A method of encryption that requires people to not understand it for it to work is a poor method of encryption. Encryption ciphers like AES (Rijndael) for symmetric key cryptography and things like the Diffie-Hellman key exchange for public key cryptography are known algorithms that are in use for many applications (the secure WPA2 certification for wireless communications uses CCMP, which is entirely open).
WPA2 has nothing to do with netbattle, what in the world are you talking about?
We are changing the encryption method for alot of things anyways.
I was particularly interested in whether several of the security holes in NB had been fixed, but judging from what I've read so far, they have not.
In the Diamond Pearl patch that my team and I are making, all "security holes", (which were all just because of source code leaks) have been fixed.
NetBattle's method of password handling, for instance, is terribly insecure. NB uses a global password system, and the owner of any server you log into can acquire this password, which is almost always going to be the same on every server a person visits.
There was a script made to stop this, however we changed the password system (iirc).
I also immediately distrust the security credentials of anyone who claims that servers can no longer be crashed. Even if we assume they fixed all of the many bugs in .96 (1024 turn battles, for instance), there is no way for a program as complex as NB to be guaranteed secure. Moreover, there is no way to protect against a properly executed Distributed Denial of Service (DDoS) attack.
Why is there no way for NB to be garanteed secure?
There was a firewall made for netbattle a long time ago (by Wizard, don't know if you guys know/remember him), and we have a firewall that is built in, we are coding it to auto-block floods.
"DDoS" does not do anything to netbattle servers, the programs that "flood" are programs made almost specifically for netbattle. *Cough Jashdias' boah bots**Cough Connection-SpamBots*. They will flood your server anyways, therefore the build-in firewall will block and rendering it useless.
Why would a battle even last 1024 turns? Obviously we will patch this up but that is a horrible excuse to say it is not "Secure".