10-19-2020, 09:12 AM
The password is not very secure in the first place. It would not withstand someone using wireshark as you mentioned already.
It should just be music being played, would someone go through the trouble of changing it without permission? If someone connected and changed the music could you not just talk to them?
If Tim didn't want to add the feature you could always hire it out it is GPL 3 licensed. If the code was any good Tim might even add it to the mainline code base as well to make updates easier.
Code:
Note that the password option is not secure: passwords are sent in clear-text over the connection, and the client cannot verify the server’s identity.It should just be music being played, would someone go through the trouble of changing it without permission? If someone connected and changed the music could you not just talk to them?
If Tim didn't want to add the feature you could always hire it out it is GPL 3 licensed. If the code was any good Tim might even add it to the mainline code base as well to make updates easier.
