|
|
| Author |
Message |
pstruh
none
Joined: 24 Feb 2005
Posts: 29
|
 Posted: Mar 05, 2005 5:26pm Post subject: Anope SSL |
 |
|
| If Anope doesnt support SSL, and is connected to non-SSL port, can user sniffing comunication betwen me an Nickserv ? Can you stolen my registered password to nickserv ? |
|
| Back to top |
|
 |
v3|0c17y
Eleet
Joined: 28 Jan 2005
Posts: 650
|
| Posted: Mar 05, 2005 6:27pm Post subject: |
|
|
| that i have never heard of, every command regarding passwords and or settings sent to anope services is pretty secure and private unless someone has services admin or services root and perform "/msg chanserv getpass channel" and or "/msg nickserv getpass nickname" |
|
| Back to top |
|
|
pstruh
none
Joined: 24 Feb 2005
Posts: 29
|
| Posted: Mar 05, 2005 6:32pm Post subject: |
|
|
| and what about attack man-in-the-middle ? |
|
| Back to top |
|
|
zeke
Idler
Joined: 04 Oct 2003
Posts: 325
|
| Posted: Mar 05, 2005 11:14pm Post subject: |
|
|
in theory...services should be connecting using 127.0.0.1, or the local ip of the ircd. Thus, only people with direct access could sniff any traffic over the anope non-ssl connection
if the rest of your network is ssl'd, sniffing isn't much of an issue... |
|
| Back to top |
|
|
|
Register
Log in
