1. Forum
  2. FidoNet
  3. NET DEV

  • Re: Packet password case

    From Sean Dennis@1:18/200 to Nick Andre on Tuesday, April 21, 2020 22:03:16
    Nick Andre wrote to Wilfred Van Velzen <=-

    If two Sysops cannot troubleshoot packet-password problems then thats
    not a tosser problem. Just remove whatever uppercase-parse code in
    Fmail, be done.

    Internet Rex treats packet passwords as case-sensitive.

    I'm for case-sensitive passwords for security reasons.

    Later,
    Sean

    ___ MultiMail/Linux v0.52

    --- Maximus/2 3.01
    * Origin: Outpost BBS * bbs.outpostbbs.net:10123 (1:18/200)
  • From Wilfred van Velzen@2:280/464 to Sean Dennis on Wednesday, April 22, 2020 10:17:00
    Hi Sean,

    On 2020-04-21 22:03:16, you wrote to Nick Andre:

    Internet Rex treats packet passwords as case-sensitive.

    You think or you know for sure? ;)

    I'm for case-sensitive passwords for security reasons.

    I agree...

    Bye, Wilfred.

    --- FMail-lnx64 2.1.0.18-B20170815
    * Origin: FMail development HQ (2:280/464)
  • From Sean Dennis@1:18/200 to Wilfred van Velzen on Saturday, April 25, 2020 18:15:02
    Wilfred van Velzen wrote to Sean Dennis <=-

    You think or you know for sure? ;)

    I've been a registered IRex user since 1998. I should know by now (I'd
    hope!).

    I'm for case-sensitive passwords for security reasons.
    I agree...

    I didn't use to think that but after getting deep into Linux system administration, I changed my mind.

    Later,
    Sean

    ___ MultiMail/Linux v0.52

    --- Maximus/2 3.01
    * Origin: Outpost BBS * bbs.outpostbbs.net:10123 (1:18/200)
  • From Sean Dennis@1:18/200 to Rob Swindell on Saturday, April 25, 2020 18:52:24
    Rob Swindell wrote to Wilfred van Velzen <=-

    SBBSecho will not import echomail from an insecure inbound directory.

    I know that Squish and Fastecho will do the same. I have Squish importing
    from insecure due to my getting a lot of netmail from other nodelisted
    systems but I've not had any problems (yet).

    Later,
    Sean

    ___ MultiMail/Linux v0.52

    --- Maximus/2 3.01
    * Origin: Outpost BBS * bbs.outpostbbs.net:10123 (1:18/200)
  • From Rob Swindell to Sean Dennis on Saturday, April 25, 2020 17:49:15
    Re: Re: Packet password case
    By: Sean Dennis to Rob Swindell on Sat Apr 25 2020 06:52 pm

    Rob Swindell wrote to Wilfred van Velzen <=-

    SBBSecho will not import echomail from an insecure inbound directory.

    I know that Squish and Fastecho will do the same. I have Squish importing from insecure due to my getting a lot of netmail from other nodelisted systems but I've not had any problems (yet).

    NetMail from insecure inbound, sure. I was talking about EchoMail.

    digital man

    Synchronet "Real Fact" #54:
    The Synchronet source code consists of over 500,000 lines of C and C++.
    Norco, CA WX: 87.2°F, 31.0% humidity, 13 mph ENE wind, 0.00 inches rain/24hrs
  • From Sean Dennis@1:18/200 to Rob Swindell on Saturday, April 25, 2020 23:16:50
    Hi Rob,

    NetMail from insecure inbound, sure. I was talking about EchoMail.

    That's what I get for responding to mail when I'm half-asleep. Yes, you're right: tossing unsecure echomail is just asking for problems. Though I don't think I've seen any, uhm, issues with that since the late 90s when there were certain people in a certain mail network that were causing issues.

    Later,
    Sean


    --- Maximus/2 3.01
    * Origin: Outpost BBS * bbs.outpostbbs.net:10123 (1:18/200)
  • From Rob Swindell to Sean Dennis on Saturday, April 25, 2020 23:40:22
    Re: Re: Packet password case
    By: Sean Dennis to Rob Swindell on Sat Apr 25 2020 11:16 pm

    Hi Rob,

    NetMail from insecure inbound, sure. I was talking about EchoMail.

    That's what I get for responding to mail when I'm half-asleep. Yes, you're right: tossing unsecure echomail is just asking for problems. Though I don't think I've seen any, uhm, issues with that since the late 90s when there were certain people in a certain mail network that were causing issues.

    Oh, we were all young trouble-makers at some point, weren't we? :-)

    Someone else did point out that if you had 2 authenticated links sending files into a shared secure inbound, one could impersonate the other very easily unless packet passwords were used. That's one case where the use of inboxes could provide more security.

    digital man

    Synchronet/BBS Terminology Definition #29:
    FOSSIL = Fido/Opus/SEAdog Standard Interface Layer
    Norco, CA WX: 72.1°F, 52.0% humidity, 0 mph SSW wind, 0.00 inches rain/24hrs