Comments (7)
mibby
commented on June 18, 2024
@BillyGalbreath Incompatibility caused by Purpur?
https://github.com/pl3xgaming/Purpur/blob/0d0caaa91ffa3c51603d51ebb8fbe735ca6313d2/patches/server/0019-Player-invulnerabilities.patch#L92-L98
from resourcepacksplugins.
Phoenix616
commented on June 18, 2024
Imo. Purpur should provide an option for that protection. Fixing this in the plugin wouldn't be trivial and would require something like preventing that the status packets gets sent through the Bungee. (Something some people might even want so it would need an option too)
Also generally speaking I'm a bit sceptical why that check is even necessary in the server directly. Plugins that care about that case can easily handle that exact logic themselves and not trigger when they didn't send a pack.
from resourcepacksplugins.
BillyGalbreath
commented on June 18, 2024
Sorry about that. That feature was definitely supposed to be behind a config option. This has been rectified in build 1287.
As for why we do this check @Phoenix616 its because Purpur has the option to put a player into invulnerable mode while they are accepting/downloading a server resource pack. This check was put into place to prevent modded clients from abusing this feature to gain unlimited vulnerability. You can send the resource pack through ServerPlayer#sendTexturePack or manually set Purpur's ServerPlayer#acceptingResourcePack flag to make this plugin compatible with this feature.
@mibby Make sure you disable the player.invulnerable-while-accepting-resource-pack option in purpur.yml until this plugin becomes compatible with the feature.
from resourcepacksplugins.
Phoenix616
commented on June 18, 2024
You can send the resource pack through ServerPlayer#sendTexturePack or
manually set Purpur's ServerPlayer#acceptingResourcePack flag to make this
plugin compatible with this feature.
Well that's not really possible in that case as the plugin sends the pack
from the proxy :)
…On Sun, Jul 18, 2021, 17:10 BillyGalbreath ***@***.***> wrote:
Sorry about that. That feature was definitely supposed to be behind a
config option. This has been rectified in build 1287.
As for why we do this check @Phoenix616 <https://github.com/Phoenix616>
its because Purpur has the option to put a player into invulnerable mode
while they are accepting/downloading a server resource pack. This check was
put into place to prevent modded clients from abusing this feature to gain
unlimited vulnerability. You can send the resource pack through
ServerPlayer#sendTexturePack or manually set Purpur's
ServerPlayer#acceptingResourcePack flag to make this plugin compatible
with this feature.
@mibby <https://github.com/mibby> Make sure you disable the
player.invulnerable-while-accepting-resource-pack option in purpur.yml
until this plugin becomes compatible with the feature.
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#55 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ABMAMTJZZ6M2H3M5OK4BU3TTYL4HVANCNFSM5ASB2FVA>
.
from resourcepacksplugins.
BillyGalbreath
commented on June 18, 2024
Well that's not really possible in that case as the plugin sends the pack from the proxy :)
Shouldn't the plugin on the proxy swallow the responses then?
from resourcepacksplugins.
Phoenix616
commented on June 18, 2024
No, this plugin doesn't handle the responses at all. And even if I don't
believe they should be swallowed, if they would then plugins behind the
proxy wouldn't be able to listen on the status or check the
`Player#hasResourcepack` to see if the player has a pack.
…On Sun, Jul 18, 2021, 20:10 BillyGalbreath ***@***.***> wrote:
Well that's not really possible in that case as the plugin sends the pack
from the proxy :)
Shouldn't the plugin on the proxy swallow the responses then?
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#55 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ABMAMTLFJTVGMZWAKX4YSZLTYMRJRANCNFSM5ASB2FVA>
.
from resourcepacksplugins.
Phoenix616
commented on June 18, 2024
Closing this seeing as there now is a work around (even though it might not be ideal in most situations).
As for why we do this check @Phoenix616 its because Purpur has the option to put a player into invulnerable mode while they are accepting/downloading a server resource pack. This check was put into place to prevent modded clients from abusing this feature to gain unlimited vulnerability.
Out of curiosity though: Why are you not freezing the player when the pack request is sent instead of when the ACCEPTED response comes? Wouldn't only freezing directly on send prevent the possibility for the exploit completely (and also ensure a bit more that the player doesn't get damaged as the server doesn't have to wait for the response)?
from resourcepacksplugins.
Related Issues (20)
- Server connection refused with Dropbox HOT 1
- 1.17.1+ Required Resource Pack for Velocity HOT 1
- BungeeResourcePacks: Issue with old servers (1.18.0 and before) and ResourcePacks without a hash HOT 1
- Make compatible with Geyser/Bedrock HOT 3
- Command to see if a player uses one of the Bungee Resourcepacks HOT 1
- Make it Compatible With GeyserMC HOT 2
- I cant get it to work no popups no nothing HOT 1
- Plugin don't switch resource when i change world.. HOT 1
- append-hash-to-url causing disconnect on login with 1.19.3. HOT 3
- I cant get own ranks to server HOT 1
- pack wont load when moving to the server HOT 3
- Velocity Console error on startup HOT 1
- Additional Features
- LibreLogin Error HOT 1
- Unloading a pack does not work HOT 12
- [1.20.2 Waterfall] Exception when a player is disconnecting HOT 1
- Ability to specify the order of any pack no matter who sends them
- Support global pack loading on server join HOT 7
- Start Resource download after player has joined HOT 1
- Empty packs does not load in 1.20+ HOT 13
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from resourcepacksplugins.