Re: [dev] [ii] exposed password on process monitoring

From: Kurt H Maier <>
Date: Thu, 19 Apr 2012 15:21:32 -0400

On Thu, Apr 19, 2012 at 08:41:14PM +0200, Truls Becken wrote:
> True, PASS is cleaner because of the delay necessary with the nickserv
> message. Key as argument sucks quite a bit, though.

for those following along at home, PASS has ABSOLUTELY NOTHING to do
with nickserv or any of this other shit layered on top of IRC. PASS is
a CONNECTION-LEVEL password that allows you to CONNECT to the server.
while some systems embed a username inside the password, that is NOT
NECESSARILY TRUE and frequently isn't.

PASS has nothing to do with nickserv.
nickserv has nothing to do with PASS.

any server that uses data from the PASS string to do shit with nickserv
is doing that on its own. many irc servers have ONE PASS that is shared
among many users, who THEN identify to nickserv -- or don't use nickserv
at all, but still use PASS.

Why is this not filtering into anyone's skull?
Received on Thu Apr 19 2012 - 21:21:32 CEST

This archive was generated by hypermail 2.3.0 : Thu Apr 19 2012 - 21:24:04 CEST