itemframe item (fixed) or moretrees root abm (fixed)
09:38 tenplus1 only think I cant find is that damned serialize.h error that happens once in a blue moon
09:39 shivajiva talking of serialize, I added db > xban2 file for completeness
09:40 shivajiva xban2 uses a custom serialize function with tabs so it's readable
09:40 tenplus1 ooh... that'll help many servers
09:41 shivajiva hmm it's only for bailing out of sban back to xban2 but it may fix bad xban db's as a side effect
09:45 shivajiva data is parsed on import so it dumps invalid records, the export file is potentially cleaner than the import file
09:46 tenplus1 very handy, wish that sort of fallback and cleaning code was available in default :D
09:56 nerzhul joined #minetest-hub
09:57 tenplus1 hi nerzhul
09:58 nerzhul hi tenplus1
09:59 MaybeDragon joined #minetest-hub
11:10 nerzhul joined #minetest-hub
11:32 Fixer joined #minetest-hub
11:32 tenplus1 hi fixer
11:52 Fixer hi
12:07 benrob0329 tenplus1: https://youtu.be/rBCb4JLl09M
12:07 tenplus1 hi benrob
12:08 tenplus1 lol
12:16 Megaf Greetings
12:17 Megaf Hi tenplus1
12:17 tenplus1 hi Megaf
12:18 tenplus1 https://www.youtube.com/watch?v=NjuSVHwNJMk <- quite interesting
12:26 shivajiva the ice age was created by a large destruction event, the freshwater ice was the water evaporated from living beings imo. Even now 60% of that water from that event still sits frozen at the poles
12:27 tenplus1 the water technology was very impressive during that time period, even now some of it is still in use: https://en.m.wikipedia.org/wiki/Puquios
12:29 shivajiva the mahabharrat describes a war with fire and water weapons, aircraft, missiles etc. Very modern except we can't make water weapons to counteract nuclear weapons
12:30 tenplus1 if only... natural weaponry would be quite handy to have
12:32 tenplus1 ooh, devastation mod idea :) the staff of posiedon...  gotta be standing at waters edge (counts nodes, if over 1000) then spawns water_flowing block 10 high to simulate tsnunami :P
12:32 shivajiva :D
12:32 tenplus1 or the kiss of tardis which causes all grass to become snowy grass and freezes any water source :)
12:33 shivajiva 30 nodes would be more realistic
12:33 benrob0329 But water doesn't push the player 🤔
12:33 tenplus1 not yet... we NEED the player:set_player_velocity() to be a thing... I have water pushing items sofar
12:33 tenplus1 *so far
12:36 CBugDCoder joined #minetest-hub
12:37 tenplus1 hi CB
12:37 CBugDCoder hi ten
12:37 CBugDCoder and I am CalebDavis :)
12:38 tenplus1 heh, hi Caleb :P
12:38 CBugDCoder hi ten ;)
12:40 Megaf tenplus1: I will be watching that
12:40 Megaf Hey Caleb
12:40 CBugDCoder hi Megaf
12:40 tenplus1 the youtube link ?
12:46 Aerozoic joined #minetest-hub
12:47 tenplus1 hi Aerozoic
12:47 Aerozoic wazup
12:47 Jordach joined #minetest-hub
12:49 tenplus1 hi Jordach
12:50 Aerozoic Anybody know of a quick reference for removing and installing a desktop from terminal?
12:50 tenplus1 what linux you using ?
12:50 Aerozoic It's for Mint.
12:51 tenplus1 since it uses ubuntu repos installing a desktop is as easy as:   sudo apt-get install xubuntu-desktop   (for xfce) or lubuntu for lxde etc
12:51 tenplus1 mint-desktop can be removed and any removable packages could be uninstalled
12:52 Aerozoic I need the MATE desktop though.
12:52 tenplus1 ubuntu-mate
12:52 tenplus1 or mate-desktop
12:52 tenplus1 checking now
12:52 Aerozoic And i need to completely purge it before reinstalling.
12:54 tenplus1 apt-get --purge remove cinnamon-desktop-environment
12:54 tenplus1 that'll purge it
12:54 tenplus1 then   apt-get install mate-desktop    to put new one on
12:55 tenplus1 brb, shopping :P
12:55 tenplus1 left #minetest-hub
12:55 Aerozoic i never installed cinnamon. MATE is what failed so i'm just gonna purge it and reinstall, but i'm guessing this can't be done without internet?
