This is the new home of the egghelp.org community forum.
All data has been migrated (including user logins/passwords) to a new phpBB version.
For more information, see this announcement post. Click the X in the top right-corner of this box to dismiss this message.
All data has been migrated (including user logins/passwords) to a new phpBB version.
For more information, see this announcement post. Click the X in the top right-corner of this box to dismiss this message.
hidding bot passwords
hidding bot passwords
how to hide passwords for auth and dcc chat requests to the bot and in log files?
That kind of information is never logged as long as it is used properly.
In the case where a user accidentally mistypes a msg-command containing a password, this would be treated as any other message, and logged as such (to avoid this, you'd have to disable msg-logging completely). Quite obviously, it would be quite a daunting task of checking any and all messages recieved for possible passwords of any user, making it an unusable solution.
In any other case where you use one of eggdrop's internal commands that do require passwords, eggdrop will safeguard that no password information is logged in the bot's logfiles.
In the case where a user accidentally mistypes a msg-command containing a password, this would be treated as any other message, and logged as such (to avoid this, you'd have to disable msg-logging completely). Quite obviously, it would be quite a daunting task of checking any and all messages recieved for possible passwords of any user, making it an unusable solution.
In any other case where you use one of eggdrop's internal commands that do require passwords, eggdrop will safeguard that no password information is logged in the bot's logfiles.
NML_375
That is not an eggdrop issue, but rather an issue with the irc-client you are using. There is no standardized way of forcing a client to hide the text the user himself writes.
If your client supports scripting, you might be able to send the text without displaying it, depending on the client and its capabilities (obviously).
If your client supports scripting, you might be able to send the text without displaying it, depending on the client and its capabilities (obviously).
NML_375
right now i use xchat under linux.. but will be using xchat under windows after i finish installing my eggdrops. I dont know for sure if ill go back on windows though because this linux installation was so perfect i have no problems at all with it. When you send your NickServ password... NickServ bot hides it and put **** instead of clear text password, i can never see the password i send to NickServ, it's cool.
do u know how to make a bot send a file to another bot?
do u know how to make a bot send a file to another bot?
enter files system by using .file commandBoaR wrote:do u know how to make a bot send a file to another bot?
to send file use
Code: Select all
get [filename] <nickname>This would be done by some addon for your client, and not the works of ChanServ.BoaR wrote:right now i use xchat under linux.. but will be using xchat under windows after i finish installing my eggdrops. I dont know for sure if ill go back on windows though because this linux installation was so perfect i have no problems at all with it. When you send your NickServ password... NickServ bot hides it and put **** instead of clear text password, i can never see the password i send to NickServ, it's cool.
Unfortunately, I am not familiar at scripting for xchat, so I cannot give you any detailed advices on how to write an addon such as you desired. I would guess there are some scripts doing something like that out there, that could be modified accordingly. In any case, there really is'nt anything you could do on an eggdrop to achieve this, it'll have to be done on the clients.
NML_375
maybe it is possible to send the password encrypted? the bot will decrypt the password? this way even seeing the encrypted password it isnt the real password i am sending.. this could be a very good idea i think to implement on the bot.
When creating the owner user send the password unencrypted but bot should provide something like: This is your encrypted password, please use this password to login on the bot instead.
The password will be decrypted by the bot using md5 module or the default encryption method blowfish.
<BoaR> .file
<Eggdrop> What? You need '.help'
When creating the owner user send the password unencrypted but bot should provide something like: This is your encrypted password, please use this password to login on the bot instead.
The password will be decrypted by the bot using md5 module or the default encryption method blowfish.
<BoaR> .file
<Eggdrop> What? You need '.help'
Your best bet there would be to check one of the ssl-patches written to be used with eggdrop.
Keep in mind, that in order to achieve proper protection from encryption, keys must have been exchanged in a secure manner prior to connection attempt.
One option might be the challenge/respond scheme using a random hash; bot sends you a hash, you use the hash on your password using a "non-decryptable" algorithm, and returns the result. This however, would still need support on the clients (unless you're comfortable calculating md5/blowfish/sha/etc sums in your head), and is more sensitive to bruteforce attacks than using a secured channel such as provided by ssl.
Keep in mind, that in order to achieve proper protection from encryption, keys must have been exchanged in a secure manner prior to connection attempt.
One option might be the challenge/respond scheme using a random hash; bot sends you a hash, you use the hash on your password using a "non-decryptable" algorithm, and returns the result. This however, would still need support on the clients (unless you're comfortable calculating md5/blowfish/sha/etc sums in your head), and is more sensitive to bruteforce attacks than using a secured channel such as provided by ssl.
NML_375
i have compiled my bot with the ssl patch but whenever i add set use-ssl 1 in my config the bot wont connect even if irc server supports ssl connection. so i dont know why it doesnt work..
as a side note i think i will continue sending clear passwords to the bot.
Is it possible to connect to the bot use SSH ? instead of telnet use ssh..
as a side note i think i will continue sending clear passwords to the bot.
Is it possible to connect to the bot use SSH ? instead of telnet use ssh..
no need to search any code, it is a built-in feature of the nebots core component..search for nb_castfilter. You just have to enable and modify this setting to make your passwords private.BoaR wrote:i am running netbots i never seen this maybe i have to search the code ?
if i find a way to hide the password on the eggdrop source i will post here
yup that works i have it running that way already 
I was asking something more like NickServ to hide passwords replacing the giving password with asterix ****.. the user can't see his own password. You ever seen this on a nickserv bot ? i dont know how well this will work on eggdrop tho.. maybe looking at the nickserv bot source code will reveal the answer.
thanks tho, netbots is a nice botnet script, i wish there were more ..
I was asking something more like NickServ to hide passwords replacing the giving password with asterix ****.. the user can't see his own password. You ever seen this on a nickserv bot ? i dont know how well this will work on eggdrop tho.. maybe looking at the nickserv bot source code will reveal the answer.
thanks tho, netbots is a nice botnet script, i wish there were more ..