This is the new home of the egghelp.org community forum.
All data has been migrated (including user logins/passwords) to a new phpBB version.

For more information, see this announcement post. Click the X in the top right-corner of this box to dismiss this message.

master commands and security

Old posts that have not been replied to for several years.
Locked
User avatar
arcane
Master
Posts: 280
Joined: Thu Jan 30, 2003 9:18 am
Location: Germany
Contact:
Contact arcane

master commands and security

Post by arcane »

hi

i've got one question about security.
it's about the way i'm handling master commands:

Code: Select all

bind pub - !normalproc normalproc
bind pub - !!masterproc masterproc

proc masterproc {args} {
   if {[matchattr $nick $masterflags]} {
	set vmaster "1"
        call normalproc $args
        unset vmaster
   }
}
and in the normalproc:

Code: Select all

proc normalproc {args} {
  if {$somesetting || [info exists vmaster]} {
     do_something
  }
}
do you think this is insecure? i think it might well be. i just want to be sure because i don't really want to change all my code *g*.
do you think it would be enough to add host and chan (e.g. set vmaster($host,$chan) "1")?
aVote page back online!
Check out the most popular voting script for eggdrop bots.

Join the metal tavern!
Top
User avatar
TALES
Halfop
Posts: 59
Joined: Sun Nov 09, 2003 8:45 am
Location: Netherlands
Contact:
Contact TALES

Post by TALES »

i dont think the part of this is secure: set vmaster($host,$chan) "1")


take a look @ this : http://www.peterre.com/characters.html
Top
Locked

Return to “Archive”