| |
HB1PMS > JNOS 12.02.20 12:32l 155 Lines 5433 Bytes #999 (0) @ WW
BID : 1754HB1PMS
Read: GAST
Subj: Jnos updates 2.0m.1
Path: DBO595<DBX320<FRB024<NL3TD<NL3PRC<GY1BBS<HB1BBS
Sent: 200211/2115Z 7984@HB1BBS.ZL.NLD.EU BPQ6.0.19
Van: HB1PMS@HB1BBS.ZL.NLD.EU
differences between 2.0m.1 and 2.0m - February 7, 2020
------------------------------------------------------
There are other features I have added to this latest update, but the main
highlight
still remains (by far) the revamp of how passwords are now managed by JNOS.
If you
are interested in the other features, please search this document for :
"Save and Load ax25 Heard List"
* Password Management
-------------------
This is something I have been wanting to do for a long time, unfortunately
it
is a bit technical and might be a handful to some, for that I apologize. I
know
it's just JNOS, so why the strict security thing ? Please contact me if you
have
any concerns or are struggling with any of it, I will gladly help you out.
Highlights of this update are :
No more ftpusers file
BBS user passwords are now hashed, no more cleartext
Winlink CMS password is properly encrypted again
NEW - compiles with gcc 6.3.1 (devtoolset-6), link fails, BUT the solution
is simple, edit makefile, make sure 'LCURSES = -lncurses -ltinfo'.
Updates to the patch file - see further down :
29Jan2020 - new ax heard list save and load functions
21Jan2020 - the ftpserver does not support arguments to the LIST
command, so
added code to ignore the arguments (for now). Otherwise, they become
part of
the full file path, and nothing good happens. Thanks Gus (i0ojj) for
finding
this after using gFTP (which adds -aL to the LIST command). Supposedly
this
can be disabled in options - see 'https://www.gftp.org/faq.html' for
info.
(postnote, gFTP still has issues with this, so I might remove the mod)
19Jan2020 - added '#ifdef BBS_PASSWD_REQ' to mailbox.c, thanks Bob
(ve3tok),
so you can choose whether you want to have the new BBS command 'PA'
included
or not. The default is to NOT include it, based on feedback received so
far.
18Jan2020 - added ftpserv.c to fix BROKEN ftp client, thanks Gus
(i0ojj). The
fix is a bit of a kludge, since the existing code attachs permissions to
the
end of the path (see ftplogin and permcheck functions), rather ugly. I'm
not
not sure if anyone does multiple paths in their ftpuser file anymore, or
if
they ever did, please report any issues if it comes up, thank you.
This is a PATCH to put on top of official 2.0m only, I am not putting this
into
the rsync area right now, consider this a runtime candidate, it still needs
more
testing on other linux distributions, let me know how it goes - thank you !
Patch for 2.0m :
"https://www.langelaar.net/jnos2/downloads/linux/2.0m.1.update.tar.gz"
Documentation :
"https://www.langelaar.net/jnos2/documents/changes.2.0m.1.txt"
I have not tested convers, and done limited testing on ftp user logins.
DO NOT use this update IF any of the following apply to your setup :
1) This update breaks MD5AUTHENTICATE - clear text passwords no longer
possible
Unfortunately MD5AUTHENTICATE requires clear text passwords to work, and
with this new release, that is no longer possible, since passwords are
no
longer stored clear text and not encrypted either, instead we are using
hash:salt pairs, which are a one way ticket, you can't get clear text.
I suppose we could consider a work around of sorts for this (later) ?
2) This update breaks SMTP_VALIDATE_LOCAL_USERS - new function required
3) This update breaks PPP - userlookup needs to be rewritten
* Save and Load ax25 Heard List
-----------------------------
The ax25 heard list can now be saved to a file or loaded (restored) from a
file.
Decided to also revamp the 'ax heard' command at the JNOS console, since
there are
now several commands available, all of which really should be categorized
as being
subcommands of 'ax heard' - so with this update, the new syntax is as
follows :
Usage : ax heard < show | dest > [<iface>]
ax heard < save | load >
The 'dest' and 'hearddest' commands are gone, absorbed by the above syntax.
The heard data is kept in a new 'AxHeardFile' in the JNOS root directory.
There are two files to update (ax25cmd.c and axheard.c), they have been
added
to the patch file noted under the "Password Management" section), so if
you're
not interested in the password code, just extract the 2 files.
Add '#define BACKUP_AXHEARD' to your config.h, then :
rm ax25cmd.o axheard.o ; make
Please let me know if you find any issues with unexpected time stamps.
73 Henk.
======================================================================
_ _ ____ __ ____ ____ _____
| | | | _ \/_ | _ \| _ \ / ____| SYS: Henk (hb1nos@hb1bbs.com)
| |__| | |_) || | |_) | |_) | (___ QTH: Ouwerkerk - JO11XO
| __ | _ < | | _ <| _ < \___ \ BBS: HB1BBS.ZLD.NLD.EU
| | | | |_) || | |_) | |_) |____) | QRV: 27.235 MHz (FM 1200bps)
|_| |_|____/ |_|____/|____/|_____/ WEB: www.hb1bbs.com
======================================================================
** Host of BPQ Netrom/Node NLDHUB::NL9HUB 85.214.163.10 UDP 93
======================================================================
** This message is generated with Sally 7.2.033
----------------------------------------------------------------------
** Timed dinsdag 11 februari 2020 22:12 West-Europa (standaardtijd)
** BBS HB1PMS@HB1BBS.ZL.NLD.EU
Lese vorherige Mail | Lese naechste Mail
| |