Security Flaws in RypNet

Security Flaws in RypNet

An idea for the development of ComputerCraft.

By: Sledger721

        With my recent work developing Rypnet (RN), I've found quite a high amount of security flaws. I've never, in all of my time with ComputerCraft seen a secure network, and this surely doesn't make one either, but just in-case someone needs these (for good or bad), here is a list of as many security flaws as I could think of.

        Security Flaw #1, Host Theft: Stealing Sites. Lets say that your buddy runs a pretty nice site with good amounts of traffic and influence, you can run a series of $RIP commands to get copies of all of his files, and then $REGISTER the url to your own ID.

        Security Flaw #2, Anonymous Deletion: Any site can be deleted, by anyone with: $DELETE.

        Security Flaw #3, DS Overflow: The DS is the Data Stack, and to overflow it is to have it perform so many table operations that it almost performs a DDoS on the server. It will also flood any attempts at a $GET from anyone.

        Security Flaw #4, Foreign File Placement: The $PUT command is extremely dangerous. The fact that someone can place a file in there, then place another one so that it is ran means that your computer is essentially a remote control. They could insert false data, or mal-ware to the computer. My original idea was that someone could easily launch a fork-bomb in there, a self-replicating file. It would fill up the host's HDD within seconds.

        Solution to Every Issue: Just create an admin list and only let those on your admin list issue commands. And don't put shadier people on it, be strict. It solves every issue.

        Thanks for reading my blog :). Please use these for the right reasons.

 - Sledger721