foxiepaws
/
weechat
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
9,770 Commits
2 Branches
0 Tags
141 MiB
Commit Graph

14 Commits (9fa3609c85e4b6608d366bed4e47ab9553cd5bc9)

Author SHA1 Message Date
Sébastien Helleu 9fa3609c85 relay: add command "handshake" in weechat relay protocol and nonce to prevent replay attacks (closes #1474) 
This introduces a new command called "handshake" in the weechat relay protocol.
It should be sent by the client before the "init" command, to negotiate the way
to authenticate with a password.

3 new options are added:

* relay.network.auth_password
* relay.network.hash_iterations
* relay.network.nonce_size
 2020-04-14 21:38:12 +02:00
Sébastien Helleu b947512c9a relay: add option relay.network.auth_timeout 2020-04-12 19:36:12 +02:00
Sébastien Helleu 92e176ab89 relay: use empty value by default for option relay.weechat.commands (issue #928) 
The relay client is supposed to be safe by default, and the relay connection
should be protected by the different ways (restriction on IP address, SSL,
strong password, Time-based One-Time Password, local bind address and use of
SSH tunnel…).

So this option lets the user add extra security by allowing only some
commands (whitelist), or allowing any commands except a list of given
commands (blacklist).
 2019-03-11 21:12:23 +01:00
Sébastien Helleu 508f224af9 relay: add forbidden commands /wait and /repeat in weechat protocol (issue #928) 2019-03-10 18:29:22 +01:00
Sébastien Helleu dd44c1db16 relay: add extra forbidden commands in weechat protocol (issue #928) 
Commands were already forbidden (option relay.weechat.commands):

- /exec
- /upgrade
- /quit

These extra commands are now forbidden by default:

- /fset
- /set
- /unset
- /plugin
- /script
- /python
- /perl
- /ruby
- /lua
- /tcl
- /guile
- /javascript
- /php
- /secure
 2019-03-09 17:54:06 +01:00
Sébastien Helleu d290de2cba relay: add option relay.weechat.commands (closes #928) 2019-02-28 20:24:25 +01:00
Sébastien Helleu 342261d35b core: use https for all links where secured http is supported 2018-11-29 23:18:55 +01:00
Sébastien Helleu ba3d805167
Merge pull request #1273 from half-duplex/master 
Fix regex in relay.network.allowed_ips doc
 2018-11-04 16:46:11 +01:00
Sébastien Helleu cb73c168b5 core: update translations 2018-11-04 14:50:53 +01:00
Trevor Bergeron 9121e5812c Fix regex in relay allowed_ips doc 2018-10-23 00:33:01 -04:00
Sébastien Helleu 285ad0c092 relay: fix typo in French translation of /help relay.network.websocket_allowed_origins 2017-10-20 08:37:49 +02:00
Sébastien Helleu 5eb6c650a1 doc: display default values of options on a separate line (user's guide) 2016-12-18 11:06:29 +01:00
Sébastien Helleu 499b9be1fb relay: add option relay.network.allow_empty_password (closes #735) 2016-05-18 07:55:03 +02:00
Sébastien Helleu b7bdbbdc50 core: rename .asciidoc files to .adoc (issue #722) 2016-05-15 08:52:19 +02:00