13:07 compunerd joined #minetest-hub
13:22 tenplus1 joined #minetest-hub
13:22 Mr_Pardison joined #minetest-hub
13:22 * tenplus1 returns
13:22 tenplus1 hi Mr_Pardison
13:23 Mr_Pardison hello tenplus1
13:23 tenplus1 o/
13:23 Raven262 Hello ten
13:23 tenplus1 hi raven
13:32 ThomasMonroe joined #minetest-hub
13:32 tenplus1 hi thomas
13:32 ThomasMonroe hi tenplus1
13:34 Mr_Pardison o/ ThomasMonroe
13:34 ThomasMonroe o/ Mr_Pardison
13:34 ThomasMonroe how are things at Lag_World?
13:35 Mr_Pardison error or something like that tat I got: unable to lock the administration directory (/var/lib/dpkg), is another process using it?
13:35 Mr_Pardison idk.
13:35 Mr_Pardison Haven't been able to get on recently due to tech problems.
13:36 Mr_Pardison hopefully I can make the installation media for my laptop today.
13:36 ThomasMonroe lol ok
13:48 Jordach hrm
13:48 Jordach why can't we use formspecs for huds
13:49 Jordach because it: A) doesn't have the pixel scaling issue on windows/linux
13:49 tenplus1 would be handy, but cant it only display 1 formspec at a time
13:49 Jordach B) has a decent renderer irregardless of render size
13:50 tenplus1 also entity display on formspec
13:52 benrob0329 Replace formspecs with code based solution, make that what is used for the HUD
13:52 Jordach this is part of the reason why linux running hud mods look unusually sized
13:52 Jordach https://github.com/minetest/minetes​t/blob/master/doc/lua_api.txt#L1348
13:52 benrob0329 My question is, wtheck is different on Linux
13:52 Jordach you guessed it, that says pixels
13:52 benrob0329 Its standard OpenGL
13:52 Jordach benrob0329, connect to my server
13:52 Jordach then look at the hudclock and general UI
13:52 Jordach it doesn't fit pixel perfect
13:53 benrob0329 I have, i've seen the issue
13:53 benrob0329 My question is why
13:53 Jordach who thought scaling would work in hud mods?
13:53 Jordach especially with a PIXEL offset setting
13:53 benrob0329 That is a fair point
13:54 Jordach [15:37:40] <sfan5> >float size_factor = m_hud_scaling * porting::getDisplayDensity(); this is the offender
13:55 tenplus1 hhhhrm
13:56 Jordach https://kitsunemimi.pw/i/c2a30f175559ac81.png
13:56 Jordach here's the proof
13:56 Jordach here;s the same deal on windows x64 http://i.imgur.com/iyjgV8e.png
13:57 Mr_Pardison in the pudding?
13:57 Jordach it's pixel perfect
13:57 Jordach yet on linux, that porting::getDisplayDensity() returns more than 1
13:57 tenplus1 that shou;d be removed
13:57 Mr_Pardison is that windows vista? old school style.
13:58 Jordach that should be a pull request to fix it, tenplus1
14:00 Mr_Pardison install media is being made now.
14:01 Mr_Pardison only thing is that idk how long it's going to take.
14:01 Mr_Pardison so, I should be able to get back to my normal computer usage on or before Wednesday.
14:02 * Mr_Pardison opens a bottle of martinelli's apple cider and shares some with everyone
14:03 tenplus1 the android release of minetest still ahs the long range glitch... ppl are digging blocks 20 meters away
14:03 Mr_Pardison oh no.
14:03 Mr_Pardison so for PvP servers, that means a deadly range.
14:03 tenplus1 yup, it's a huge cheat
14:03 Jordach PvP on a phon
14:03 Jordach you must be mad
14:04 Mr_Pardison unless you use a tablet with a keyboard and mouse.,
14:04 Mr_Pardison that is what is a deadly combo.
14:04 Mr_Pardison installation media is now finished being made.
14:05 Mr_Pardison hope it works!
14:07 ThomasMonroe yeah tenplus1 it is a problem on the SkyWars server by telesight
14:07 tenplus1 I dont know if it's all android versions this happens or the bogus clients
14:08 Jordach oh no
14:08 Jordach *OH NO*
14:08 Mr_Pardison I think it might be a problem on the official one.
14:08 Jordach you know how hud offset is in pixles
14:08 * Shara thinks someone should just test
14:08 Mr_Pardison I've seen first hand what it can do.
14:08 Mr_Pardison it's horrible.
14:09 Jordach well, it's multiplied by getDisplayDensity();
14:09 * Shara remembers everyone seemed to be having trouble compiling for android
14:09 Mr_Pardison Mew hidden one.
14:09 tenplus1 hi shara
14:09 Shara Mew Mr. P.
