799 posts
Land of Meh
Posted 13 January 2013 - 07:20 AM
Thunderhawk Email Client
Version 3.0
Thunderhawk is a real life email client in ComputerCraft which works across Minecraft worlds and servers (using PHP and MySQL). It includes the ability to create an account, and send, receive, trash, and delete emails. All passwords are hashed in SHA-512 - the most secure hashing algorithm in the world, so there's literally no chance someone's going to steal your password.
You can find a list of all accounts for Thunderhawk here, so you are able to see who you can send messages to.
Notice: Accounts with usernames that are inappropriate in a family environment are subject to termination without prior notice.
Register here: http://firewolfcc.com/thunderhawk
New in 3.0
- It's finally back! :D/>
- Brand new backend
- Registration only through the website
- Nothing much else has changed
Change Log
Spoiler
Version 2.1- Automatic text wrapping! Watch the word you're typing instantly move down to the next line without you having to do a thing!
- Ability to permanently delete single emails from the trash
Well that was easy…
Version 2.0
Mainly Lua side updates in this version, nothing really new in the PHP:
- Brand new UI!
- Inbox, Trash, and Sent folders
- Account Management (delete your account)
- Scrollable Messages
- Scroll bars
- Fixed Trash Feature :D/>
- View trashed messages, then empty the trash
- More helpful error messages
- Easy to click menu
Version 1.1
- It's back, after a long period of downtime!
- Many more security features on the PHP side
Version 1.0
- Initial release
Features
- Send, receive, and delete emails
- Emails have a subject and scrollable body
- Create new accounts
- Delete your account
- View sent messages
- Login securely with your account
- Passwords hashed with salt in SHA-256 and SHA-512
- Error warnings
- Scrollable inbox
- Scroll bars
- Reply and forward functions
- Move messages to the trash
- Empty the trash
- Builtin Automatic Updater
Screenshots
Viewing a Message:
Inbox:
Spoiler
Compose:
Spoiler
Welcome Page:
Spoiler
Login:
Spoiler
Security Notice
Before anyone starts worrying about a repeat of the NDF-OS incident, I'll explain why such an event isn't possible (to my knowledge) with this system. First of all, the passwords are encrypted in SHA-256, then salted, then encrypted in SHA-512 again server-side. SHA-512 and SHA-256 are the most secure and second most secure hashing algorithms in the world, in use by many professional businesses and government agencies. It is part of the new generation of SHA-2 hashing algorithms, with no collisions found as of yet. You can find out more about this from the Wikipedia article.
Second of all, the account data is stored in a MySQL database (not in plain text in a file), which requires a set of credentials to access. There is no script that performs any form of modification to the FTP files - meaning no upload, download, or update scripts on the server at all (never had been, never will be). This means its not possible to see any of the messages, or account details.
Note: This means I cannot see passwords!
Thunderhawk has many other features (including protection against MySQL injection) to keep everything secure and running well, I'm just not going to document them here.
Download
Thunderhawk can be downloaded from Pastebin or Hastebin, using the Pastebin ID: R9Eb4XuG or the Hastebin ID: hihocowawo.lua
Or type into your computer:
pastebin get R9Eb4XuG thunderhawk
Note: you can't autoupdate from the old version sadly! I renamed the script on GitHub, meaning you must re-download it from Pastebin.
Credits
- Code by me :D/> (GravityScore)
- Lieudusty, who will be protecting this from a fiery eternal death overnight while I sleep using his crazy hocuspocus magic.
Please leave your opinion in a comment, or report a bug! If the bug is a big security risk, message me straight away, please do not post it in the comments where everyone can see it!
Edited on 28 December 2013 - 07:13 AM
