9fa3609c85
relay: add command "handshake" in weechat relay protocol and nonce to prevent replay attacks ( closes #1474 )
...
This introduces a new command called "handshake" in the weechat relay protocol.
It should be sent by the client before the "init" command, to negotiate the way
to authenticate with a password.
3 new options are added:
* relay.network.auth_password
* relay.network.hash_iterations
* relay.network.nonce_size
2020-04-14 21:38:12 +02:00
b947512c9a
relay: add option relay.network.auth_timeout
2020-04-12 19:36:12 +02:00
9f55f90bbf
relay: update default colors for client status
...
Colors changed:
* relay.color.status_active: lightblue -> green
* relay.color.status_auth_failed: lightred -> lightmagenta
* relay.color.status_connecting: yellow -> white
* relay.color.status_waiting_auth: brown -> yellow
The color relay.color.status_disconnected remains lightred by default.
2020-04-12 18:02:27 +02:00
feb6258910
core: update copyright dates
2020-01-04 10:41:26 +01:00
c6161d0e4a
plugins: sort options added in configuration sections
2019-10-23 19:45:06 +02:00
9178156354
api: add argument "strip_items" in function string_split
2019-06-15 20:47:14 +02:00
9ed89beaa0
core: update translations
2019-05-13 21:43:11 +02:00
8121747e7b
relay: rename variables in function relay_config_check_path_length
2019-05-13 20:50:13 +02:00
ef1fcbd183
relay: do not overwrite a file if it's not a socket, display an error when the socket can not be created
2019-05-12 22:18:42 +02:00
585eb337e8
relay: evaluate path of unix socket relay
2019-05-12 21:53:23 +02:00
b228ccdfc3
relay: rename function relay_config_check_path_len to relay_config_check_path_length
2019-05-12 21:39:22 +02:00
ade52cdc7d
relay: fix update of port/path variables in relay server when options relay.port.* and relay.path.* are changed with /set
2019-05-12 21:39:22 +02:00
c4230ecece
relay: remove local variable ptr_server from function relay_config_check_path_cb (not needed)
2019-05-12 21:39:22 +02:00
abe85999d8
relay: rename function relay_config_create_option_port to relay_config_create_option_port_path
2019-05-12 21:39:22 +02:00
df3848e1f0
relay: fix code style
2019-05-12 21:39:22 +02:00
c78fb8dc7c
relay: rename variable "un" to "unix_socket"
2019-05-12 18:52:22 +02:00
ffefd1b785
relay: add UNIX socket support ( closes #733 )
2019-05-12 18:51:13 +02:00
78cabc2e06
relay: fix compilation warning when gnutls is not found
2019-03-12 22:26:55 +01:00
92e176ab89
relay: use empty value by default for option relay.weechat.commands (issue #928 )
...
The relay client is supposed to be safe by default, and the relay connection
should be protected by the different ways (restriction on IP address, SSL,
strong password, Time-based One-Time Password, local bind address and use of
SSH tunnel…).
So this option lets the user add extra security by allowing only some
commands (whitelist), or allowing any commands except a list of given
commands (blacklist).
2019-03-11 21:12:23 +01:00
e44c4904c3
relay: add forbidden commands /key and /trigger in weechat protocol (issue #928 )
2019-03-10 22:58:50 +01:00
508f224af9
relay: add forbidden commands /wait and /repeat in weechat protocol (issue #928 )
2019-03-10 18:29:22 +01:00
2b70d71aa1
core: replace argument "keep_eol" by "flags" in function string_split ( closes #1322 )
2019-03-10 18:29:16 +01:00
dd44c1db16
relay: add extra forbidden commands in weechat protocol (issue #928 )
...
Commands were already forbidden (option relay.weechat.commands):
- /exec
- /upgrade
- /quit
These extra commands are now forbidden by default:
- /fset
- /set
- /unset
- /plugin
- /script
- /python
- /perl
- /ruby
- /lua
- /tcl
- /guile
- /javascript
- /php
- /secure
2019-03-09 17:54:06 +01:00
d290de2cba
relay: add option relay.weechat.commands ( closes #928 )
2019-02-28 20:24:25 +01:00
2b0057239b
core: update copyright dates
2019-01-01 15:40:51 +01:00
342261d35b
core: use https for all links where secured http is supported
2018-11-29 23:18:55 +01:00
4712d0bb06
core: use https for links to GNU GPL license
2018-11-29 23:16:07 +01:00
ba3d805167
Merge pull request #1273 from half-duplex/master
...
