Thursday, May 06, 2004
06:19 pm UTC
The other upgrade we're doing security-wise is using a new module to control administrative access by IP address. With this module, should I go over to a friend's house, I'd not be able to perform most administrative tasks. Although that part's not particularly fantastic, what is fantastic is that if someone managed to figure out my password (or the password of another admin) the worst they'd be able to do would be to get that admin killed in the forest, and post some comments. All too often someone claims to have admin passwords, then I end up doing a bunch of detective work to find out they indeed don't. Now it won't matter so much even if they do get it because they won't be able to go crazygonuts on the game.
We already protect against password brute forcing on admin accounts, so this adds yet another level of protection.
Also this update brings us a new translation engine, but I doubt most of you really want to hear all the boring details of *that*. Sorry if any of the above didn't make sense, it's the end of the day, and I haven't had coffee for over 10 hours now. YoM me if you don't understand something and are curious, and I'll try to answer you =)