[Security Bulletin] Do not test/run op gain exploit programs!

Just about everything is "Hack" or 'editable' in some way, that's how we get mods. But its how people today are using them. I mean luring people to steal their info, and then use it against them? I don't see how you get joy or don't feel bad about that, the bad area of the minecraft community really IS bad.

It's not just Minecraft. Phishing (that's the real name for it) exists everywhere. It's like domain names like faceboook.com being registered that pretend to be Facebook so you accidentally log in to it and they have your account. It happens a lot actually.

I know, and its sorta sad that people even attempt these things, it reminds me of people being rick-rolled on youtube. Looking for a video by tehnipp1n and see a video similar by tehnippin and get tricked. I dont see why people enjoy doing these things

The best one I ever saw was rnyspace.com. Bit off-topic but it impressed my 12 year old self

Sadly sir you are wrong I was hacked.

IP BANNING IS USELESS!
How many times must I say this?? 99% of the time the person you IP ban will have a dynamic IP address, which means it is simply a matter of unplugging the router and restarting it so that there ISP automatically gives them a new IP. Oh and then there IP maybe allocated to a legit player (but that is very unlikely).
Whether they have the IQ to do this is a good point thou.

Also as for MCBans I personally think if your to lazy to manage your own ban list then you shouldn't be running a server.

actually this can happen one of my dumb friends did it he was de-oped and the server is running in online mode and he oped himself so either theres a hidden bug in bukkit or a plugin is screwed up so you tell me that its not true and PROVE it else it is true. nuff said

as for the MCBans i think you sir are correct

He probably knew your password.

I don't know if this has been discussed here, but how about http://forums.mcbans.com/topic/490-minecraft-security-update ?

ah, I didn't see the original post... the one from MCBans originates a while ago, thus my confusion, sry

Yeah, that's true. I like the new account migration though, that's a step in the right direction

It's a temporary fix, All they have done it change all of the usernames. The problem of people using alt accounts will come back once the people doing the cracking change their strategy to find emails and crack based on those.

Thanks for the info now i know that it wont work because my friend was trying to do that and he got a virus!

who reads the adds that come out of that???? i think i am smart to see the hack,

you can't, it is in the vanilla it is in bukkit AND most people use that, and some don't have plugins w/ permissions so.......... you can't.

It's pretty easy to write a Bukkit plugin that removes the /op command.

Nifty teapot analogy / theory.

Bukkit can remove it if they want to, and besides, Bukkit technically has permissions built it, just they aren't very good.

kk, i think the people who add the plugin that lets others to be OP, without using console is dum... wether they know it or not. and to TnT, he is right.

Sorry, that was not worded the best way, I meant that it is impractical for server owners to use the default permissions.yml file without a plugin that allows for groups and other options.

what is the premissions.yml for?

Impractical? My permission plugin doesn't even save runtime changes I've made to permissions. No groups, all files hand edited. That suits some of us just fine.

Then.. your permissions plugin is terrible? And anyway, how many people are on your server? I mean, look at a server like Super-Earth (thousands of players), if they had to write out all players permissions by hand, how long would it take them? And they use prefixes, which Bukkit doesn't support in permissions.yml by default.

People that run very small servers that have the time to write out all the permissions separately for each player and don't need prefixes or suffixes.

I wrote the permissions plugin for my personal server which consists of approximately 4 people on at a time max. It's a perfectly practical plugin for MY server. I was arguing your application of "impractical" to all servers.

ok, i will have to do that... LOL