On Wed, Dec 19, 2012 at 11:14:33AM -0600, lists@packetmail.net wrote:
On 12/19/2012 11:09 AM, Alexander Barton wrote:
If your clients pass in the "too long" password, there is not much we can do: the passwords don't match. But if they pass in the truncated password, it should work. I'll have a look at it later this evening ...
Thank you Alex for your time regarding this as well as your detailed replies. I've been trying to diff 19.2 against 20 but nothing is standing out at me. Obviously you know the code much better than I.
Hm, I can't reproduce your problem ...
I configured ngIRCd 20 with a password that's too long and becomes cut off after 20 characters:
In ngircd.conf: Password = 1234567890abcdefghij1234567890abcdefghij1234567890
"ngircd --configtest" shows: test.conf, line 10: Value of "Password" too long! Password = 1234567890abcdefghij
But I can still successfully log in using a) the cut of password of 20 characters length, b) and all passwords that differe only in character >20.
IRC commands are (you can test this using "nc", "telnet", "gnutls-cli", or "openssl s_client"):
PASS 1234567890abcdefghij NICK TestNick USER User . . :Real Name
Or
PASS 1234567890abcdefghijXYZ NICK TestNick USER User . . :Real Name
So this all seems to be fine. But I don't have a clue whats wrong with your daemon!?
Regards Alex