14:09 Shara Hi Ten
14:09 * Mr_Pardison doesn't have a phone nor a keyboard and mouse that are compatible with his tablet (kindle fire)
14:09 * Shara doesn't have a phone to test on :)
14:10 Mr_Pardison My family is broke so we can't afford a phone for me but I'm happy without one.
14:11 Shara I just prefer ancient non-smart phones that I can safely drop out of upper floor windows without worrying they might break :)
14:11 Jordach https://github.com/minetest/minet​est/blob/master/src/hud.cpp#L388
14:11 Jordach here's the offending line
14:11 Shara And that only need charging less than once a week
14:12 Mr_Pardison otterbox case. the most rugged one but those things are expensive IMO
14:12 Shara I simply don't use a phone enough to justify such measures
14:13 Mr_Pardison All I really need is a computer, charger for it and wifi.
14:13 Mr_Pardison Maybe an external mouse to go with.
14:38 Jordach https://github.com/minetest/minetest/issues/6735
15:03 tenplus1 laters
15:03 tenplus1 left #minetest-hub
15:36 RobbieF joined #minetest-hub
15:38 Mr_Pardison joined #minetest-hub
16:00 IhrFussel joined #minetest-hub
16:01 IhrFussel Regarding Anroid range bug: It's the server owner's fault if they refuse to enable anticheat
16:01 IhrFussel Android*
16:01 IhrFussel Or rather if they decide to disable anticheat since it's enabled by default AFAIK
16:04 IhrFussel Anticheat will not interrupt any gameplay if you don't set the fast movement speed to some low number (default is 20)
16:08 jas_ that's heavy man
16:08 jas_ also incorrect
16:09 sniper338 joined #minetest-hub
16:09 jas_ i don't believe it's about a high or low number?  actually, i don't know but, when i sprint it's okay.  there was a patch for anticheat to honor physics override some time ago (ty smalljoker?)
16:09 jas_ but when i made that chicken feather flight thing, heh heh, it reset my position alll the time
16:10 Mr_Pardison icarus-ish thing?
16:10 jas_ m
16:10 jas_ it's  a chicken feather you upgrade with mese
16:10 jas_ it has two properties: speed and fly (gravity)
16:10 Mr_Pardison sounds interesting.
16:11 jas_ each property can be leveled up to level 3.  your player needs to be at the level you want to upgrade the feather (or tool, or armor) to
16:11 jas_ https://www.youtube.com/watch?v=8izu91iOUC0 <-- enchantment machine
16:12 jas_ https://www.youtube.com/watch?v=3VncoHJIq6o <-- chicken feather flight, causes anticheat to reset my position
16:12 jas_ (i don't think i captured a video of that ever, but i can in the future.)
16:12 jas_ i don't get a lot of company on that server, so i didn't mind to turn anticheat off.
16:12 Mr_Pardison lol I'm on the irc chat window below the game window.
16:12 jas_ : D
16:14 jas_ i don't remember how it was in icarus
16:14 jas_ are you referring to the nes game? :D
16:33 jas_ 4 1/2 hours of fire_small.ogg with random offsets: https://www.youtube.com/watch?v=PKwrFaN7wPY
16:37 IhrFussel jas_, not sure about gravity but when you set the fast movement to 3 it will reset you when walking since walking is 4 ... so at least in that regard as long as you don't use speed higher than 20 the server will not reset any players
16:39 JordachNote8 joined #minetest-hub
16:39 IhrFussel If the same applies to gravity then it may freak out at a gravity of 1+ (default is 0.9 I think?)
16:40 IhrFussel Maybe it's relevant to note that in my case the movement speed is defined in the conf file ... not sure if that makes a difference
16:43 rubenwardy sofar, lol wow
16:43 sofar hiya
16:44 sofar did you just see my ping from last night?
16:44 rubenwardy that's the first project I used formspecs in
16:44 rubenwardy yeah
16:44 sofar trust me, I have been eyeballing my own code :)
16:44 rubenwardy it's also a complete mess, which is why I haven't been bothered to maintain it
16:44 sofar I was surprised to see how carefully I implemented `warps`
16:44 sofar the reason I bumped into yours was because it's actually used on servers
16:45 rubenwardy oh really
16:45 sofar convenience of the serverlist
16:46 JordachNote8 greetings sofar
16:46 rubenwardy F*** YOU GITHUB
16:46 sofar ahaha
16:46 sofar "somebody's got the case of the mondays"
16:47 JordachNote8 wat
16:47 rubenwardy whenever I try and search lua_api.txt, ctrl+F takes a split second to appear. In that time github reads my keystrokes and does crazy stuff like opening the file to edit or going to a completely different page to "quick search"
16:47 sofar yup, I hate that too
16:48 JordachNote8 rubenwardy, my phone suggested degeneracy for your name, phone pls
16:48 rubenwardy ?
