Policy on proof of concept exploits
Posted: Tue Aug 27, 2024 17:50
I noticed that the rules of this community prohibit posting of "cheats." However, I am curious on the policy of research and educational focused focused exploits. I am looking to write some exploits to demonstrate some of the potential security issues. I am mostly interested in man in the middle attacks but I will likely also look for ways to attack a public facing server. Since Minetest seems to lack SSL I think it will be a lower hanging fruit to attack. My hope is to come up with an attack and then find fixes to patch security issues.
I absolutely realize that this could end up being used to attack public servers and to cause harm. My intention is to create awareness and to educate myself as well as others. I am posting this in order to get some feedback on my idea. I'd rather not create to much surprise.
I absolutely realize that this could end up being used to attack public servers and to cause harm. My intention is to create awareness and to educate myself as well as others. I am posting this in order to get some feedback on my idea. I'd rather not create to much surprise.