aboutsummaryrefslogtreecommitdiff
path: root/src/configreader.cpp
diff options
context:
space:
mode:
authorGravatar Sadie Powell2020-03-11 14:32:46 +0000
committerGravatar Sadie Powell2020-03-11 15:06:19 +0000
commit0a67b8861adfca7b09e59d9639e26b6bf71859a5 (patch)
treea478051a877b14b9a225e529949e90725f9412bd /src/configreader.cpp
parentFix detection of the "plaintext" pseudo-hash being case sensitive. (diff)
Warn if the server config contains an unhashed password.
This will be made a hard failure in v4.
Diffstat (limited to 'src/configreader.cpp')
-rw-r--r--src/configreader.cpp8
1 files changed, 8 insertions, 0 deletions
diff --git a/src/configreader.cpp b/src/configreader.cpp
index 51f846f70..a43a9d78c 100644
--- a/src/configreader.cpp
+++ b/src/configreader.cpp
@@ -304,6 +304,14 @@ void ServerConfig::CrossCheckConnectBlocks(ServerConfig* current)
me->maxconnwarn = tag->getBool("maxconnwarn", me->maxconnwarn);
me->limit = tag->getUInt("limit", me->limit);
me->resolvehostnames = tag->getBool("resolvehostnames", me->resolvehostnames);
+ me->password = tag->getString("password", me->password);
+
+ me->passwordhash = tag->getString("hash", me->passwordhash);
+ if (!me->password.empty() && (me->passwordhash.empty() || stdalgo::string::equalsci(me->passwordhash, "plaintext")))
+ {
+ ServerInstance->Logs->Log("CONNECTCLASS", LOG_DEFAULT, "<connect> tag '%s' at %s contains an plain text password, this is insecure!",
+ name.c_str(), tag->getTagLocation().c_str());
+ }
std::string ports = tag->getString("port");
if (!ports.empty())