Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I imagined the secret area contained fake details about the game, like adding an invisible fake street to a map. If the client refers to the fake street or any location within it, you can be certain the details about that fake street were obtained using cheats.

This trick is used to catch cheaters on minecraft, by spawning in fake diamond blocks that would only be visible to specific cheats (xray). If a user suddenly were to dig to these blocks, you can be reasonably certain there's something fishy going on.

Other way to think about it, is adding an invisible field to a contact form that is only hidden through CSS



A nice callback to the "trap streets" used in actual paper maps to catch people violating copyright:

https://en.wikipedia.org/wiki/Trap_street


> Other way to think about it, is adding an invisible field to a contact form that is only hidden through CSS

Watch out for autocomplete though.


And as a consumer, watch out for auto-completed css hidden credit card details


oh wow.

do current browsers not prevent this by only filling in credit card numbers when that particular field in focus?


I believe current browsers ask for authentication before filling in credit card details.

Whenever I focus on a CC field and autocomplete Chrome throws up a biometric auth before it will fill out the textfields


Or just call it what it is, a honeypot: https://en.wikipedia.org/wiki/Honeypot_(computing)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: