RELEASE -> !RELEASE

[irc.git] / software / !RELEASES / ircservices / achurch.org / services / lists / ircservices-coding / 2004 / 002884.html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
 <HEAD>
   <TITLE> [IRCServices Coding] SENDPASS with encryption...
   </TITLE>
   <LINK REL="Index" HREF="index.html" >
   <LINK REL="made" HREF="mailto:ircservices-coding%40ircservices.za.net?Subject=%5BIRCServices%20Coding%5D%20SENDPASS%20with%20encryption...&In-Reply-To=">
   <META NAME="robots" CONTENT="index,nofollow">
   <META http-equiv="Content-Type" content="text/html; charset=us-ascii">
   <LINK REL="Previous"  HREF="002883.html">
   <LINK REL="Next"  HREF="002885.html">
 </HEAD>
 <BODY BGCOLOR="#ffffff">
   <H1>[IRCServices Coding] SENDPASS with encryption...</H1>
    <B>DeadNotBuried .</B> 
    <A HREF="mailto:ircservices-coding%40ircservices.za.net?Subject=%5BIRCServices%20Coding%5D%20SENDPASS%20with%20encryption...&In-Reply-To="
       TITLE="[IRCServices Coding] SENDPASS with encryption...">idontwantthisshit at hotmail.com
       </A><BR>
    <I>Wed Feb  4 16:15:16 PST 2004</I>
    <P><UL>
        <LI>Previous message: <A HREF="002883.html">[IRCServices Coding] SENDPASS with encryption...
</A></li>
        <LI>Next message: <A HREF="002885.html">[IRCServices Coding] SENDPASS with encryption...
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#2884">[ date ]</a>
              <a href="thread.html#2884">[ thread ]</a>
              <a href="subject.html#2884">[ subject ]</a>
              <a href="author.html#2884">[ author ]</a>
         </LI>
       </UL>
    <HR>  
<!--beginarticle-->
<PRE>maybe time out the auth code rather quickly, or have an option to set how 
long they last for, eg the auth code could only be used for 2 hours after 
being sent

