Download Game! Currently 115 players and visitors. Last logged in:ZegaNightDivValkrist

BatMUD Forums > Ideas-wanted > Re: fingers through bat.org website

Previous thread     Next thread
 
 
#1
15 Jan 2004 23:44
 
 
let us choose if we want to able to be fingered via bat.org website.
or not..

 
Rating:
-1
Votes:
4
 
 
Grain
112d, 16h, 43m, 13s old
Level:
36
Toggle Font
< Switch sides >
 
 
#2
16 Jan 2004 02:48
 
 
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
There is already an option to disable finger via the website.

read help suicide

 
Rating:
4
Votes:
4
 
 
Duke
A r c h w i z a r d
1y, 88d, 10h, 24m, 13s old
Level:
420 [Wizard]
Toggle Font
< Switch sides >
 
 
#3
16 Jan 2004 04:40
 
 
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
Speaking of which, I used to be able to use the good old unix finger command
to 'finger @batmud.bat.org' and see who's online...what happened to that?

 
Rating:
1
Votes:
2
 
 
Ooga
N e w b i e  H e l p e r
1y, 148d, 15h, 6m, 1s old
Level:
43
Toggle Font
< Switch sides >
 
 
#4
16 Jan 2004 08:52
 
 
Ooga wrote:
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
Speaking of which, I used to be able to use the good old unix finger command
to 'finger @batmud.bat.org' and see who's online...what happened to that?
It's drop-dead insecure. for one. For second, I don't think logging into
batmud is tied to unix machine anymore.

If it ever was?

--
Favorit.


^o^

 
 
 
Favorit
W i z a r d
1y, 352d, 22h, 1m, 10s old
Level:
89 [Wizard]
Toggle Font
< Switch sides >
 
 
#5
16 Jan 2004 10:08
 
 
Favorit wrote:
Ooga wrote:
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
Speaking of which, I used to be able to use the good old unix finger command
to 'finger @batmud.bat.org' and see who's online...what happened to that?
It's drop-dead insecure. for one. For second, I don't think logging into
batmud is tied to unix machine anymore.

If it ever was?
I don't understand what's insecure about the inherent function? Its just
sending info over the line, much in the same way http traffic is...we use
unencrypted logins all over the game...players at least, and probably wizzes
too log in every day via telnet which is widely considered an insecure
protocol as well.
As for tied to logins? It doesn't have to be tied to logins...finger info can
come from anywhere...ever seen the coke machines that responded via finger?
Batmud just used to have a daemon which queried the mud and spat info over the
wire...sort of like the web page does these days.

--ooga
(and I wrote 'insecure about the inherent function' shoulda been something
like inherently insecure about the... or whatever)

 
Rating:
1
Votes:
1
 
 
Ooga
N e w b i e  H e l p e r
1y, 148d, 16h, 2m, 17s old
Level:
43
Toggle Font
< Switch sides >
 
 
#6
16 Jan 2004 10:09
 
 
Yeah, yeah... But finger is considered to be insecure :)
And let's move this to bs or something :)

--
Favorit.


^o^

 
Rating:
-2
Votes:
3
 
 
Favorit
W i z a r d
1y, 352d, 23h, 1m, 12s old
Level:
89 [Wizard]
Toggle Font
< Switch sides >
 
 
#7
16 Jan 2004 10:19
 
 
Favorit wrote:
Yeah, yeah... But finger is considered to be insecure :)
And let's move this to bs or something :)

--
Favorit.
Excellent idea on moving this to bs. Whats the command again to reply to a
post in one group and direct the reply to another group? If that doesn't work,
maybe an editor command to change the group of the current message?

 
Rating:
2
Votes:
2
 
 
Ooga
N e w b i e  H e l p e r
1y, 148d, 16h, 2m, 17s old
Level:
43
Toggle Font
< Switch sides >
 
 
#8
16 Jan 2004 11:31
 
 
Ooga wrote:
Favorit wrote:
Yeah, yeah... But finger is considered to be insecure :)
And let's move this to bs or something :)

--
Favorit.
Excellent idea on moving this to bs. Whats the command again to reply to a
post in one group and direct the reply to another group? If that doesn't work,
maybe an editor command to change the group of the current message?
No such function yet... I'll do that when I'm back to NL.

--
Favorit.


^o^

 
Rating:
-1
Votes:
2
 
 
Favorit
W i z a r d
1y, 352d, 23h, 47m, 6s old
Level:
89 [Wizard]
Toggle Font
< Switch sides >
 
 
#9
16 Jan 2004 14:09
 
 
Favorit wrote:
Ooga wrote:
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
Speaking of which, I used to be able to use the good old unix finger command
to 'finger @batmud.bat.org' and see who's online...what happened to that?
It's drop-dead insecure. for one. For second, I don't think logging into
batmud is tied to unix machine anymore.

If it ever was?
Batmud accounts have never been unix accounts.

And there's nothing less secure in finger that is in the current web finger
interface.

-- Naked

 
 
 
Naked
W i z a r d
3y, 210d, 18h, 45m, 49s old
Level:
102 [Wizard]
Toggle Font
< Switch sides >
 
 
#10
16 Jan 2004 14:11
 
 
Naked wrote:
Favorit wrote:
Ooga wrote:
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
Speaking of which, I used to be able to use the good old unix finger command
to 'finger @batmud.bat.org' and see who's online...what happened to that?
It's drop-dead insecure. for one. For second, I don't think logging into
batmud is tied to unix machine anymore.

If it ever was?
Batmud accounts have never been unix accounts.

And there's nothing less secure in finger that is in the current web finger
interface.

-- Naked
Oh yes, there is. webfinger has connections from webmachine to bat's machine,
and the connection socket is firewalled from the entire internet. If there is
an open port, it can be compromised, or at least there will be attempts to
compromise it, they say.

--
Favorit.


^o^

 
Rating:
-1
Votes:
1
 
 
Favorit
W i z a r d
1y, 353d, 1h, 37m, 54s old
Level:
89 [Wizard]
Toggle Font
< Switch sides >
 
 
#11
16 Jan 2004 14:42
 
 
Favorit wrote:
Naked wrote:
Favorit wrote:
Ooga wrote:
Grain wrote:
let us choose if we want to able to be fingered via bat.org website.
or not..
Speaking of which, I used to be able to use the good old unix finger command
to 'finger @batmud.bat.org' and see who's online...what happened to that?
It's drop-dead insecure. for one. For second, I don't think logging into
batmud is tied to unix machine anymore.

If it ever was?
Batmud accounts have never been unix accounts.

And there's nothing less secure in finger that is in the current web finger
interface.

-- Naked
Oh yes, there is. webfinger has connections from webmachine to bat's machine,
and the connection socket is firewalled from the entire internet. If there is
an open port, it can be compromised, or at least there will be attempts to
compromise it, they say.
The finger server that connects to bat's machine can be on the web server.
And there's no reason an open HTTP port is any more secure than an open
finger port on the web machine - quite the opposite in most cases where the
server runs apache and php and whatnot.

-- Naked

 
Rating:
1
Votes:
1
 
 
Naked
W i z a r d
3y, 210d, 18h, 45m, 49s old
Level:
102 [Wizard]
Toggle Font
< Switch sides >