Anope IRC Services

Anope Development => Feature Requests => Topic started by: Emeric on December 08, 2006, 06:21:54 PM

Title: /msg NickServ RESETPASS? For MD5 encrypted passwords
Post by: Emeric on December 08, 2006, 06:21:54 PM
Well, this is just a suggestion; I personally don't care because I don't use MD5 encryption. I was thinking since you obviously can't use GETPASS when NickServ passwords are encrypted, why not make a /msg NickServ RESETPASS command. The user could type in /msg NickServ RESETPASS [Nickname] [Email Address], the email address would be used to verify that its their nickname. Then you could have the services reset the password to something random then notice or email them the new password.
Post by: Jobe on December 08, 2006, 06:58:34 PM
Authorized users can already use /msg NickServ setpass to reset someones password manually. But a reset pass command like this would be helpful although if someone found out your email address could easily abuse it to annoy you. I think instead of emailing you a random password and resetting it straight away it could send you a code like /msg NickServ confirm uses to force it to reset your password then so instead of changing your password straight off it asks you via email to confirm you want to reset your password before it will actually reset it and email you the new password.
Post by: katsklaw on December 08, 2006, 08:30:12 PM
actually to prevent abuse RESETPASS could be a services oper and above command. /ns resetpass nick, services then emails a confirmation code that the user gives to nickserv on IRC: /ns confirm [confirmation code] NickServ then allows the user to set a pass with the password command: /ns set password new-pass.

This stops passwords from being used in a plaintext email. as well as doesn't require 2 or more emails from Services.
Post by: Gabriel Acevedo on August 24, 2007, 05:36:27 AM
I wrote a module which could be useful for you.