As with most things editor related, a lot of stuff on the internet from 2010 and 2011 is out of date. I wanted to ask the current editor community what the situation is with secure bank files nowadays? I see Blizzard implemented their own signature, is that enough to rely on or should I double it up and combine that with something like Starcode?
Or is this all still pointless because of things like unlocking maps (is this still possible)?
I see Blizzard implemented their own signature, is that enough to rely on or should I double it up and combine that with something like Starcode?
As far as I know the bank signature was already hacked successfully. I cant provide any sources though. Personally I would always pair the bank signature with another encryption algorythm like Starcode (if you use Starcode, make sure to use a custom encryption alphabet and a long password) or using your own encryption algorythms.
Or is this all still pointless because of things like unlocking maps (is this still possible)?
This is pretty much the problem. At the moment banks cant be secure because the maps itself arent. Im not sure how well maps can still be hacked nowadays, but im sure its still possible to read the entire map script by using MPQ-Editors and other tools to extract data.
Conclusion: At the moment there is no 100% security for save files. The community has requested server side banks though. I personally support server-side banks a 100%, not only for security but also because it makes switching computers without losing data possible.
As with most things editor related, a lot of stuff on the internet from 2010 and 2011 is out of date. I wanted to ask the current editor community what the situation is with secure bank files nowadays? I see Blizzard implemented their own signature, is that enough to rely on or should I double it up and combine that with something like Starcode?
Or is this all still pointless because of things like unlocking maps (is this still possible)?
Looking for suggestions.
I see Blizzard implemented their own signature, is that enough to rely on or should I double it up and combine that with something like Starcode?
As far as I know the bank signature was already hacked successfully. I cant provide any sources though. Personally I would always pair the bank signature with another encryption algorythm like Starcode (if you use Starcode, make sure to use a custom encryption alphabet and a long password) or using your own encryption algorythms.
Or is this all still pointless because of things like unlocking maps (is this still possible)?
This is pretty much the problem. At the moment banks cant be secure because the maps itself arent. Im not sure how well maps can still be hacked nowadays, but im sure its still possible to read the entire map script by using MPQ-Editors and other tools to extract data.
Conclusion: At the moment there is no 100% security for save files. The community has requested server side banks though. I personally support server-side banks a 100%, not only for security but also because it makes switching computers without losing data possible.
@Mille25: Go
Thanks! I went ahead and did this.