• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

BOINC passwords

Assimilator1

Assimilator1

Elite Member
Am I right in thinking that only 1 password can be used for both the BOINC install & my SETI account?
If so then whenever I get a friend or family member to install BOINC for me they have complete access to my account!:Q
Isn't there an option to have 2 different passwords?
 
It appears to me that anyone that puts BOINC/whateverproject on their computer to crunch under a existing account needs to know that BOINC/whateverproject email address and password. That does mean they have access to everything. So you need to only team up with people you really trust. 😉

You could install the program yourself on someone else's computer and just not tell them the e-mail address and password.
 
Yea I guess I'll have to do that.

The password can't be read from BOINC itself can it?

I gotta say though that this is really a poor idea:disgust: ,they should have an 'admin' and a 'user' password so that others can install it but not edit/delete my account!:shocked:
That said I do trust the people where I've installed BOINC but I don't like the idea of giving my password out.Sometimes its just not convenient to go there to install it myself either.

Cheers Greg🙂
(btw bad day ,courier hasn't delivered on some xmas presents:|)
 
Originally posted by: Assimilator1
I gotta say though that this is really a poor idea:disgust: ,they should have an 'admin' and a 'user' password so that others can install it but not edit/delete my account!:shocked:
Click to expand...
I wonder if that's something they could change now or in the future? Unfortunately, most people can't keep track of 1 password, let alone 2.




Originally posted by: Assimilator1
(btw bad day ,courier hasn't delivered on some xmas presents:|)
Click to expand...
courier... is that English for Santa Claus? 😛
 
I cannot access the password again through BOINC manager. But perhaps it is available to view through one of the config files, etc. Although I do not think most would go looking for it. And if they did, perhaps their machine is not the best to put it on. 🙂
 
Yea I'm not worried about any serious attempts to hack the client to get the password ,I'm just potential concerned about casual looking through BOINC & finding the password ,though I can't see it in there.

I just don't like the idea of giving my password out or having to install it myself for some occasions.

Spacehead
They could have it so 2 different passwords were enabled only as an extra option when needed.

And Santa didn't fail me 😉 Citylink did.
 
If you are wanting to have them install it, and thus not see the password or Project ID, then perhaps something like a network install that already has the information. Or maybe just giving a certain file and overwriting it in the directory. Have not tried any of that, so not sure what is involved. Perhaps someone like Crazee could be of better help. 😉
 
There's a password in gui_rpc_auth.cfg, for control via "Select Computer" from the Boinc Manager menu

"Password protection
If you place a password in a file gui_rpc_auth.cfg in your BOINC directory, GUI RPCs must be authenticated using the password.

If this file is not present, there is no password protection. "

Not at all sure how this relates to entering a password on the (say) Rosetta preferences/ your account/ enter-change password, they must be different passwords, I think 😕
Not even sure if a password on the Rosetta site would carry over to the SETI site, don't think so but wouldn't like to try 🙁

I'm rambling, I know 🙂
 
Well, if you installs BOINC as service, only installing user/admins has access to the BOINC-directory...

For anyone that does have read-access to the BOINC-directory, they can easily find the account-key for a project, and can therefore login to the web-site and change whatever they wants. No, they don't get your password, but since they can after logging-in with the account-key edit both email-address and set a new password, in reality they have full control...



As for gui_rpc_auth.cfg, for extra security-reasons this file is always generated if not present in v5.2.x, with a random password. You can still use BOINC Manager to monitor/control the local computer without knowing this password, but other users that does not have read-access to BOINC-directory will not manage to read the password-file so will fail to connect even on local computer, if they don't know the password.

You can edit gui_rpc_auth.cfg and set a password of your choise, and even a blank password. But, if you deletes the file, next time you re-start BOINC it's re-generated.

For connecting remotely from another computer, only computers/ip-address listed in remote_hosts.cfg is allowed remote connection-access.
 
Originally posted by: Rattledagger
Well, if you installs BOINC as service, only installing user/admins has access to the BOINC-directory...

For anyone that does have read-access to the BOINC-directory, they can easily find the account-key for a project, and can therefore login to the web-site and change whatever they wants. No, they don't get your password, but since they can after logging-in with the account-key edit both email-address and set a new password, in reality they have full control...



As for gui_rpc_auth.cfg, for extra security-reasons this file is always generated if not present in v5.2.x, with a random password. You can still use BOINC Manager to monitor/control the local computer without knowing this password, but other users that does not have read-access to BOINC-directory will not manage to read the password-file so will fail to connect even on local computer, if they don't know the password.

You can edit gui_rpc_auth.cfg and set a password of your choise, and even a blank password. But, if you deletes the file, next time you re-start BOINC it's re-generated.

For connecting remotely from another computer, only computers/ip-address listed in remote_hosts.cfg is allowed remote connection-access.
Click to expand...


Thaks RD, that's what I meant to say 😀 😱

Edit:
Gotta love these translators 😀 😀 :beer:
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top