16:49 JordachNote8 i typed one thing, kb suggested something else
16:49 rubenwardy https://github.com/minetest-mods/privilegeareas/​commit/18a803c9a93af6436fff0facd46a9419405279f3
16:50 rubenwardy privilegeareas is in Old Mods, I'm surprised people find it useful and are using it
16:52 JordachNote82 joined #minetest-hub
16:52 * JordachNote82 still remembers the old c55 server where donating gave a secure area
16:53 rubenwardy lol
16:53 rubenwardy Land rush, but you have to pay real money for protection
16:53 JordachNote82 is it such a crime that i miss 20120106
16:54 JordachNote82 the best mt version
16:54 Mr_Pardison it's like giving money to a street tough who offers to "protect" your car while you're away.
16:54 Calinou JordachNote82: it also gave you a painting you could place
16:55 Calinou one painting per $ or something, IIRC
16:55 rubenwardy kinda wish that servers could do that without backlash, having cosmetic stuff like that is a good way to pay for upkeep
16:56 rubenwardy just not loot boxes
16:56 sofar rubenwardy: I scored 5 formspec security holes last night :)
16:56 sofar do I get a reward?
16:56 rubenwardy lol
16:56 rubenwardy how many were privilege escalation or remote code execution?
16:56 rubenwardy apart from the almost one
16:57 sofar well the worst one was a hard server crash
16:57 sofar none of them cause any real pain, they just allow the player to change stuff inside the world
16:58 sofar e.g. homedecor books that are those placed nodes can be overwritten
16:59 sofar kudos for the fast fix
17:00 sofar you're the first one
17:00 sofar afk a bit
17:16 Mr_Pardison joined #minetest-hub
17:24 Darcidride_ joined #minetest-hub
17:40 jas_ IhrFussel: yeah i'm not so sure either.  it's definitely interesting though.  i was surprised when all i'd done was adjusted gravity and caught anticheat on an upward thrust heh
17:40 jas_ maybe i should make a bug report heh, i dk tho
17:41 jas_ maybe smalljoker's patch only accounted for `speed' physics override, not gravity.  wonder about `jump'
17:42 jas_ there's new_move, sneak_glitch, sneak as well for 6?
17:42 jas_ mm physics
17:43 Mr-Pardison is there a way to use pistons to push a cart out and move it forward so that it would propel the cart forward?
17:44 jas_ object:punch()?  oh the cart doesn't move on punch
17:44 jas_ be neat if it did!
17:46 Mr-Pardison I ask b/c I wanted to see if I could make something that when activated shoves a cart and then propels it forward so the user  doesn't have to manually punch the cart to move it.
17:51 nerzhul joined #minetest-hub
17:54 JordachNote8 joined #minetest-hub
17:55 JordachNote8 I have wifi 32m from my house, wut
18:04 jas_ Mr-Pardison: i wonder if there's not a function in carts mod that allows you to move it
18:21 nerzhul nice, niantic now uses openstreet map instead of gmaps https://www.polygon.com/2017/12/4/167257​48/pokemon-go-map-changes-openstreetmap
18:25 Krock joined #minetest-hub
18:35 nerzhul hi KaadmY
18:35 nerzhul Krock, *
18:39 Mr_Pardison joined #minetest-hub
18:43 Darcidride joined #minetest-hub
18:49 Krock hi nerzhul
18:49 Krock hi Mr-Pardison
18:50 Mr-Pardison greeting Krock
19:12 zorman2000 joined #minetest-hub
19:15 zorman2000 Hi
19:15 Mr-Pardison \o
19:16 zorman2000 Can anyone please tell me what am I doing wrong here? https://paste.ubuntu.com/26113872/
19:16 zorman2000 Line 21 to be specific
19:16 zorman2000 For some reason, this code doesn't add anything to the inventory
19:22 sofar you need to return an itemstack
19:23 zorman2000 Hmm even if I'm not modifying that itemstack, I still need to return it at the end of the 'on_rightclick' ?
19:23 Mr_Pardison joined #minetest-hub
19:23 sofar all those interaction methods require that you return an itemstack
19:24 sofar not sure that that is the problem, though
19:24 zorman2000 Ok, let me see...
19:25 zorman2000 Ok, adding 'return itemstack' helps a little bit. It sometimes add the item, sometimes it doesn't
19:25 zorman2000 The inventory is definetely not full
19:27 CWz joined #minetest-hub
19:28 zorman2000 Would I be better off using the node metadata inventory and transferring items between inventories?
19:28 zorman2000 Rather than re-creating the item from itemstring ?
19:30 sofar maybe this helps:
19:30 sofar https://github.com/minetest-mods​/frame/blob/master/init.lua#L49
19:30 sofar code I wrote that should work
19:32 sofar there's some similar code in https://github.com/minetest-mods/flowerpot
19:37 zorman2000 Ok, I will take a look at this, thanks sofar
19:38 bigfoot547 ShadowNinja: U around?
19:48 bigfoot547 joined #minetest-hub
20:22 MinetestBot joined #minetest-hub
20:37 Fixer heh https://github.com/EdenGame/eden
20:37 Fixer busted
20:46 atorian37 joined #minetest-hub
20:46 MaybeDragon joined #minetest-hub
20:49 Fixer or basted
20:51 Mr-Pardison if it uses lua, then why is it 81% C++ and 19% CMake?
20:53 Fixer it is pretty much empty right now
20:58 Fixer JUST ONE MORE AND YOU WILL BE HAPPY
21:05 IhrFussel Objects collide with solid nodes by default right?
21:08 RobbieF left #minetest-hub
21:09 Mr_Pardison joined #minetest-hub
21:10 Megaf Greetings folks. How are we?
21:10 Mr_Pardison Excited that I finally got past a problem I was having and made my own solution.
21:11 Mr_Pardison Made Fedora install media today so now I can install it on my computer at home tongiht.
21:11 Mr_Pardison *tonight
21:16 Megaf Congrats Mr_Pardison
21:16 Megaf I'm reinstalling Mac OS X here on an old iMac G5
21:16 Mr_Pardison By tomorrow or Wednesday, I should be back to my regular MT schedule.
21:17 Megaf It's harddrive died, so I got a replacement and now I'm installing the OS again
21:17 Mr_Pardison did you get the data from the old drive?
21:18 Megaf Impossible =/
21:18 Megaf around a minute or two after the hard drive is powered on it begins to click
21:18 Megaf but thankfully there was not much there
21:18 Mr_Pardison try booting into a different OS.
21:18 Mr_Pardison Transfer the data to an external drive if you have one.
21:19 Megaf not necessary
21:19 Megaf there isnt anything there, really
21:21 Mr_Pardison I have the big book of hacks open next to me right now and I'm looking at item #140: Set up a remote pet feeder
21:21 Mr_Pardison I was thinking of making that since my mom works at a school and they have fish there that need to be fed.
21:21 Megaf man, I want an iMac
21:22 Mr_Pardison And I want a good gaming computer.
21:22 * Jordach has both
21:22 Jordach Hackintosh running RX 480
21:22 Megaf iMac Pro will be nuts
21:22 Jordach pfft
21:22 Megaf dua Xeon CPUs with nvidia quadro
21:22 Mr_Pardison I'm broke (and poor!) so I can't afford a mac nor do I want one.
21:23 Jordach >quadro
21:23 Jordach nice meme
21:23 Megaf or, Vega will be available too
21:23 Megaf better?
21:23 Jordach Radeon 7970 has better f64 performance than that
21:23 Megaf actually I dont know what Im talking about let me check
21:23 Jordach no really, AMD gpus are excellent at dealing with compute
21:24 Jordach why'd you think there are mining variants of RX 580s
21:24 Megaf https://www.apple.com/imac-pro/
21:24 Jordach >Radeon Pro Vega 56
21:24 Jordach :thumbs_up:
21:24 Megaf Jordach: so, iMac Pro, up to 128GB of RAM.
21:24 Megaf and
21:24 Megaf Radeon Pro Vega 56 graphics processor with 8GB of HBM2 memory
21:24 Megaf Configurable to Radeon Pro Vega 64 graphics processor with 16GB of HBM2 memory
21:25 Megaf up to 16 GB of RAM in your GPU
21:25 Megaf 10 Gb ethernet
21:25 Megaf and 18 core
21:25 Mr_Pardison I'm debating that when I get a new computer whether it should be intel with NVIDIA or AMD.
21:25 Megaf Jordach: good enough?
21:25 Megaf Mr_Pardison: for Linux, AMD all the way
21:26 Mr_Pardison 64-bit of course as it is better and you can run more programs on it.
21:26 jas_ https://imgur.com/a/MhCW5 <-- "main" is 8, "craft" is 81... gonna make it a sequencer, or try.
21:26 Mr_Pardison I will have to do so price comparisons as well since I don't have money to spend on a lot of thigns (I actually don't have any money at all since what I do have is going towards college)
21:27 jas_ (g'night #minetest)
21:27 Mr_Pardison that's not a production quality image.
21:27 Mr_Pardison but it works for it's purpose.
