Is the god mode thing for real?

Okay, maybe that's a bad example... is there a "conspiracy to breach contract" law? I dunno... "accessory to breach of contract"?

If I'm not mistaken, breach of contract is a civil offense. As such, a civilian involved (a party in the contract) has to raise the issue. So it's a moot point if neither party involved in the contact raises the issue of a breach of contract? IANAL, but it seems to me that if no one is "pressing charges," then the only ones that care are a lot of people who are not party to the contract between Eddy Stryker and LL.

But yes it's only a matter of time before they figure out a way to trick the servers into thinking your a linden. Thats what hacking is all about, finding a way through a tough barrior.

But yes it's only a matter of time before they figure out a way to trick the servers into thinking your a linden. That's what hacking is all about, finding a way through a tough barrier.

But yes it's only a matter of time before they figure out a way to trick the servers into thinking your a linden. Thats what hacking is all about, finding a way through a tough barrior.

I'm coming in late on this subject but the above quote is exactly why Linden Labs needs to do something and do something quick to disable this plug in.

If someone's smart enough to hack the servers to get Linden-level access, then they wouldn't need this program to begin with.

Any activity that would allow someone to "steal and destroy" should be only permitted via server-side permissions, not client-side. (I'm saying "should" as opposed to "are" because I'm assuming LL is smart enough to not allow such things client-side, and because after three years I think that kind of exploit if client-side related would have been found by now).


The kinds of activities you're worried about would inherently be impossible with a client-side program/add-on, because the client side doesn't allow you to perform those activities. Those permissions are set server-side, with your account.

The potential for a server hack is exactly the same as it was previous to the release of this add-on. Actually, it might be less, as the libsecondlife project is allowing more eyes on the code that makes up the SL client, thereby increasing the possibility that potential exploits that would allow server access are found before a malicious user finds them.

I've completely given up trying to explain client-server security models in Second Life to 20,000 people, but thank you for your enthusiasm. And to add some facts: multiple people had independently developed God Mode modifications of their own before this one, this is just the first one being released on a wide scale. Before the release the Lindens weren't aware that Show on Map was not checked server side. Whether they change that behavior or not is up in the air, but after the release of this add-on the bug report has been filed and they now know. Had the issue been something more serious like deleting objects, previously you would have had just a select few people with this power and no one would be the wiser. With widespread adoption of these lesser-tested tools bugs can be discovered and fixed, like the Show on Map example.

[21:59] Mark Assia: Hey Philip, have you had a chance to look at that God Mode program they're selling on SLExchange?
[22:00] nimrod Yaffle: Mark, I'm using it right now, all the desructive features are disabled
[22:00] Philip Linden: yes mark
[22:00] Philip Linden: not nice but not in any way dangerous.
[22:00] Philip Linden: yep like nimrod said

From what I hear from two people who work on it, libsecondlife in and of itself will be open source. Probable applications the devs are looking at include controlling NPC avatars and a telnet-like mini client that would allow a text-only (or minimal still pictures) connection into SL.

Or you can become the CEO that will put you in to God Mode!!

the way I see it if some one can wright a hack for the god tools, limited as they may be its just a matter of time that something much worse comes along.

if some one can wright a hack for the god tools, limited as they may be its just a matter of time that something much worse comes along

you're using an entirely reactionary argument with no basis in reality

4.2 You agree to use Second Life as provided, without unauthorized software or other means of access or use. You will not make unauthorized works from or conduct unauthorized distribution of the Linden Software.
Linden Lab has designed the Service to be experienced only as offered by Linden Lab at the Websites or partner websites. Linden Lab is not responsible for any aspect of the Service that is accessed or experienced using software or other means that are not provided by Linden Lab. You agree not to create or provide any server emulators or other software or other means that provide access to or use of the Service without the express written authorization of Linden Lab. You acknowledge that you do not have the right to create, publish, distribute, create derivative works from or use any software programs, utilities, applications, emulators or tools derived from or created for the Service, except that you may use the Linden Software to the extent expressly permitted by this Agreement. You are prohibited from taking any action that imposes an unreasonable or disproportionately large load on Linden Lab's infrastructure.

You may not charge any third party for using the Linden Software to access and/or use the Service, and you may not modify, adapt, reverse engineer (except as otherwise permitted by applicable law), decompile or attempt to discover the source code of the Linden Software, or create any derivative works of the Linden Software or the Service, or otherwise use the Linden Software except as expressly provided in this Agreement. You may not copy or distribute any of the written materials associated with the Service. Notwithstanding the foregoing, you may copy the Linden Software that Linden Lab provides to you, for backup purposes and may give copies of the Linden Software to others free of charge.

Mostly, this has already been debunked, but I just want to point out that you're using an entirely reactionary argument with no basis in reality. Just because some things exist in the client doesn't mean you can do *anything* from the client. If finding hacks was really that easy, BSD wouldn't be the secure platform it is

In short, I'm afraid "the way you see it" has no foundation in the technical details behind computer programming. While security vulnerabilities are inevitable, the only good solution is finding and fixing them. Taking hostile action against the people who, inadvertently or directly, reveal these vulnerabilities is useless. libsecondlife has, through this god mode program, revealed a bug in LL's code (not checking map pos requests server-side). This means LL knows this bug exists, and can now fix it. Eddy, keep it up.

I highlighted a part for clarity

Who is taking hostile action against any one

All I am saying is that apparently the client is hackable. The hand of god is proof of that.
so why would not any rational human being think that other hacks are not possible.
I admit that I know nothing of programing. But I do know that it is highly likely That if
the client is Hackable for the hand of god there may be more things to worry about.
Linden Labs should disable this hack and any others that come about It is a clear violation of the terms of service as stated by many others in this thread.

Those who are reverse engineering the viewer need to be banned, and prosecuted to the full extent of the law.

Last time I checked, computer hacking is a felony criminal offense.