Timeline for How to know whether a textfile has been edited or tampered with on the local system?
Current License: CC BY-SA 4.0
Post Revisions
5 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Dec 28, 2019 at 7:01 | vote | accept | Edward Falk | ||
| Dec 26, 2019 at 21:17 | comment | added | Clockwork-Muse | You're concentrating on the save file, but it's pretty common in gaming circles to straight up mod the game executable itself, sometimes for non-nefarious reasons (there's a number of mods that just fix bugs the developers haven't gotten around to yet). That being the case, a secure remote system doesn't help, because the local client executable can just dike out the call for verification. That, or just send your remote signing API an already-modified file to "legitimize". | |
| Dec 26, 2019 at 20:43 | comment | added | Edward Falk | By the way, for the record, the way the original "hack" game did it was to include the file's own inode number within the file, hash everything, then add the hash to the file. This had the beauty that the user couldn't even back up a saved game, since the restored game file would have a different inode. Ultimately, however, the security depended on the user not knowing the format of the saved game file, or the hash function. | |
| Dec 26, 2019 at 20:37 | answer | added | ThoriumBR | timeline score: 4 | |
| Dec 26, 2019 at 20:27 | history | asked | Edward Falk | CC BY-SA 4.0 |