21:27 Mr_Pardison *shrugs*
21:28 Megaf Jordach: last time I made a Hacintosh it stopped working in the first Apple update
21:28 Megaf it was iDeneb
21:30 Megaf Jordach: whick OS are you using in your Hacintosh?
22:03 CBugDCoder joined #minetest-hub
22:10 Mr-Pardison l8r peeps.
22:40 Jordach https://jordach.net/images/yjnetyteczvstooipn.png :thinking:
22:47 sofar what did I miss?
22:52 benrob0329 sofar: oh nothing too important, the world ended and Microsoft bought Minetest
22:54 sofar hmm, not even some good security vulnerabilities?
22:55 sofar I found 5 last night, in about an hour or two time
22:55 sofar weird enough, nobody asked me to look at their code yet
22:56 benrob0329 sofar: right now I'm working on Advent of Code 2017
22:56 Shara sofar: not sure my mods have anything that could open such holes, but feel free to dig.
22:56 sofar well easiest to see is formspec handling code
22:57 sofar those are often the simplest to exploit
22:57 Shara Only mod I did much with formspecs in is warp_potions
22:57 benrob0329 I mean, you can dig through my mod (I've only written one) if you want
22:57 Shara But I think the only thing that was ever possible there was item duping, and we seem to have hammered that out
22:57 benrob0329 I'm not against improvements of any kind
22:58 Shara same :)
22:58 benrob0329 I would comment about the AoC puzzle, but i wouldn
22:58 benrob0329 *wouldn't want to spoil anything
23:00 atorian37 joined #minetest-hub
23:01 sofar Shara: looking at warp_potions... you have 8 numbered potions to make you go to 8 different locations?
23:05 sofar Shara: don't see any holes in it... really
23:05 sofar at least the formspec handling, everything ends up being properly checked
23:06 Shara Yes, you get a max of 8 locations you can safe
23:06 Shara And that's good to know - my published mods tend to get tested pretty hard, but always glad of an experienced set of eyes on them
23:07 Jordach sofar, you'll scream at wardrobe :^)
23:07 Shara save*
23:07 sofar just from an aestetic perspective, yes
23:07 sofar :P
23:07 Shara :D
23:07 Jordach that thing is horrible and will be redone entirely
23:07 sofar murder it with fire
23:08 Jordach the core texture application system will be kept
23:08 Jordach but new nodes for different parts of the body will be added
23:08 sofar look, I just want to see your formspec code :P
23:08 * sofar giggles
23:08 Jordach https://github.com/Jordach/Solar_Plains/​blob/master/mods/wardrobe/init.lua#L284 welcome to hell
23:09 Shara sofar, if you want painful formspec stuff, poke the mainmenu :P
23:09 benrob0329 The only thing I can think of in the tardis mod is the fact that I need to add pos checking (for protection and too make fire its not a solid node)
23:09 benrob0329 ^^
23:09 Shara it might not lead to security holes, but it does lead to weird twisty code-mess :D
23:09 sofar Shara: yes, but that's not remotely exploitable... so, no fun
23:09 Shara Hehehe
23:10 Shara I once found a mistake in a mod that let me escalate to full privs on a server :)
23:10 sofar hmmm let's see what this tardis mod can do
23:10 * benrob0329 goes back to getting frustrated at AoC
23:10 benrob0329 oh dear
23:10 benrob0329 :P
23:10 Shara That was a fun night. :P
23:10 * Jordach solved fizzbuzz in three lines of Lua
23:10 sofar benrob0329: is the tardis a freely obtainable thing?
23:10 benrob0329 sofar: not atm
23:10 benrob0329 needs to be given
23:11 benrob0329 will be made crafteble once its slightly less OP
23:11 sofar wait what, you register_on_player_receive_fields() INSIDE a public API function?
23:11 Jordach "slightly less OP"
23:11 sofar how does that work?
23:11 sofar it'll get registered hundreds of times?
23:12 benrob0329 so thats what that bug was...
23:12 * Jordach laighs
23:12 sofar https://github.com/benrob0329/tard​is/blob/871b004fab0b648a97c02deadf​5e566414fec03a/functions.lua#L181
23:12 sofar dis gunna be phun!
23:13 benrob0329 I wondered why the error message was prnted multiple times
23:13 sofar benrob0329: please, luacheck
23:13 benrob0329 I do
23:13 Jordach pfft luacheck is for suckers
23:13 sofar it will warn you about `pos` shadowing
23:13 sofar oh, no, you don't even local pos
23:13 Jordach table.copy(pos) my friend
23:13 benrob0329 Jordach: or people who dont trust themselves to write good code
23:13 * sofar sucks all day long
23:14 benrob0329 local pos?
