Offline Mode Server Security

If I run a server with offline-mode=false, hide-online-players=true and white-list=true, how easy would it be for an attacker to find out which names are whitelisted to join with a whitelisted name? Is it brute-force hard or does the server leak that info somewhere? How to secure an offline mode server against this?

You must log in or register to comment.

Chat

narc0tic_bird@lemm.ee
link
fedilink
English
arrow-up
8·
5 hours ago
I’d recommend a separate authentication plugin independent of Mojang accounts. For example this one (didn’t test it myself).

Minecraft@lemmy.world

minecraft@lemmy.world

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !minecraft@lemmy.world

Welcome to the Minecraft community on Lemmy and Kbin!

The home for all posts related to the Minecraft franchise: from the classic game to the mobile ports, mods, adventure games, merchandise and similar!

Official Lemmy.world server available!

Lemmy.world hosts an official server that welcomes all players to contribute and have fun:

Minecraft Version: 1.20.x

Address: minecraft.lemmy.world

Please make sure you read our rules before posting.

Rules:

Rules can be clicked on to be expanded.

1: Treat all users with respect.

Bullying, threathening, doxxing, or toherwise hostile behaviors with any of our users will not be tolerated. Be civil, have fun.

2: Posts must be related to the Minecraft franchise.

This includes the main game, titles like Dungeons, fan art, wiki pages, toys, new feature votes, and similar content.

3: No advertising.

If you want to share a product you’re a manufacturer or seller of, please contact the moderation team first. Affiliate links to online shopping stores or affiliate coupon codes are not allowed.

4: No piracy.

Links or discussions about cracked versions of games, unauthorized copies of copyrighted material and other similar piracy-related content are not allowed.

5: No NSFW or adult content.

This community is inclusive to users of all ages. Keep in mind Minecraft attracts children and adults alike. Therefore, no NSFW content is allowed.

6: No low-effort meme content.

Memes are allowed, and so are comics or other fan creations. However, low-effort reposts and otherwise overused memes will be removed.

Reddit reposts are allowed.

Reddit reposts are allowed, but you need to include the tag [Reddit] in the title.

Related communities:

PC Gaming: !pcgaming@lemmy.world
Games: !games@lemmy.world
PC Handhelds: !pchandhelds@lemmy.world
Minecraft modding: !moddedminecraft@sopuli.xyz

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

76 users / day
208 users / week
419 users / month
2.37K users / 6 months
29 local subscribers
4.4K subscribers
186 Posts
874 Comments
Modlog

mods:
ovis@lemmy.world