BOUNTY:: Web-Based Encrypted Whitelist

Can't say why, I just have sudden need for one

Web Setup:
Website server-side list of names, XOR'd, only accepting connections from secondlife's servers, not just any browser. (files edited serverside, so no problem there).
LSL Setup:
On rez, calls up pre-programmed URL, pulls xor'd string down, applies key, and loads whitelist names for compare against for touch, listen, sensor, etc.

Prize: L$1000 + a free copy of my next invention, to be determined.
Bonus Objectives: None I can think at this time.

I'm interested. I'm away from SL until tomorrow, but I can do a PHP script

Np. I was just a thought. I'm like... I have an email based whitelist and a way to get it's addres from the website.... but it's still a pain in the ass. So.... how about, since it'll be a short list of names, I just put it on the website.... it'd work. Also, the ability to filter by owner name,etc from objects would be nice. But it'd have to be toggleable.

Can't you simply not make the name of the file public? It will make all the encryption unnecessary, and XOR is pretty weak anyways.

I suppose, but a light application of encryption still helps. Just cause it's not public doesn't mean it won't be stubled upon. I do intent to fix up robots and httaccess so only sl's servers can hit it, but I just want to be sure.

I think I wrote the script that put out the encrypted email address XP


Could you elaborate a little more on this? I've got the base code down for the ACL and encryption.