Subj : webv4 telnet window To : DesotoFireflite From : echicken Date : Wed Mar 02 2022 20:22:28 Re: webv4 telnet window By: DesotoFireflite to echicken on Wed Mar 02 2022 13:21:23 ec>> If you use SyncTERM to connect directly to Gamesrv, via RLOGIN, and ec>> deliberately supply a valid username but invalid password, what do De> Logs in both ways, but with rlogin reversed, it uses the password as the De> name, and the name as a password, and creates a new account. Just to clarify, I meant that you should use a *valid* username and an *invalid* password - meaning an account that already exists on Gamesrv, but with a password that shouldn't work. Is that what you did? (I'm assuming that Gamesrv actually keeps user accounts and does password authentication. Maybe it doesn't. I don't know very much about it.) What I'm looking for is some indication that Gamesrv would log a failure to authenticate. ec>> ,'syncterm/115200' // terminal-type De> No difference, still won't log in through games. I guess that doesn't prove much, but makes a termtype issue less likely. De> maybe this is one of those unsolvable issues. I don't need it on the web, Nah, there's always a solution. Will we find it? I dunno. You said that after the connection to Gamesrv fails, the user is sent back to your games menu - correct? In other words, they're still connected to your BBS via ftelnet, they're just not on Gamesrv via the BBS. And the other items on your Games page work, just not the Gamesrv ones. De> Is there any chance this switch in gamesrv would have anything to do with De> the problem. If so what should it be set to for webv4. De> ; IP and Port to listen for flash socket policy requests on Definitely not. That's a legacy service for Flash applets, and nothing should be using it these days. The only other thing I can ask you to try at the moment is another change to rlogin.js. As last time, please copy the file to mods/ and change these lines: ,argv[2] // client-name ,argv[3] // server-name to these: ,user.alias // client-name ,user.security.password // server-name I may have those backward, so if the password ends up being used as the username, just swap those lines around. As before, delete the file after testing (unless it works, then just leave it for now). --- echicken electronic chicken bbs - bbs.electronicchicken.com --- þ Synchronet þ electronic chicken bbs - bbs.electronicchicken.com * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705) .