This thread has been split from the pJIRC chat addon thread as it derailed the topic

first, thank you for the great integration of pJIRC. Looks great and works great.

Maybe there are some inherent problems with IRC why this cannot work the way I need it.

I run a maior chat. People talk to each other and need to trust that they do not talk to an impostor. This is what we have registration and passwords for.

My knowledge of IRC is only rudimentary. I understand that IRC has its own registration. I wonder how efficient it is and if one can register 20 000 people to a public shared channel. So one would need to register every user in UBB to the IRC channel to make it safe. And each time one changes his password in UBB he would have to change it in IRC

Probably not feasible, especially as UBB does not even store the password but rather an encrypted version of it.



Just found another chat that probably would lend itself to integration. It is free, works also with php, has integration with almost all board except ubb. Anyone wants to work on the integration? I might try but if the experts would do it, I would very much appreciate

http://www.phpopenchat.de/
http://phpopenchat.org/

The only working version I found was in a German kid's chat, http://www.schulhofchat.de/

But there must be others that escaped me.

Well, if you use services on your network you can register nicknames and no one but the password holder can use them. My network has the nickserv service if users wanted to hold their own accounts.

IRC is long established; i'd be willing to bet that it could hold many more people than say AOL has in their network...

I know flashchat can integrate into the UBB; but myself I don't like it and find less people have flash installed tha Java.

Thanks

* I got the chat to work all right at a3.com/chat/pinwand

* Would be nice if I could find an easy way to get the color adapted to the yellow sunshine template, but that is just cosmetical

* A little bug report:

at the very end of chat.php you forgot two backslashes before quotes, correct is

$ubbt_lang['IRC_VERSION'] . " by Gizmo."

* I would like to make security leaks a little harder by removing most information from the webpage into a setup file. Anyone with more practice then me can give the instructions?

* I would like to list the most important allowed commands (for private messages mainly, instead of what I did now>>
$ubbt_lang['AUTH_COMMANDS'] = "all-nick"; // Allowed Commands. All (with denied): all-command1-command2 None (with allowed): none+command1+command2

Especially to cut commands that make it easy to find out the server and channel being used.

* I would like to have a command to show the users in the chat in the "Who is online". Seems not to work as the users simply disappear from the board into the chat



No matter what other chat I might choose, these features are important.

Especially transferring moderation or admin rights from ubb to the chat. The most logical way would be to have a (dummy) chat board, whoever is moderator there is chat moderator


Once more, http://phpopenchat.org/ or http://phpopenchat.de/ is very interesting

you can adjust colors in the language file

a setup file? are we still talking about the pjirc? either way, any file would need to be world readable, thus downloadable by users.

Well, there is a list of commands at any irc server website, it's pretty out of scope of this script to force users to follow what i deem appropriate in the file... Thus, it uses "all commands".

the PJIRC site has information on bots and all of that fun stuff, it's their script, this is just an integration.

please stop promoting phpopenchat here, it's way out of scope for this thread. I will also not be creating an integration for it, so if you want it, please make a mod request.

I will look for another thread on phpopenchat, but I can say i am close to getting an integration to work.


About PJirc etc:
the problems are not intrinsic to the PJirc but rather to the integration. If a user is registered with a password using the normal IRC registration procedures, then there is no loophole, no backdoor how this password protection can be circumvented. IRC has been secured against most mischief.

Now if we do the password check on ubb board and then usher the user into the pJirc, then anyone that goes into the chat server using another software circumvents our password check. So this problem is not intrinsic to the PJirc but to the integration.

Probably the only way out would be synchronizing the ubb user password database with the irc chat server database, which would be a somewhat difficult task. Only then would there be no back door. Whenever a user enters, the password gets checked in the ubb database and would have to be entered into the irc chat server's database. That is work intensive, but probably would close the loophole. Unfortunately, the passwords are not stored in clear text, so maybe we cannot preventively transfer the ubb database to the chat server password data base, unless if it happens to use exactly the same enconding.

We are coming from differnet backgrounds.

Most people here want a little chat for a few nice well behaved people.


I worked with chats that get besieged by professional spammers, spam bots that make money peddling porn sites and sex cam chat.

People who have nothing to do in life then to disrupt a chat with obnoxious actions, like Nazi postings. Or by being impostors, seducing others to give them information thinking they talk to someone else

Your boards are secured against such disturbances, you take security seriously for the boards. A serious chat needs to be secured against such actions, and that is difficult.

A guy that installs PJirc on his own website, talking to the same IRC server, or a guy that telnets into the irc server, circumvents all our password checks.

Sorry for devaluing your integration. I don't mean to attack you or your qualifications, the integration is cute, it is nice, but it just is not safe against the simplest attacks.


I need a chat with safety measures

Again, it's not the pjirc, it's the irc server; the user would have to identify on the server; this is what i said before.

As for your phpopenchat, you need to make a thread; we have none on the topic currently (other than your postings about it here and flashchat).

As I mentioned before, FlashChat will integrate into your threads database, with permissions.

As for your postings here, I'll be seperating them from the pJIRC chat thread, as they're off topic postings.