Information about the summer promotion:
Have fun playing,
Your RedMoon Studios Team
Since seven years we would like to recommend the first new moonID game to you. Please throw a block in Slayer of Souls, which was created by our friends at media2Art (Days of Evil, My funny Garden) and features a wonderful antihero and some well-known elements from our games MonstersArmy / MonstersGame / KnightFight. Enjoy soul eating at Slayer of Souls - the game is actually only in German language available.
To follow up with our last announcement, the update we've been rolling out has been to address a few important issues that would make it easy for attackers to crash our servers or cause significant lag.
The reason we didn't go into more detail earlier was to prevent creative minds out there to use it against us before we are able to fully patch our infrastructure.
Our first mitigation, hours before our scheduled downtime, was to simply disable TCP selective acknowledgment, which is there to reduce bandwidth usage in case a packet got lost and has to be retransmitted. This typically is only relevant if you're experiencing an unstable connection, eg. due to networking issues. Temporarily disabling this avoids being susceptible to trivial server crashes by an attacker.
Additionally, we've rolled out bugfixes for a few related issues, which would allow attackers to significantly slow down our services with minimal to moderate effort.
If you want to know the full technical details, you can read up on it here:
Thanks for your patience and if you followed our recommendation at the end of the last post: Enjoy your coffee/tea :-)
Hi everybody and apologies up-front,
We need to patch up our infrastructure to mitigate a few security-related bugs that came to our attention, which we'll announce in detail in a follow-up post afterwards. The downtime will be around 5 minutes and it will take place on Jun 18 at 03:00 AM German time. This will impact all of our servers, so be sure to take a short coffe (or tea) break :-)
Your moonID team
Customers still waiting for transfers yesterday, please practice patience. Sorry also from our side for the circumstances.
actually got PayPal some problems to route transactions in some countrys. Please use different payments. We will keep you updatet.
Update from PayPal: "Payments are not lost, only take a little longer to credit."
We've just deployed a small fix, which makes it easier to navigate and post in the forum using mobile devices.
after a hard disk failure this morning (01.06.19 | 05:27 CEST) we had a ten minute downtime at the following KnightFight servers:
The system is back again. We apologize for any inconvenience and wish you a great weekend!
Following the last update from March, we have rolled out a few more user-visible changes this time.
Here is a summarised list of the changes:
The following sections are in-detail explanations of the changes that we've just deployed.
Our front-end web server (
nginx) is now using ETags, which basically make sure that browsers won't retrieve the content again if the file already exists in the cache and has the same ETag as the current file on the server, hence increasing page load performance in subsequent requests after the initial one.
The technical reason why we had ETags disabled so far, was that files inside of Nix store paths always have the same modification time and by default, nginx generates the ETag by concatenating the modification time with the file size.
To illustrate this: Let's say we have a file containing the text
hello world, which has a size of 11 characters. This would result in the ETag
Now let's assume the content of file got changed to
adios world, which has the same length. The same ETag (
1-11) as the one from the old file would be sent to the browser and the server will respond with an HTTP 304 (Not Modified), causing the browser to load the old file from the cache.
Static files (everything beginning with
/static in the URL) are served from Nix store paths, which would mean that we'd always get the same modification time, even after an upgrade. This is obviously not intended and could possibly distort the site, which is why we've disabled it so far.
We've rolled out a patch which addresses the issue by using the hash portion of the Nix store path as the ETag.
Another quite visible change was introduced for mobile phone/tablet users, where we have changed the navigation/layout a bit to make it less frustrating to browse moonID on smaller resolutions (about time, I'd say).
At the moment the mobile view should be treated more like an interim solution, because it's nowwhere near complete and in some cases quite rudimentary, but we do have a full site re-design on our roadmap where we intend to support mobile targets from the get-go.
If you're playing on a lot of game worlds, navigating the
My Games menu becomes quite tedious to use after a while, because the list is not sorted in a natural order.
In order to make the menu more convenient to use, we now list game worlds under their appropriate game name and they are also sorted naturally (or more accurately: According to a new
rank field in the database table).
So let's say you're playing on a few German MonstersGame and KnightFight worlds, the list was looking like this:
After applying natural sorting, the list now looks like this:
Right now if you want to delete your moonID account, you need to create a ticket and the actual deletion has to be done manually on our side, which is not a very good experience and we think that users should be able to do this for themselves.
However, there are a few things we need to retain by law, for example the purchases made by the user on the account.
While you'll still need to open a support ticket for deleting your account, we now have sufficient tests so that we won't accidentally delete too much information. This allows us to add account deletion within the next few updates.
So far some pages have issued an unnecessary amount of database queries, up to several thousand per request.
We have improved those queries a bit and now almost all pages (only a few internal ones are more demanding) use less than 100 queries. We intend to lower this in future updates, but even getting from a four figure number down to two digits is already a huge improvement.
Unfortunately, a few of the changes come with some fairly complex migrations we need to apply to our database. If everything goes as planned, the downtime will last only for a couple of minutes. If however all hell breaks loose and we need
to revert from database backup, the downtime could be up to an hour.
As usual, we're quite optimistic that everything will go as planned, but in case we're hit by Murphy's law we'd recommend taking a break on Tuesday,
May 21th from 02:00 to 03:00 UTC (that is 4 o'clock to 5 o'clock in German time) if you want to avoid moonID being unavailable.
The reintegration of the moonID toolbar is expected to be completed by Tuesday. We will keep you up to date.