[Dxspider-support] Question Regarding Password Enforcement

Ian Maude ijmaude at icloud.com
Fri Feb 7 14:20:23 GMT 2025 

In my opinion, passwords are pretty much next to useless.  The reason I say this is that they are only active for the local node.  What would make more sense is if that password was shared (obviously not openly) across all nodes, so that whatever node a user logs in to would honour that password.  Registration and passwords were introduced *during* 9/11 with DXSpider.  IIRC, Dirk released something like 9 updates that day.  Registration stops anyone not registered from logging in to a node with callsigns like ID1OT etc and posting.  This is a valuable and positive way of preventing fraud on the network.  Passwords have a certain amount of protection but not anywhere near as much.  Registration should be mandatory, passwords should be shared (encrypted in some way) across the network.  This would prevent a lot of abuse that we commonly see.  If CC cluster does not support passwords and registration, it should, Lee could easily add it.  Other softwares like AR Cluster and AK1A (I mean, good grief!) need to be replaced with supported software.  It costs nothing to do after all!

My 2 (whatever your lowest currency option is)

73 Ian


> On 7 Feb 2025, at 13:12, Kin via Dxspider-support <dxspider-support at tobit.co.uk> wrote:
> 
> Anthony,
>  
> Passwords are not deleted, the variable is used to condition whether or not all users are forcedto use passwords.
>  
> Look at you:
> https://github.com/EA3CV/dxspider_info/blob/main/Docs/Node_configuration_for_user_access.pdf
>  
> Kin EA3CV
>  
>  
> De: Dxspider-support <dxspider-support-bounces at tobit.co.uk> En nombre de Anthony (N2KI) via Dxspider-support
> Enviado el: viernes, 7 de febrero de 2025 13:28
> Para: Dirk Koopman <djk at tobit.co.uk>; The DXSpider Support list <dxspider-support at tobit.co.uk>
> CC: Anthony (N2KI) <n2ki.ham at gmail.com>
> Asunto: [Dxspider-support] Question Regarding Password Enforcement
>  
> Dirk, et al,
>  
> Currently, my node does not enforce a password requirement using the startup script using
>  
> set/var $main::passwdreq = 0
>  
> but I have users who have set passwords to use to login.  If I change the script to
>  
> set/var $main::passwdreq = 1
>  
> Will the current user passwords be retained?  Or will we have to start new?
>  
> Thanks!
> 
>  
> Regards,
> 
> Anthony 
>    N2KI
> 
> 
> 
> 
> 
> 
> 
> _______________________________________________
> Dxspider-support mailing list
> Dxspider-support at tobit.co.uk
> https://mailman.tobit.co.uk/mailman/listinfo/dxspider-support

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.tobit.co.uk/pipermail/dxspider-support/attachments/20250207/b5b06d00/attachment.htm>

More information about the Dxspider-support mailing list