NoFr1ends

Do you use a modified game core?

You could use a join, so you only need 1 statement to execute:

SELECT u.*, j.name as game_name FROM users as u
INNER JOIN jogos as j on j.id_jogo = u.jogo 

Congratulations to the following winners:

@Adrian2

@Crystal™

@Magickid

@Lufbert

@DiviDi

@mogulul

@galet

@flatik

@Legend

@MrLibya

@DarkFire

#pinned

The problem is that the PC where you try to add the attribute is null (which you can see at this=0x00 at the first stack)

The call of the first PC function comes from:
m_pOwner->ApplyPoint(m_pProto->aApplies.bType, bAdd ? value : -value);

Which means m_pOwner is null

If I'm not wrong the quest_name.__status is the number of the state which get incremented by every quest state but why it is 695801987 I'm not sure.

Here you go

(:facepalm:)

TP4L

It looks really good, good work. 

We also use it, and we are running fine since we switched to Hyperfilter.

I can recommend it.

1k at the same time.

I think more the question is how many players you have.

If you only mean for testing theoretically 1 core should be enough.

For a high player count server i would recommend at least 5 cores each channel.

On 14.8.2016 at 0:28 PM, ds_aim said:

AES is the best. I alredy use it for mysql hash password..  SELECT HEX(AES_ENCRYPT('password', 'key'));

This is the worst idea ever!

I would really suggest to use a VCS for developing the core...

The maintenance and the movement is done and the community is back online.

If you expire problems please contact me.

Kind regards,

ChuckNorris

Hello community,

In the night from the 9th July to 10th July at 1:00am CEST we will move the webspace to our new hoster.

Due to this movement the community will not be available for several hours.

Please keep in mind that DNS changes can need up to 24 hours to apply to every user.

Kind regards,

ChuckNorris

Where did you host your Server? 

How does your serverinfo.py looks like? 

Do you have any errors in the Client syserr? 

A little more Information would be helpful..

Maybe you are using the wrong Client for your game core. 

If you are using the source check the headers and the packet structs in both sources(Client and Server) for mismatch

12 hours ago, xP3NG3Rx said:

I see this nothing tells to you.

What do you want to say me with this?

With this bug you can execute EVERY SQL Query, so yes sure.

No other way than switch to your own source and apply the released fix. 

Or if you know IDA you can try to make a diff. I dont know how IDA works so i can't help here. 

Edit: Also you can add a prefix to the tables and add the prefix to the configuration, this will prevent the attackers from knowing how the table is named. 

In the messenger part of the game (core) is a bug which allows with a manipulated packet to execute unfiltered sql statements.

Kind regards

Chuck

In some parts and use cases it just slow down the database server because the queries aren't cached like the players etc.

If you wan't to experiment with the source I recommend you to work with it and implement function into the cache it's much faster.

Kind regards,

Chuck

Hello guys,

Due to personal reasons it was not possible for us to work on this project. But we now continue the work.

Kind regards,

Chuck

I just wrote my own python loader  

I'm currently working on it, but I think they renamed the pack_open command.