1. Forum
  2. FidoNet
  3. SYNC PROGRAMMING

  • exec/broker.js

    From Deucе@1:103/705 to Git commit to main/sbbs/master on Fri Jan 31 20:46:08 2025
    https://gitlab.synchro.net/main/sbbs/-/commit/39cfd9f8907867a961d1a651
    Modified Files:
    exec/broker.js
    Log Message:
    Make broker.js capable of running as a static service.
    --- SBBSecho 3.23-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Deucе@1:103/705 to Git commit to main/sbbs/master on Fri Jan 31 23:57:08 2025
    https://gitlab.synchro.net/main/sbbs/-/commit/c5aaba6c72b31b74e3179f87
    Modified Files:
    exec/broker.js
    Log Message:
    Add some documentation about how the script works.

    As always when writing documentation, fix things that aren't quite
    right... we now schedule nextPacket, but run each packet to
    completion as long as we have all the bytes.
    --- SBBSecho 3.23-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Deucе@1:103/705 to Git commit to main/sbbs/master on Sat Feb 1 12:41:46 2025
    https://gitlab.synchro.net/main/sbbs/-/commit/7907e9a5c6fce570b1f4cf0b
    Modified Files:
    exec/broker.js
    Log Message:
    Call client_add()/client_remove() as appropriate

    For when running as a service.
    --- SBBSecho 3.23-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Deucе@1:103/705 to Git commit to main/sbbs/master on Sun Feb 2 19:09:44 2025
    https://gitlab.synchro.net/main/sbbs/-/commit/94a109ca3acb0db20f314926
    Modified Files:
    exec/broker.js
    Log Message:
    Support uid/pw only auth

    There are now two ways to authenticate with the broker:
    1) TLS PSK with a sysop account, and set the password field at the
    MQTT level to the system password (user field, if present is
    ignored). This is the prefered method as it provides mutual
    authentication and you simply can't steal credentials with MITM.
    2) Synchronet TLS certificate, sysop username and the users password
    followed by a colon, followed by the system password. The server
    authentication will now depend on the appropriate trust chain in
    the client. If using a Let's Encrypt certificate for example,
    you can' securely connect to localhost with this method.

    tools and libraries tend to allow TLS-PSK with password at the MQTT
    level, many GUI tools do not allow TLS-PSK.
    --- SBBSecho 3.23-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)