23:14 Jordach benrob0329, https://i.imgur.com/rhTdS83.png
23:14 benrob0329 Jordach: <insert lifting knight meme here>
23:15 Jordach \[T
23:15 Jordach reeeeeee
23:15 Jordach \[T]/
23:15 benrob0329 o look my phone
23:15 benrob0329 is dead
23:15 Jordach do you even hoist, bro
23:15 sofar else return false
23:15 sofar haha
23:15 benrob0329 dost though even hoist?
23:15 sofar there's like 5 errors in 7 lines of formspec code
23:16 sofar 5/7 would code again
23:16 sofar >=^D
23:16 benrob0329 LOL
23:16 * Jordach dies laughing
23:16 Jordach that's a top tier reddit meme, friendo
23:16 benrob0329 I never said I was a good modder
23:16 Jordach then there's me porting 2013 era MT mods
23:17 sofar ohhh, I found an exploit
23:17 benrob0329 That mod has been touched by two people, both questionable coders
23:17 benrob0329 also my phone is being good for acting like a hotspot at 1%
23:17 sofar this mod would allow me to mercilessly spam another player
23:17 sofar tardis spam
23:17 benrob0329 oh?
23:18 sofar want to know how?
23:19 sofar actually
23:19 sofar it gets even better
23:19 sofar it would allow me to mercilessly spam ALL players that have used a tardis
23:20 Jordach benrob0329, https://33.media.tumblr.com/a625dbc5dfe73c495b56​953629584b8e/tumblr_n4pgy4kk1z1tv612co2_400.gif
23:20 sofar oh, and possibly
23:20 sofar it would allow me to manipulate *everyones* tardises
23:20 sofar tardii?
23:21 Shara tardises :P
23:21 sofar I guess benrob0329 got disconnected already
23:22 Shara Yay matrix?
23:22 sofar yeah this is a potentially fun exploit
23:22 sofar *possibly* you can make everyone tardis out to a lava lake
23:22 sofar I have to check how the code actually works, though
23:22 Shara Ugh, you are making me want to dig into the code myself
23:22 sofar I can explain
23:22 Aerozoic joined #minetest-hub
23:23 sofar if you want
23:23 Shara Trying to resist MT mods and... MT almost everything this week though
23:23 sofar k so open functions.lua in the tardis mod
23:23 Jordach me_irl https://media.giphy.com/med​ia/1pw5Hn77ylYxW/giphy.gif
23:23 Shara Would be interested. :)
23:23 sofar so there's tardis.show_nav_formspec
23:23 Shara But is the mod used on any servers yet?
23:23 sofar which should show you the target selection form
23:23 Shara If so, maybe better not to say in public
23:24 sofar the bug needs a modified client
23:24 Shara Ahh, okay
23:24 sofar so exploits are not readily available
23:24 sofar anyway so everyone who has a tardis and that opens the formspec
23:25 sofar will cause a call to register_on_player_receive_fields()
23:25 sofar but, in that registration, the player_name and owner_name are hardcoded due to the inclusion in the show_nav_formspec
23:25 sofar so if 3 people open the formspec, 3 formspec handler functions get called
23:26 sofar that means that when someone *returns* the formspec data, it gets *parsed* 3x
23:26 sofar in fact, now that I think of it, you don't even need a modified client
23:26 Jordach *quake holy shit*
23:26 sofar you'd need a tardis unit
23:26 sofar however, those are restricted, as benrob0329 says
23:27 sofar so then, if you have a modified client
23:27 sofar you can send fake formspec data, and that will cause all tardiusii to have their set_nav() called
23:28 sofar or, just pass `nil` as x/y/z and all players will receive an error message in chat
23:28 sofar so yeah, there's a lot of errors in here
23:28 sofar nothing really crashy I think, but certainly bad
23:30 Shara Hopefully it's all things he can fix
23:31 sofar yes, fairly trivial even
23:31 sofar pull out the reg() of the function
23:32 sofar then do proper validation, e.g. pos_meta:get_string(owner_name) == formspec sender
23:32 sofar will already solve most of it
23:33 * Shara suddenly wants to work on a mod
23:33 Shara See what you've done, sofar!
23:34 sofar naw, just hack some
23:34 Shara I have one I'd like to release by christmas... Mostly just need textures.
23:34 Shara I hate doing textures.
23:35 Shara It would add the shadow lands biome I've been working on :)
23:35 Jordach https://jordach.net/images/zxbedjvbhyonwbitwp.png what does the hi-vis striped version do that the unstriped one doesn't?
23:36 sofar I filed an issue on his mod
23:36 Shara :)
23:37 sofar Jordach: it has nice metal nipples at the bottom?
