Add warning when disabling secure.enable_security (#9943)

author: rubenwardy <rw@rubenwardy.com> 2020-06-20 13:21:38 +0100
committer: GitHub <noreply@github.com> 2020-06-20 13:21:38 +0100
commit: 0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b (patch)
tree: da7120775e43a7506304cdd6558b806716cb0dee /src
parent: a2199bf62232707e96ece031a00b320d30e34445 (diff)
download: minetest-0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b.tar.gz
minetest-0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b.tar.bz2
minetest-0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/src/script/scripting_server.cpp b/src/script/scripting_server.cpp
index cbf229640..85411ded4 100644
--- a/src/script/scripting_server.cpp
+++ b/src/script/scripting_server.cpp
@@ -62,6 +62,10 @@ ServerScripting::ServerScripting(Server* server):
 
 	if (g_settings->getBool("secure.enable_security")) {
 		initializeSecurity();
+	} else {
+		warningstream << "\\!/ Mod security should never be disabled, as it allows any mod to "
+				<< "access the host machine."
+				<< "Mods should use minetest.request_insecure_environment() instead \\!/" << std::endl;
 	}
 
 	lua_getglobal(L, "core");
author	rubenwardy <rw@rubenwardy.com>	2020-06-20 13:21:38 +0100
committer	GitHub <noreply@github.com>	2020-06-20 13:21:38 +0100
commit	0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b (patch)
tree	da7120775e43a7506304cdd6558b806716cb0dee /src
parent	a2199bf62232707e96ece031a00b320d30e34445 (diff)
download	minetest-0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b.tar.gz minetest-0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b.tar.bz2 minetest-0f1f8e4a0fed72f0f2223448f34406eeb26f9b7b.zip