Integrate BungeeGuard for more safety out of the box

[mrjasonn]

Feature description

Integrating BungeeGuard will make BungeeCord safer. I advise that the BungeeCord team may want to work with the BungeeGuard team to integrate this. It can be considerable to make this toggle-able, but it should be turned on by default if toggle-able (should probably make it that). It can also be complicated to use the official suggestions to secure the server whilst making sure it is set up correctly to make sure everything works properly. So the request is for you to integrate BungeeGuard features into BungeeCord for safety and not have the hassle of installing another plugin to make the server safer easily. The features is to use a secure key that both the proxy and the backend server have to authenticate, making sure players are coming from the same proxy, not another impersonating proxy.

Goal of the feature

This will enhance the security of BungeeCord out of the box, so users can enjoy seamless server switching without the hassle of adding extra plugins just to secure the server easily.

Unfitting alternatives

This is just to improve the BungeeCord out of the box security, so this section would not be applicable.

Checking

• This is not a question or plugin creation help request.
• This is a feature or improvement request.
• I have not read these checkboxes and therefore I just ticked them all.
• I did not use this form to report a bug.

Spigot issue tracker link: https://hub.spigotmc.org/jira/browse/SPIGOT-7559

[Janmm14]

A similar feature request should be posted on spigotmc's issue tracker, bungeecord and spigot should do this hand-in-hand or shouldn't do it at all.

[md-5]

You haven't actually explained what the request is

[Janmm14]

You haven't actually explained what the request is

BungeeGuard is a plugin which adds some password to bungee's forwarding data and the spigot plugin makes sure the password is correct or else joining will be prohibited. not sure whether its plaintext password or some encryption used tho.

[mrjasonn]

You haven't actually explained what the request is

the request is for you to integrate BungeeGuard features into BungeeCord for safety and not have the hassle of installing another plugin to make the server safer easily.

[md-5]

You haven't said what those features are

[mrjasonn]

You haven't said what those features are

The features is to use a secure key that both the proxy and the backend server have to authenticate, making sure players are coming from the same proxy, not another impersonating proxy.

[mrjasonn]

A similar feature request should be posted on spigotmc's issue tracker, bungeecord and spigot should do this hand-in-hand or shouldn't do it at all.

Apologise for not seeing this comment, but it has been done.

[andrew121410]

I mean not all users have access to block access to the backend servers using the firewall, aka using like any Minecraft server hosting provider. So adding a key and make sure, the proxy and the server have the same key. I don't really understand the full grasp of the encryption if any. But that Bungeeguard plugin is good example