Client Management

Does anyone know if there is a workaround for the client management issue with allowing any client to connect.

Basically I need to create a hardened environment and will be distributing a custom client to connect to the server.

When I specify that only my client can connect, and try using one of the gui clients (spark, pidgin, etc…) those clients are disconnected immediately. However, I can quickly write a small console application to connect to the server and send messages to other clients.

Is there a fix for this?

Client Contrl plugin’s allowed clients feature is only a “cosmetic” option, it was never intended to actually use to block other clients for sure. This is not an easy task. Probably there should be some secret packets send from a client and server should know about such packets and only let such clients through. Client Control plugins is only checking the ID of the client which can be spoofed very easily.