#21 new field in users.ini
I would like to see a new field in the users.ini.. it
will specify the type
of the registered userinfo... this is how i mean...
0:123456:somepassword:65535
1:name:somepassword:65535
2:^regex$:somepassword:65535
the problem i see is two...
If use_regex 1 is on in the server.cfg... and you are
a sloppy admin and do [TAG]:password:131071 you are
bound a securityhole here...
The otherthing im not sure if you alreadyfix.. i have
not looked in to the code to much.. But it is if i
connect with a name as a servers wonid. Am I able to
get admin?
My suggestion is to have a flag that says what type you
are using.
then you can skip the use_regex variable... and get a
more secure
system. And it would not be too hard todo the check..
it could be
done with a simple switch/case..
If im totaly wrong, just slap me silly with a big
trout.... =)
