[sldev] Scalable Sim Question

Argent Stonecutter secret.argent at gmail.com
Mon Aug 11 06:01:35 PDT 2008

On 2008-08-11, at 06:32, Lawson English wrote:
> A malicious agent domain could insert itself as a man-in-the-middle  
> proxy for all transactions between the sim and the client, and  
> obtain any and all assets being sent to the client for display.  
> Basically, it would be a copybot on steroids, funneling data  
> directly into its own pirating-asset server, all the data being  
> sent from the Second Life simulator to the client.
> I don't see any way around this issue: any Agent Domain that is  
> allowed to connect to the SL grid must be deemed as trustworthy as  
> the most trusted grid granted access to the SL asset server. Agent  
> Domains, by their nature, have to be the most trusted part of the  
> entire system, because they have access to everything the client  
> does because every client  that logs in via an AD is a potential  
> copybot for that AD.

OK, so what you're telling me is that SL can never allow logins from  
any other grid's agent domain, because the design is fundamentally  
broken from a security standpoint as well as horribly inefficient.

More information about the SLDev mailing list