Complete.Org: Mailing Lists: Archives: freeciv-dev: June 2003:
[Freeciv-Dev] Re: client/server authentication (PR#1767) 		Home

[Freeciv-Dev] Re: client/server authentication (PR#1767)

[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]
To: kaufman@xxxxxxxxxxxxxxxxxxxxxx
Subject: [Freeciv-Dev] Re: client/server authentication (PR#1767)
From: "Raimar Falke" <rf13@xxxxxxxxxxxxxxxxx>
Date: Tue, 3 Jun 2003 12:19:31 -0700
Reply-to: rt@xxxxxxxxxxxxxx 
On Tue, May 27, 2003 at 09:04:09PM -0700, Mike Kaufman wrote:
> On Tue, May 27, 2003 at 01:36:56PM -0700, ChrisK@xxxxxxxx wrote:
> 
> heh, auth6q.diff at your service.
> 
> > After sending the password, there is a delay of 1-2 seconds before it get
> > accepted (local). Is this necessary?
> 
> yes. unless we set a delay for the first request, password cracking is
> fast. local users shouldn't worry about it since they won't be using auth.
> (thx for testing anyway).

I didn't test the patch yet but this sounds wrong. There shouldn't be
a timeout for a good password.

        Raimar

-- 
 email: rf13@xxxxxxxxxxxxxxxxx
 "Premature optimization is the root of all evil."
    -- D. E. Knuth in "Structured Programming with go to Statements"
[Prev in Thread] Current Thread [Next in Thread]