Closed
Bug 164227
Opened 23 years ago
Closed 6 years ago
[mozbot.pl] Mozbot shouldn't log passwords (newuser, auth)
Categories
(Webtools Graveyard :: Mozbot, defect)
Webtools Graveyard
Mozbot
Tracking
(Not tracked)
RESOLVED
INACTIVE
People
(Reporter: burnus, Unassigned)
Details
While mozbot.pl.cfg contains the passwords in a hash form it logs the /msg
mozbot communication with password.
Result:
2002-08-23 08:29:15 UTC Told: <nick> auth burnus foobar
2002-08-23 08:29:15 UTC Authed: <nick> auth burnus foobar
Expected:
a) Hide the password
2002-08-23 08:29:15 UTC Told: <nick> auth burnus <password>
2002-08-23 08:29:15 UTC Authed: <nick> auth burnus <password>
b) Don't log these.
|
||
Comment 1•23 years ago
|
||
not sure how to do this
|
|
||
Comment 2•22 years ago
|
||
...or even whether to try.
|
|
||
Updated•22 years ago
|
Summary: Mozbot shouldn't log passwords (newuser, auth) → [mozbot.pl] Mozbot shouldn't log passwords (newuser, auth)
|
||
Updated•19 years ago
|
QA Contact: kerz → mozbot
Well, if anyone still cares:
after line 1348
chomp $line; # ...and they are probably a constant string!
add
$line =~s/\s*auth\s+($variablepattern)\s+($variablepattern)/auth $1 <password>/osi;
$line =~s/\s*password\s+($variablepattern)\s+($variablepattern)(\s+($variablepattern))?\s*/password <oldpassword> <newpassword> <newpassword>/osi;
$line =~s/\s*new\s*user\s+($variablepattern)\s+($variablepattern)(\s+($variablepattern))?\s*/newuser $1 <password> <password>/osi;
$line =~s/password '$variablepattern' and/password '<password>' and/osi;
Mozbot/Firebot is in maintenance-only mode; no further changes are planned.
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → INACTIVE
|
||
Updated•6 years ago
|
Product: Webtools → Webtools Graveyard
You need to log in
before you can comment on or make changes to this bug.
Description
•