4 replies to this topic

[ambershee]

Ok guys, here's the jist of it. We're looking to build online statistics system, a web page that can be searched and sorted and stores a few vital statistics. These statistics are to be sent from a player machine to the system, and received by what would most likely be a PHP back-end, before the sorting and being stashed in the database. We have someone who can program such a back-end relatively quickly.

Of course, there are a lot of security issues. We need to use some sort of verification system, wherein perhaps the player may register a user name and password on the site before being able to post statistics. The interface for this can be in the game itself; but it can also be included on the website. It may also be prudent to use some form of low-level encryption.

I'm hoping this will be possible.

First things first, the programmers who are set to work on the back-end will need Project team access to view this forum and thread;
http://forums.revora...?showuser=14399
http://forums.revora...p?showuser=3576

And the next of course, is working out the specifics. This is mostly not my field, so it's these guys you're going to mostly need to be talking to.

Thanks!

Luke

[Torn]

Is this supposed to be here?

[ambershee]

Yes. Given that the topic has a lot to do with web-security issues (sending data from a player machine directly to the SL website), it would be pretty irresponsible to go ahead without first discussing any of it with the server admin.

[Mastermind]

As long as you aren't executing anything they send server side (putting it in a DB is fine), there shouldn't be an issue. As for verifying the data as legitimate, you'll probably want to use some sort of encryption, probably a public key system. I don't really have much to recommend beyond that, I haven't thought about doing something like this much at all.

[ambershee]

Good to know it doesn't necessarily pose much risk.