Cannot use empty password in action mode #37
Labels
wontfix
This will not be worked on
Comments
|
Empty password is unsecure. From Valve RCON protocol documentation: |
|
I agree with you that it's not secure, but regardless there are still servers which don't have a password set, so I still see a legitimate use-case for this since this is just a cli interacting with other servers. If the other servers have a password set, let the server auth reject rather than requiring it to be set in this tool (especially because you can provide an empty password in interactive mode already with this tool). |
3 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When connecting to an rcon server, you may legitimately want to provide an empty string for a password. This is possible in interactive mode, however in 'action' mode, an error will always be thrown if password is not specified, or even if it is with an empty string:
rcon-cli/internal/executor/executor.go
Lines 330 to 332 in 15198b3
This makes it impossible to connect to servers with an empty password in action mode. I would propose either adding a flag that allows an empty password, or simply not throwing this error at all since an empty password is a legitimate use-case.
If you're interested in accepting either proposal, I'm also willing to make a PR if you would like.
The text was updated successfully, but these errors were encountered: