New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TrustEveryoneFactory in chat? #2161
Comments
This was introduced in the change from PircBotX to KittehIRC and was used to replicate the configuration int PircBotx as seen here downlords-faf-client/src/main/java/com/faforever/client/chat/PircBotXChatService.java Line 393 in 7262ced
The purpose being to maintain the current functionality in the change over as kitteh connects over SSL by default. |
I believe the trust all certificates was originally used due to certificate issues with the irc server but am not certain and this change mainly was focused on converting the service to similar functionality. However the service can be changed but would require input from Brutus or if you know as from my investigation the SSL was disabled since PircBotX was first implemented. |
Since our reverse proxy supports raw TCP streams we could use TLS if we want to |
With the chat sending passwords over the wire, (secure) TLS would surely be preferred. Oh, wait, we don't need to because we |
yeah we currently still do perform that hashing acrobatics which would be nice to simplify |
i just need to know from Brutus how the irc has its TLS configured |
Just hopping in every now and then to see what you guys are doing :-)
For instance, why would we disable SSL verification and not even comment it in the code?
downlords-faf-client/src/main/java/com/faforever/client/chat/TrustEveryoneFactory.java
Line 11 in 6d12770
I'm pretty sure this isn't a smart move ;)
The text was updated successfully, but these errors were encountered: