Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/cao-awa/modmdo

a fabric mod
https://github.com/cao-awa/modmdo

Last synced: 4 days ago
JSON representation

a fabric mod

Host: GitHub
URL: https://github.com/cao-awa/modmdo
Owner: cao-awa
License: gpl-3.0
Created: 2021-11-28T23:07:51.000Z (almost 3 years ago)
Default Branch: main
Last Pushed: 2023-05-30T09:20:48.000Z (over 1 year ago)
Last Synced: 2023-05-30T10:26:01.870Z (over 1 year ago)
Language: Java
Size: 4.13 MB
Stars: 6
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # ModMdo

A fabric mod for secure minecraft server.

## Command

Enable ModMdo whitelist:

```/modmdo useModMdoWhitelist enable ```

Give whitelist to a player:

```/temporary whitelist add PlayerName ```

## Timed out

If player are not join to server before timed out(usually is 5 minutes),

This player will not be approved by ModMdo, need a temporary whitelist again. 

## Build

ModMdo need environment: ``` Fabric ``` & ``` Fabric API ``` & ``` Java ```.




Before building, use git clone or download zip to completely download a branch.




Build project with gradle command:

``` ./gradlew clean build ```

Or use intellij idea gradle tools.




Build jar with gradle command:

``` ./gradlew clean remapJar ```

## How to secure

### Identifier

ModMdo use "pre shared" to exchange identifier to server.

Server only store identifier when first join, it is unable to be overwrites.

This identifier will be check when ModMdo requesting once login, fully equals then mean success of checking.\




The identifier size is 4096 bytes, was creates 4096^91 possibilities, impossible to try all possibilities.

### Private key

Let server store a encrypted data, for futures verify.\




ModMdo will send key to decrypt when requesting login, server should not store it.

Server decrypted data, separate out identifier, and equals to current recived identifier then mean success to verify.

### Sha

The server should store the identifier using Sha3-512 hash.

And client should sending source identifier, let server to calculate hash, ensure this identifier are not leaking from the server database.

Verify data should be hashed, not source identifier, for faster verifing.\




This feature let identifier unable to use when database give away.

### Other

Server will not send these data to other ModMdo client, includes your client.

The database leaking is meaningless, can be ignored.

### MITM

Preparing to use security handshake by Kalmia, pre share an EC-384 public key, and server saving the private key, middle attacker is unable to decrypt any informations.