aboutsummaryrefslogtreecommitdiff
path: root/README.md
diff options
context:
space:
mode:
authorPandaNinjas <admin@malwarefight.gq>2023-01-10 06:18:35 +0000
committerGitHub <noreply@github.com>2023-01-10 06:18:35 +0000
commitbff177ee146c3b9658791f72f6d7246a8348f614 (patch)
tree4e3f39388a35a30ebdeecec662d1310ed7458966 /README.md
parent93ba23a83d0bbcd2c4c02bb82848ec41707efcb8 (diff)
downloadNoSession-bff177ee146c3b9658791f72f6d7246a8348f614.tar.gz
NoSession-bff177ee146c3b9658791f72f6d7246a8348f614.tar.bz2
NoSession-bff177ee146c3b9658791f72f6d7246a8348f614.zip
Update README.md
Diffstat (limited to 'README.md')
-rw-r--r--README.md1
1 files changed, 1 insertions, 0 deletions
diff --git a/README.md b/README.md
index c3cab54..925d2a6 100644
--- a/README.md
+++ b/README.md
@@ -9,6 +9,7 @@ This mod doesn't make you 100% safe, but it makes it much harder to steal your s
## Staying Safe
In order to work around an unpatchable security vulnerability, rename the NoSession jar to !.jar so it can load its protection before any other mods.<br>
+You should also use [MultiMC](https://github.com/MultiMC/Launcher/) or one of its derivates [PolyMC](https://github.com/PolyMC/PolyMC) or [PrismLauncher](https://github.com/PrismLauncher/PrismLauncher), because they use launch Minecraft in a way that improves security.<br>
This only protects you from other mods. There are fake verification sites that can steal your session ID through that method.<br>
Don't login with Microsoft OAuth to anything except maybe your Minecraft launcher. You may also want to verify the signature on any NoSession binary. It's signed with [pandaninjas' GPG key](https://raw.githubusercontent.com/pandaninjas/pandaninjas/main/pandaninjas-publickey.key).