[ZNC-Users] [ znc-Feature Requests-3015488 ] Passthrough users's login password

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Feature Requests item #3015488, was opened at 2010-06-13 16:41
Message generated for change (Tracker Item Submitted) made by turin42
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=672824&aid=3015488&group_id=115828

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: Engine
Group: None
Status: Open
Priority: 5
Private: No
Submitted By: Christian Bauer (turin42)
Assigned to: Nobody/Anonymous (nobody)
Summary: Passthrough users's login password

Initial Comment:
My IRC server requires authentication with the IRC PASS operation, which works fine if I provide my password in cleartext in znc.conf:

<User...>
           Server = myserver.local 6667 secret
</User>

This is the same password I use to connect to ZNC, which is stored in znc.conf as well but hashed. Ideally, I'd like to get rid of the clear text password here. I think ZNC should be able to simply use the connecting users password when ZNC itself connects to the server. 

If that means that we can only login to the target IRC server when a user connects to ZNC (because only then will the cleartext password be available), that is probably fine. ZNC doesn't have to connect on startup, it can delay the initial outgoing connection until the first client incoming connection is made.

If ZNC is a proxy then it is probably safe to assume that both a connection to ZNC _as well_ as to the target server requires authentication. That authentication should occur at the same time so cleartext passwords do not have to be stored permanently.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=672824&aid=3015488&group_id=115828