Tool for developers, mini whitelist for development servers
-
3 Attempts
-
Login with time interval
-
Login with password
-
Change Password in config file
Command: pass (password)
Check it out:
2 Likes
maybe a whitelist would be more effective?
It could be an option, this is just an alternative method for it
1 Like
isn’t it safer to use adaptive cards?
Just a tip: Use GetPasswordHash and VerifyPasswordHash for the password…
Now its just, simple said; someone could ‘dump’ the server and see the password as plain text…
You can add a command like /createpassword [password] (with (ace) permission, of course) that uses the GetPasswordHash native with the [password] argument, print it out and you type it over in the config. (or even add some HTML and JavaScript so it copies it to your clipboard 
)
Its simple, and more secure that way againts dumpers…
And if you want it to make it even more secure, you can always check out Adaptive Cards! This way the player doesn’t even get to connect to the server, unless you say so.
6 Likes
preview?
This is exploitable, if someone dumps your server they will know the password.