encryption
Status: Beta
Brought to you by:
tsaviran
I really loved your old muh project ... and i really like the
new miau ... and it would be nice if in the future if its
possible and if you have time and want to do it ... miau
to encrypt log files and the config file so it would be the
only one to read them ... this will help pretty much if you
have your bouncer on unsafe servers and dont want
people to look at your stuff.
Have a nice day.
Logged In: YES
user_id=655272
Channel and private message logfiles can be encrypted quite
safely and easily by using your public key. This isn't as
simple for configuration file; in order for miau to read the
encrypted configuration file, miau needs either you to enter
your password at startup or your private key -- giving
either one of them on a compromised/unsafe server isn't
exactly a good idea. Reading your logfiles would have have
to take place on a trusted computer to keep your private
key/password safe.
I like your idea as an idea, but encryption on an untrusted
system just isn't going to work. If you want to stop
accidental trespassing, setting file permissions should be
enough. "chmod -R g-rwx,o-rwx ~/.miau" should do it.
I'm setting this request as pending; unless you can convince
me that there is a way to do this properly, I will have to
close this request without taking any action.
Logged In: YES
user_id=655272
Oh yeah, another thing: muh isn't and never was my project.
miau was branched from muh, so much of the credit should go
to Sebastian Kienzl. (http://muh.sourceforge.net/)
Logged In: YES
user_id=1353487
Well ... i saw the same thing done on a eggdrop bot ... and
its pretty good ... as ppl cant easly read your config file or
logs ... it really doesent have to be 100% unhackable ... just
it would give some work to the ones that try to mess with
your miau ... and would be a really cool option for miau. Think
of it ... if you want ... this is only a suggestion ... you dont
really have to put in practice evrything ppl say.
Thankyou and have a nice day.
Logged In: YES
user_id=1353487
Hello ... me again ... well i mentioned here that i saw
this thing done on a eggdrop bot :P ... well i might have
the source ... but i need to speak with you as this is a
private version (not released to the public) you could
steal some ideas from it and implement them in your
bouncer ... if you still like this idea and you would like
to do it ... i`ll give you that source ... just give me
your email or a messenger id ( yahoo or msn ) and we will
talk.
Have a nice day.
Logged In: YES
user_id=655272
I think it is not the implementation that is the problem but
motivation. Personally I find very little use for this feature.
Leaving request open for moments I'm bored to death.
Logged In: YES
user_id=1353487
Originator: YES
You should think about this special option ... because i think it will bring a few new users for your bouncer. People like to feel secure. When you have time and nothing to do ... you could try it. Its a nice challenge.
Thankyou.