On Wed, 2 Feb 2005, Nicholas Clark wrote:
The same hack as rt.cpan.org uses - attempt a login on pause.cpan.org using the ID and password provided. If PAUSE accepts it, then you know it's the real thing.
That would mean my server if cracked could be used to collect PAUSE passwords. I am not sure I'd like to have that responsibility.
I am thinking of allowing users to use a "screen-name" and if I manage to authenticate that you are a PAUSE user (using the suggested @cpan.org e-mail trick) then you will be able to uese the PAUSE::yourname screen name.
Sounds like overcomlicating things.
But it is nearly 3 am.
Gabor
