Re: Re: Packet password case insensitive or not?
By: Wilfred van Velzen to Rob Swindell on Wed Apr 22 2020 09:52 am
> Hi Rob,
> On 2020-04-21 16:12:07, you wrote to me:
> RS> SBBSecho has always treated packet passwords case-INsensitively. It is
> RS> unfortuate that so many of the fido specifications were so badly written
> RS> to begin with and the resulting ambiguities and contradictions have
> RS> never been sufficiently addressed by the FTSC.
> There is no ambiguity for packet password case sensitivity. It's just not
> specified, so anything goes...
Yeah, that's the definition of ambiguity.
> RS> Luckily, with password-protected mail sessions the norm these days,
> RS> packet passwords are kind of moot and probably should just be
> RS> deprecated. Doubt that'll happen though.
> I don't agree here. Packet passwords provide an extra layer of security. For
> instance without it, anyone can drop a .pkt file in your insecure inbound
> with a falsified source address and echomail in it. If you process .pkt files
> from your inbound automatically, it will get tossed, if there is no packet
> password agreeded upon for the falsified source...
SBBSecho will not import echomail from an insecure inbound directory.
digital man
This Is Spinal Tap quote #14:
The Boston gig has been cancelled. [Don't] worry, it's not a big college town.
Norco, CA WX: 81.9°F, 43.0% humidity, 6 mph ESE wind, 0.00 inches rain/24hrs ---
SBBSecho 3.10-Linux
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
|
