ICO Chat Service encrypted ?

from Sins Forums

I'd wish to write a script, which simulates the chatclient like everyone is used to, when connected to ICO.

I dont want to open the the whole recource heavy SINS process and want to be notified, if someone has entered the Lobby.

Lately there were only about 5 - 10 ppl online, so its quite a bit annoying to keep looking if someone is there, if i could have used my time better.

The problem, I dont know what protocol the Server uses and the datastream mostlikely is encrypted.

Does anyone have at least a bit of information, is it even possible for someone who stands at the sidelines.

greetings.

9,842 views 8 replies
Reply #1 from Sins Forums Top


I'd wish to write a script, which simulates the chatclient like everyone is used to, when connected to ICO.

I dont want to open the the whole recource heavy SINS process and want to be notified, if someone has entered the Lobby.

Lately there were only about 5 - 10 ppl online, so its quite a bit annoying to keep looking if someone is there, if i could have used my time better.

The problem, I dont know what protocol the Server uses and the datastream mostlikely is encrypted.

Does anyone have at least a bit of information, is it even possible for someone who stands at the sidelines.

greetings.

This would be great. I really don't like seeing Sins use 100% of my CPU all the time just so that it can continue displaying static text in the chatroom. (even with the galaxy frontend off)

Reply #2 from Sins Forums Top

I don't know exactly what Jierr has in mind, but I'd love to be able to monitor Sins ICO server activity via an IRC browser or maybe even with a special Firefox browser plug-in or separate program.

Sins of a Solar Empire: Rebellion
Reply #3 from Sins Forums Top

I don't know exactly what Jierr has in mind, but I'd love to be able to monitor Sins ICO server activity via an IRC browser or maybe even with a special Firefox browser plug-in or separate program.

Reply #4 from Sins Forums Top

Well i sniffed just some packets, it seems neither the Login to ICO nor the chatmessages are encrypted, but everything else still is a mystery. At least its a base to begin with, if the devs wont jump in and change it quickly ^^. As for IRC and Firefox Plugins, I don't have any experience with them. Might be a reason to check it out, if its comfortable enough. I wanted to test it with Python and implement it later in C++.

Reply #5 from Sins Forums Top

Quoting Jierr, reply 4
Well i sniffed just some packets, it seems neither the Login to ICO nor the chatmessages are encrypted...

Really? The login is not encrypted?

That would seem to be a very serious security problem. If someone happens to log on to ICO while on a public wifi network (which I assume isn't all that rare) it sounds like someone would be able to sniff out information one would like to keep private (like username/password). It would take some doing to understand what it was from but could give them an easy way to steal your Sins account if they felt like it.

Reply #6 from Sins Forums Top

Did u notice how many ppl play this game, surely it could be a minor issue, since u can always create new ICO accounts.

The password and User will only be found, if specifically looked for them.

Reply #7 from Sins Forums Top

Quoting Jierr, reply 6
Did u notice how many ppl play this game, surely it could be a minor issue, since u can always create new ICO accounts.

There's a difference between your ICO account (connected to your CD key) and the "player" (or handle) you use online. Are you saying that what you saw was only referring to the handles?

Quoting Jierr, reply 6
The password and User will only be found, if specifically looked for them.

That still sounds like a very possible security risk.

Reply #8 from Sins Forums Top

Im speaking of the handle not connected to the CD-Key. Only the data u need to login to the lobbysystem and what u actually type in is shown.

Ps.: Of course u are right about the security risk.