Fwd: [sldev] Sims and Script Security

Kent Quirk (Q Linden) q at lindenlab.com
Mon May 19 08:10:40 PDT 2008


Forgot to reply all.

Begin forwarded message:

> From: "Kent Quirk (Q Linden)" <q at lindenlab.com>
>
> If it's on something in our system, we'll probably find it, unless  
> it's obfuscated. But if it's offworld, you'd better stick a  
> reference to it someplace we can find it (in your inventory, for  
> example) or it could get forgotten.
>
> 	Q
>
> On May 19, 2008, at 10:17 AM, Matthew Dowd wrote:
>
>> Suppose the asset ids are being read from a notecard, or an  
>> offworld database via http?
>>
>> (this might be hypothetical, in that the assets concerned would  
>> most likely still be referenced from someone's inventory - unless  
>> perhaps the original creator's account has been deleted?)
>>
>> Matthew
>>
>>
>>
>>
>>
>> > From: q at lindenlab.com
>> > To: blindwanderer at gmail.com
>> > Subject: Re: [sldev] Sims and Script Security
>> > Date: Mon, 19 May 2008 10:07:32 -0400
>> > CC: sldev at lists.secondlife.com
>> >
>> > This makes me want to note that our asset garbage collection system
>> > attempts to identify references to asset IDs all throughout our
>> > databases. If the only reference to an asset is within a script,  
>> and
>> > the script is obfuscated so that the asset ID no longer looks  
>> like an
>> > asset ID (by, say, encrypting it), the asset will eventually get
>> > garbage collected.
>> >
>> > So please don't do that.
>> >
>> > Q
>> >
>> > On May 19, 2008, at 9:23 AM, Strife Onizuka wrote:
>> >
>> > > Doesn't matter if you send the script text, you can almost always
>> > > decompile the bytecode (there is some really devious stuff you  
>> can do
>> > > in LSO that makes automated decompilation essentially  
>> impossible and
>> > > manual decompilation a very arduous task.
>> > >
>> > > Strife Onizuka
>> > >
>> > > On Mon, May 19, 2008 at 12:41 AM, Darien Caldwell
>> > > <darien_caldwell at comcast.net> wrote:
>> > >> Not long ago there was talk about how IBM has private sims  
>> behind a
>> > >> firewall. ( http://www.virtualworldsnews.com/2008/04/ibm-takes-secon.html
>> > >> )
>> > >> I was wanting to know, if they take a scripted item into this
>> > >> private space,
>> > >> does that give them any possible way to view the source code of
>> > >> scripts for
>> > >> said objects? or are only the compiled bytecodes sent to the  
>> sim?
>> > >> Did LL
>> > >> make place any restrictions on what IBM can do with user content
>> > >> once it is
>> > >> taken into this area, or should creators start issuing EULAs if
>> > >> they don't
>> > >> want their items brought into this potentially unregulated  
>> space?
>> > >>
>> > _______________________________________________
>> > Click here to unsubscribe or manage your list subscription:
>> > /index.html
>>
>>
>> Get fish-slapping on Messenger! Play Now
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.secondlife.com/pipermail/sldev/attachments/20080519/ebaa6f57/attachment.htm


More information about the SLDev mailing list