WCS

[SamSeeSam]

The reason for wanting the bot see the logins, is that we use a script that compares different passwords against usergroups to ensure that someones not using a pass they shouldnt 

Unless I'm missing something...
How could they?
Unless you give a list of passwords to everyone and say,  "You only the one i have asked you to."
Else make unique passwords for each person...

Cheers

[Micromecca]

how could they?

ok bot can see logins on fx, it can pick it up as an opmsg...

Code: [Select]

<OnJoinRoom type="script">
<out type="push" extdata="BotPass1">BotPassword</out>
<out type="push" extdata="AdminPass2">AdminPassword</out>
etc ......

<OnOpMessage usergroup="Bots">
<in>*/login $BotPass1$</in>
<out>/-Bot Login Accepted for Bot: %NAME%</out>
</OnOpMessage>

<OnOpMessage type="script" usergroup="!Bots">
<in>*/login $BotPass1$</in>
<out>/message %RAWNAME% Please Check Your Tags and/or UserName %NAME%</out>
<out>/setuserlevel %RAWNAME% reset</out>
</OnOpMessage>



[SamSeeSam]

"to ensure that someones not using a pass they shouldnt "

How can that happen?
I mean unless a user knows the password to each usergroup. I don't know how that can happen...

Cheers

[Micromecca]

lets just call it a security policy lol, I didn't realise there would be so much controversy over this 

[SamSeeSam]

Ah ok... each one has his own likes and dislikes lol.

* Samseesam forgets about it

Cheers

[James420]

If he has it run on usergroups, then only certain usernames can use certain logins. So I see perfectly what he means, pretty smart. Keeps users from trying to share logins with some loser to try and take over the room, plus a few other things. But that would involve the person never changing their name, and how many people on winmx do you know that actually leave their name the same? Seems IP would be better way to go, but then you'd have the same issue that most auto admin scripts have. Not everyone is static IP, and some hostnames are too similar. But still, a little protection is better then none.

[Micromecca]

exactly James, glad someone understands  , thats also backed up by a script that will only allow a user to use a specific username with the correct hostname, not 100% secure, but as good as it gets for dynamic IP's 

[KM]

talk about going overboard... lol

did you consider decent (unguessable - stick a random number on the end or something) passwords combined with a unique password per admin? (and letting them know it's unique so they don't think they can anonymously give it away... their name in the announcement for example)

the only way you'd have a problem then is if one of the admins wanted to cause problems and have everyone know it was them doing it (unique password, they give it out you'd know it was them)... and if that's the case, they could just log in and do it themselves rather than give someone else the password...

[Micromecca]

been down all those routes in the past K and (for us) this is the most simplistic and relaible way to do it

[Micromecca]

all this over simply asking for logins to be visible to a level LOL

 

[Lagerlout666]

would be just as easy to make it work off part hostname of login, i have a script for that if you want but now its gone way off topic towards metis scripts lol

[Micromecca]

i was thinking that myself tiny but didn't wanna be rude and not answer questions lol

K can we please have logins visible 

* I¥Iî¢rôI¥Iꢢâ runs off

[James420]

Yeah, KM likes to have long debates when you request a feature. I would know, I've requested a lot. Only a few have been added though, lol. So good luck, hope you get what you want Micro.

[Lagerlout666]

Code: [Select]

<OnEnter type="script" users="*#c8#G/¥\Á Tîñý#c13#4#c7#èvå [W/¥\W]*">
<out>/opmsg Registered Admin Entry Detected, Now Checking %NAME% for Name Cloning</out>
<out condition="?" lvalue="%HOSTNAME%" rvalue="localhost">/message %RAWNAME% Credentials OK!  Proceeding to auto Login %NAME%.</out>
<out condition="!?" lvalue="%HOSTNAME%" rvalue="localhost">/opmsg %NAME% is being kicked for trying to clone G/¥\Á Tiny4Eva [W/¥\W]</out>
<out condition="!?" lvalue="%HOSTNAME%" rvalue="localhost">/kick %RAWNAME%</out>
</OnEnter>

<OnEnter type="script" users="*#c8#G/¥\Á Tîñý#c13#4#c7#èvå [W/¥\W]*"> 
<out condition="?" lvalue="%HOSTNAME%" rvalue="localhost">/forcelogin %RAWNAME% PASS</out>
</OnEnter>

Thats what i use for logins, just add the last part of a hostname or all of it if it is static, works great here, hasnt let me down once although some said it wasnt the safest thing out their but im sure wid abit more genius than me it could be made more secure but i dont really care anymore lol

[Micromecca]

I'm glad to see that script is still being used, i created it originally for multiple admin on non-static ip's, it is however a little useless without the rename part too 
especially if any of the names protected are in usergroups

[Victim]

Hey.

Does anyone have the link for the newest version of WCS with the config included. Or am i missing sumthing here?

[KM]

the betas don't have config files included for various reasons, and the latest non-beta version comes as a download which includes an example config file

[Victim]

So.. Where can i get the config for the latest version?

[KM]

depends what you mean by "latest"... as the betas are later than the final one

the betas don't come with an example config file, the latest final one the config file comes with the download for WCS on kingmacro.net - you can't actually get it without a config file

[James420]

Think he just wants a config file that shows the use of the new features.