&gt;<i>
</I>&gt;<i>i was thinking, instead of setting a new password, send them some sorta 
</I>&gt;<i>auth code, which uses a command such as SENDPASSAUTH, once that command 
</I>&gt;<i>completes successfully, the user get +r, and it assumes the user is 
</I>&gt;<i>identified, so that if someone tries to use it miliciously, it wont work. 
</I>&gt;<i>the users 'old' password will still work, but as services assumes after the 
</I>&gt;<i>sendpassauth that the user is logged in, they will be able to switch to 
</I>&gt;<i>their normal nickname and do a set password
</I>&gt;<i>
</I>&gt;<i>opinions?
</I>&gt;<i>
</I>&gt;<i>/****************************************
</I>&gt;<i>  *     Craig &quot;FrostyCoolSlug&quot; McLure
</I>&gt;<i>  * InspIRCd   - <A HREF="http://www.inspircd.org">http://www.inspircd.org</A>
</I>&gt;<i>  * ChatSpike  - <A HREF="http://www.chatspike.net">http://www.chatspike.net</A>
</I>&gt;<i>  ****************************************/
</I>&gt;<i>
</I>&gt;<i>
</I>&gt;<i>/****************************************
</I>&gt;<i>  * From    - Martin Pels &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">martinpels at hotmail.com</A>&gt;
</I>&gt;<i>  * To      - IRC Services Coding Mailing List 
</I>&gt;<i>&lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">ircservices-coding at ircservices.za.net</A>&gt;
</I>&gt;<i>  * Sent    - 2004-02-04 18:08:52
</I>&gt;<i>  * Subject - Re: [IRCServices Coding] SENDPASS with encryption...
</I>&gt;<i>  ****************************************/
</I>&gt;<i>
</I>&gt;<i>/****** - Begin Original Message - ******/
</I>&gt;<i>
</I>&gt;<i> &gt;I'm looking forward to this module. It is what kept us from switching to
</I>&gt;<i> &gt;encrypted passwords.
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Here's some ideas on the abuse problem:
</I>&gt;<i> &gt;* Only allow usage of the command from hosts that are in the nickname's
</I>&gt;<i> &gt;accesslist
</I>&gt;<i> &gt;* Send the nick!<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">user at host</A> of the user that issued the command in the 
</I>&gt;<i>E-mail
</I>&gt;<i> &gt;(it won't prevent abuse, but at least you'll know who's been playing 
</I>&gt;<i>around)
</I>&gt;<i> &gt;* Give a notice to services operators/admins each time the command is 
</I>&gt;<i>issued
</I>&gt;<i> &gt;* Limit the amount of times the command can be used successively
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Hope this helps.
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Grtz,
</I>&gt;<i> &gt;Martin
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;----- Original Message -----
</I>&gt;<i> &gt;From: &quot;Craig McLure&quot; &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">Craig at chatspike.net</A>&gt;
</I>&gt;<i> &gt;To: &quot;ircservices-coding&quot; &lt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">ircservices-coding at ircservices.za.net</A>&gt;
</I>&gt;<i> &gt;Sent: Wednesday, February 04, 2004 4:47 PM
</I>&gt;<i> &gt;Subject: [IRCServices Coding] SENDPASS with encryption...
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;&gt; I've been working on a module that allows use of sendpass whilst using
</I>&gt;<i> &gt;encrypted passwords (i'll contribute the source to Andy when complete for
</I>&gt;<i> &gt;inclusion in services), it will work by changing the users password, and
</I>&gt;<i> &gt;mailing them that.. but i cant find around other users using it 
</I>&gt;<i>miliciously
</I>&gt;<i> &gt;to aggrovate others..
</I>&gt;<i> &gt;&gt;
</I>&gt;<i> &gt;&gt; anyone got any idea on how this can be resolved? thanks :)
</I>&gt;<i> &gt;&gt;
</I>&gt;<i> &gt;&gt; /****************************************
</I>&gt;<i> &gt;&gt;  *     Craig &quot;FrostyCoolSlug&quot; McLure
</I>&gt;<i> &gt;&gt;  * InspIRCd   - <A HREF="http://www.inspircd.org">http://www.inspircd.org</A>
</I>&gt;<i> &gt;&gt;  * ChatSpike  - <A HREF="http://www.chatspike.net">http://www.chatspike.net</A>
</I>&gt;<i> &gt;&gt;  ****************************************/
</I>&gt;<i> &gt;&gt;
</I>&gt;<i> &gt;&gt; ------------------------------------------------------------------
</I>&gt;<i> &gt;&gt; To unsubscribe or change your subscription options, visit:
</I>&gt;<i> &gt;&gt; <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">http://www.ircservices.za.net/mailman/listinfo/ircservices-coding</A>
</I>&gt;<i> &gt;&gt;
</I>&gt;<i> &gt;------------------------------------------------------------------
</I>&gt;<i> &gt;To unsubscribe or change your subscription options, visit:
</I>&gt;<i> &gt;<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">http://www.ircservices.za.net/mailman/listinfo/ircservices-coding</A>
</I>&gt;<i> &gt;.
</I>&gt;<i>
</I>&gt;<i>/******* - End Original Message - *******/
</I>&gt;<i>
</I>&gt;<i>
</I>&gt;<i>------------------------------------------------------------------
</I>&gt;<i>To unsubscribe or change your subscription options, visit:
</I>&gt;<i><A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices-coding">http://www.ircservices.za.net/mailman/listinfo/ircservices-coding</A>
</I>
_________________________________________________________________
ninemsn Premium transforms your e-mail with colours, photos and animated 
text. Click here  <A HREF="http://ninemsn.com.au/premium/landing.asp">http://ninemsn.com.au/premium/landing.asp</A>


</PRE>

<!--endarticle-->
    <HR>
    <P><UL>
        <!--threads-->
        <LI>Previous message: <A HREF="002883.html">[IRCServices Coding] SENDPASS with encryption...
</A></li>
        <LI>Next message: <A HREF="002885.html">[IRCServices Coding] SENDPASS with encryption...
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#2884">[ date ]</a>
              <a href="thread.html#2884">[ thread ]</a>
              <a href="subject.html#2884">[ subject ]</a>
              <a href="author.html#2884">[ author ]</a>
         </LI>
       </UL>

</body></html>