See this document for a complete list of changes ..... https://openxp.uk/doc/changes.txt
- Disabling "Packet password" in Edit/Servers/Edit/Point
had no effect
2021-03-03 15:29:04 Packet /sbbs/fido/inbound/xxx.PKT from
2:240/5824.1 - Incorrect password ('' instead of 'xxx')
- Disabling "Packet password" in Edit/Servers/Edit/Point
had no effect
2021-03-03 15:29:04 Packet /sbbs/fido/inbound/xxx.PKT from
2:240/5824.1 - Incorrect password ('' instead of 'xxx')
That is a different matter.
What *was* the matter was that a
session password in-the-clear was included in ALL outgoing PKTs
(including crash/direct)!
So.. it may not be wise anyone to continue to use any version
less than 5.0.49.
What *was* the matter was that a session password in-the-
clear was included in ALL outgoing PKTs (including crash/
direct)!
So.. it may not be wise anyone to continue to use any
version less than 5.0.49.
That's right.
Although I'm a little confused :)
Before 5.0.49, whenever you would crash/direct a message[...]
(bypassing your boss) the outgoing pkt would include the session
pwd you had established with the boss!
So now, when "[x] Packet password" is set, the password is
included in packets to my boss but not in crash/direct
message packets?
And when the option is not set, the password is added in
no case, is this correct?
So now, when "[x] Packet password" is set, the password is
included in packets to my boss but not in crash/direct
message packets?
Correct.
And when the option is not set, the password is added in
no case, is this correct?
Correct.
If you've ever crashed any messages to someone else's system
from OXP 5.0.48 or earlier, those packets will have your
personal session password in there.
If you've ever crashed any messages to someone else's
system from OXP 5.0.48 or earlier, those packets will have
your personal session password in there.
As I did not do it, I cannot confirm it :)
Probably most OXP users simply used their boss system to deliver
netmail.
But I think OXP's ability to send crash/direct is
amazing. Attaching the boss session password for those
deliveries was not so amazing. :/
See this document for a complete list of changes .....
https://openxp.uk/doc/changes.txt
Meh, this change (bugfix, I know...) took me a while to notice:
- Disabling "Packet password" in Edit/Servers/Edit/Point had no effect
I had the default setting (disabled) and since yesterday (where I installed the update) mails from my point went to .bad packets in my
BBS.
- Disabling "Packet password" in Edit/Servers/Edit/Point
had no effect
2021-03-03 15:29:04 Packet /sbbs/fido/inbound/xxx.PKT from
2:240/5824.1 - Incorrect password ('' instead of 'xxx')
That is a different matter.
- Disabling "Packet password" in Edit/Servers/Edit/Point
had no effect
2021-03-03 15:29:04 Packet /sbbs/fido/inbound/xxx.PKT
from 2:240/5824.1 - Incorrect password ('' instead of
'xxx')
That is a different matter.
Maybe so but at least it's highlighted something that had
escaped my attention.
Sysop: | Eric Oulashin |
---|---|
Location: | Beaverton, Oregon, USA |
Users: | 93 |
Nodes: | 16 (0 / 16) |
Uptime: | 06:46:45 |
Calls: | 5,209 |
Calls today: | 5 |
Files: | 8,493 |
D/L today: |
36 files (22,607K bytes) |
Messages: | 353,787 |
Posted today: | 4 |