Quote:
|
Originally Posted by Judge
When you logon to the IRC server you use your Nick/password to verify to P who you are, all it takes is for the server admin etc to get your username and password is to review the log that P has within it. The same applies to any other IRC server that has authentication using a bot.
The fact that this (idiot) gleaned the passwords from a forgotten source is evidence enough to remove him from the server, his claim that and subsequent investigation by NG that he did not abuse any priviledges or access he has, is a complete smoke screen.
reviewing an IRC log is not detectable by any means fair or foul, as long as nothing is changed within the log it remains what it is, a record of the activity of the bot.
|
I do hate to correct you, but you're simply wrong. There is no big text file of passwords stored anywhere in P. The database which contains your passwords is md5 encrypted, and once the incoming message is matched to the users password it is flagged a successful login and the plain-text password is never stored.
You are correct when you say that the messages you send to P accross IRC from your client are plain text.