Fix regex in relay.network.allowed_ips doc
2018-11-04 16:46:11 +01:00
738535e7f6
relay: add support of Time-based One-Time Password (TOTP) as second authentication factor in weechat protocol
2018-11-04 14:50:53 +01:00
9121e5812c
Fix regex in relay allowed_ips doc
2018-10-23 00:33:01 -04:00
ec169f535d
core: reinitialize config file pointer to NULL after an error on section creation
2018-01-14 21:47:18 +01:00
ed4837b2f6
core: update copyright dates
2018-01-05 00:54:18 +01:00
7ab6731efe
relay: fix relay.network.bind_address change callback not being called
2017-06-03 15:59:12 +03:00
705d86e684
core: update copyright dates
2017-01-01 11:32:04 +01:00
499b9be1fb
relay: add option relay.network.allow_empty_password ( closes #735 )
2016-05-18 07:55:03 +02:00
cf6aca1619
core: add pointer in some callbacks ( closes #406 )
...
This pointer is the first argument received by callbacks, and the
existing argument "data" is now automatically freed by WeeChat when the
object containing the callback is removed.
With this new pointer, the linked list of callbacks in scripts has been
removed. This will improve speed of scripts (using a lot of hooks),
reduce memory used by scripts and reduce time to unload scripts.
Following functions are affected in the C API:
* exec_on_files
* config_new
* config_new_section
* config_new_option
* hook_command
* hook_command_run
* hook_timer
* hook_fd
* hook_process
* hook_process_hashtable
* hook_connect
* hook_print
* hook_signal
* hook_hsignal
* hook_config
* hook_completion
* hook_modifier
* hook_info
* hook_info_hashtable
* hook_infolist
* hook_hdata
* hook_focus
* unhook_all_plugin
* buffer_new
* bar_item_new
* upgrade_new
* upgrade_read
2016-03-21 18:11:21 +01:00
45a1174000
relay: fix the max number of clients connected on a port, allow value 0 for "no limit" ( closes #669 )
2016-02-08 21:14:48 +01:00
3330724574
core: update copyright dates
2016-01-01 11:09:53 +01:00
52820627f0
relay: add option relay.irc.backlog_since_last_message
2015-12-20 08:19:59 +01:00
71dd64678c
core: add comments after some #endif
2015-04-30 21:15:30 +02:00
00730c0f9c
relay: remove v4-mapped addresses in /help relay.network.allowed_ips
...
v4-mapped addresses aren't used since commit 85339f6
2015-02-04 07:48:06 +01:00
a020c28ea6
core: update copyright dates
2015-01-01 09:23:23 +01:00
cdca3094ec
relay: disable SSLv3 by default
...
The new default value for option relay.network.ssl_priorities is now
"NORMAL:-VERS-SSL3.0".
2014-11-04 20:53:04 +01:00
134a5f53d4
relay: add option relay.network.ssl_priorities ( closes #234 )
2014-10-26 18:03:47 +01:00
1bda9f1077
relay: use comma separator in option relay.irc.backlog_tags, check the value of option when it is changed with /set
2014-10-08 22:25:35 +02:00
3092c09bc9
relay: remove warning on /reload of relay.conf when ports are defined
2014-05-24 08:00:19 +02:00
fdfee08cf8
relay: add option relay.network.clients_purge_delay
2014-02-23 20:32:42 +01:00
73eb2564f3
core: add "POSIX extended" in description of options/commands/functions using regular expressions
2014-01-09 17:21:19 +01:00
4a6bdc1c9c
relay: fix memory leak on unload of relay plugin
2014-01-09 15:34:30 +01:00
892aa79fb5
core: update copyright dates
2014-01-01 00:14:12 +01:00
Sébastien Helleu
Ryan Farley
Trevor Bergeron
Simmo Saan
Nick
Anders Bergh