More password paranoia: Allow omitting the identify/register password as

well (and enter it using /OPER instead). This is a gross hack and indeed still not solid: In irssi one can still use /RAWLOG SAVE to find the OPER line sent to BitlBee (and of course not everyone uses SSL to talk to remote BitlBee servers). This only works within 10-30 minutes after entering the password though.
author: Wilmer van der Gaast <wilmer@google.com> 2011-02-01 13:05:58 +0000
committer: Wilmer van der Gaast <wilmer@google.com> 2011-02-01 13:05:58 +0000
commit: 060d0661ff8c1465f394c307d0f4c2a22964c6b2 (patch)
tree: d55e43451f55690dc0ef74e4b8e0475c3e731081 /irc.h
parent: 00fd005cd04ce4f68ff2d72de75a313868564f54 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/irc.h b/irc.h
index 41d1ce3b..fec63967 100644
--- a/irc.h
+++ b/irc.h
@@ -49,6 +49,16 @@ typedef enum
 	USTATUS_IDENTIFIED = 4, /* To NickServ (root). */
 	USTATUS_SHUTDOWN = 8,   /* Now used to indicate we're shutting down.
 	                           Currently just blocks irc_vawrite(). */
+
+	/* Not really status stuff, but other kinds of flags: For slightly
+	   better password security, since the only way to send passwords
+	   to the IRC server securely (i.e. not echoing to screen or written
+	   to logfiles) is the /OPER command, try to use that command for
+	   stuff that matters. */
+	OPER_HACK_IDENTIFY = 0x100,
+	OPER_HACK_REGISTER = 0x200,
+	OPER_HACK_ACCOUNT_ADD = 0x400,
+	OPER_HACK_ANY = 0x700,	/* To check for them all at once. */
 } irc_status_t;
 
 struct irc_user;
author	Wilmer van der Gaast <wilmer@google.com>	2011-02-01 13:05:58 +0000
committer	Wilmer van der Gaast <wilmer@google.com>	2011-02-01 13:05:58 +0000
commit	060d0661ff8c1465f394c307d0f4c2a22964c6b2 (patch)
tree	d55e43451f55690dc0ef74e4b8e0475c3e731081 /irc.h
parent	00fd005cd04ce4f68ff2d72de75a313868564f54 (diff)