23:37 * benrob0329 is back
23:37 Jordach sofar, why on earth would there be a warning marker the size of a 18x18px nodebox
23:37 Jordach and what does that have to do with automated movers and storage chests
23:38 sofar Jordach: I generally don't answer rhetorical questions.
23:38 Jordach uhoh
23:38 Jordach Torvalds just had enough of printers
23:38 Jordach (pesconver for Brother printers)
23:38 Calinou >18× >HD
23:39 Jordach https://github.com/Jordach/Solar_Plains/comm​it/08118a8b7a17e66d413c133f31b78010accabc26
23:40 benrob0329 sofar: phone hotspot died, someone else in the car has one though
23:40 sofar for someone living in a car, your code is really good
23:40 benrob0329 heh
23:42 benrob0329 I'm surprised you didn't even mention the fact that the rematerialization sequence is total spaghetti
23:42 benrob0329 well, not total but it needs to be streamlined
23:42 sofar I'm not interested per se to make it look nice
23:42 Fixer Jordach: earthquake?
23:42 sofar just in making it more secure
23:42 Jordach Fixer, nope
23:43 benrob0329 sofar: I'll fix that with the other update I have in local relating to the formspec
23:44 sofar as soon as you take the registration() call out of the other function, the other problems will appear because lua will scream at you
23:44 benrob0329 alright
23:44 sofar then it should be apparent that you need to validate `pos` is owned by the formspec sender
23:45 sofar but you may have to keep some sort of context[] table around to put the tardis pos in for each player that opens the formspec
23:45 Fixer jas_: "<-- chicken feather flight, causes anticheat to reset my position" is not you can set up exception so anticheat knows about it, or i'm wrong?
23:46 benrob0329 sofar: remember, that formspec is only shown when a player right clicks on a node in the tardis
23:46 benrob0329 not by a command
23:47 benrob0329 *chatcommand
23:47 rubenwardy benrob0329, clients can cause submissions themself
23:47 sofar benrob0329: that's almost entirely irrelevant
23:47 rubenwardy so it doesn't matter if the server does show_formspec etc
23:47 sofar I can cause the formspec code to be executed with data I provide
23:47 sofar even if I don't have a tardis
23:47 benrob0329 clients can call arbitrary gui code... :^)
23:48 rubenwardy yes
23:48 rubenwardy like in HTML/HTTP
23:48 benrob0329 :^^)))))
23:48 sofar clients can pretend they were shown a formspec
23:48 sofar I have the actual code to do this
23:48 rubenwardy anything in fields or formname can be posted or modified by clients
23:48 benrob0329 right, this is going to be fun
23:49 sofar Jordach: wardrobe allows any player to modify the dummy, I think
23:49 Jordach it does
23:49 Jordach just punch it to copy your table into the node
23:49 sofar well so other players could modify it without punching
23:49 Jordach i do intend to make that on right click
23:50 sofar you don't check that formspec data comes from players that have punched it, essentially
23:51 sofar beds formspec doesn't check a player is in a bed either
23:52 sofar but, no real issues I think
23:52 Jordach sofar, other players can't use the bed at the same time
23:52 Jordach there, wardrobe now also updates on right click
23:52 Jordach so no shenanigans
23:53 sofar oh, players could get the bed formspec to show even if they are not in a bed
23:54 Jordach formspec yes, but right clicking is needed to sleep
23:54 Jordach and it's just a chatbox taped to a formspec
23:54 Fixer sofar: is this useful? https://wiki.minetest.net/Mods/b​asic_robot_csm#Example_programs
23:55 sofar Fixer: no, entirely useless for the type of stuff I'm looking at
23:55 benrob0329 sofar: how does it send all tardises to those coords?
23:56 Jordach sofar, this should give protection,
23:56 Jordach if formname ~= "beds_ui" and player_sleeping[player:get_player_name()] = true then return end
23:56 sofar return true end
23:56 sofar for safety
23:56 Jordach done that
23:56 sofar well no
23:56 sofar if formname ~= ... then return false end
23:56 Jordach you can't get to that formspec without sleeping otherwise
23:56 benrob0329 also, owner_name is provided by the function, not the formspec
23:56 sofar if .... sleeping then return true end
23:57 sofar Jordach: I can get to it... with my modified client
23:57 Jordach if formname ~= "beds_ui" and player_sleeping[player:get_player_name()] == true then return true end
23:57 Jordach that should fix it
23:58 Jordach because there is no other way to get access to player_sleeping[player_name] otherwise
23:59 sofar yes, that's the solution most of the times

| Channels | #minetest-hub index | Today | | Google Search | Plaintext