egghelp/eggheads community Discussion of eggdrop bots, shell accounts and tcl scripts. 2004-02-06T11:50:10-04:00 https://forum.eggheads.org/app.php/feed/topic/6762 2004-02-06T11:50:10-04:00 2004-02-06T11:50:10-04:00 https://forum.eggheads.org/viewtopic.php?p=33293#p33293 <![CDATA[master commands and security]]>

take a look @ this : http://www.peterre.com/characters.html

Statistics: Posted by TALES — Fri Feb 06, 2004 11:50 am

]]> 2004-02-02T11:59:14-04:00 2004-02-02T11:59:14-04:00 https://forum.eggheads.org/viewtopic.php?p=33176#p33176 <![CDATA[master commands and security]]>
i've got one question about security.
it's about the way i'm handling master commands:

Code: 

bind pub - !normalproc normalprocbind pub - !!masterproc masterprocproc masterproc {args} {   if {[matchattr $nick $masterflags]} {set vmaster "1"        call normalproc $args        unset vmaster   }}
and in the normalproc:

Code: 

proc normalproc {args} {  if {$somesetting || [info exists vmaster]} {     do_something  }}
do you think this is insecure? i think it might well be. i just want to be sure because i don't really want to change all my code *g*.
do you think it would be enough to add host and chan (e.g. set vmaster($host,$chan) "1")?

Statistics: Posted by arcane — Mon Feb 02, 2004 11:59 am

]]>