decode ip #242
Labels
No Label
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
No Milestone
No Assignees
4 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: tslocum/tinyib#242
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Hi! In the rare chance that the supermoderator was curious about an ip, can you pls say how to decode the hashed ip? Hashing is great for overall privacy and security, its good for superadmins to have the option tho :)
This would be great, server admins can access all IP connections anyways, and the hashes look ugly and confusing.
As far as I can tell, the hashing is done with Blowfish, with a salt generated from your tripseed. It wouldn't be difficult to figure out the salt as the board owner since you know your own tripseed, but it'd be almost impossible to decode the hash. If it was trivial to decode the hash, there wouldn't be much of a point to hashing at all.
I don't think TinyIB could implement this without, in association with each post, storing the raw IP in addition to the hashed IP, and storing raw IPs would introduce a lot of additional risk. Additionally, your webserver likely already keeps an access log you can check, if you needed to see the connecting IPs for the purpose of, e.g., identifying IP ranges that abuse or spam are coming from.
Thanks, @ChristopherCormier. Just wanted to add that this was a very intentional design choice. I do not intend to support decrypting IP addresses.