API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Apr 6th, 2018
386
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 14.97 KB | None | 0 0
raw download clone embed print report
  1. /* doc/example.conf - brief example configuration file
  2. *
  3. * Copyright (C) 2000-2002 Hybrid Development Team
  4. * Copyright (C) 2002-2005 ircd-ratbox development team
  5. * Copyright (C) 2005-2006 charybdis development team
  6. *
  7. * $Id: example.conf 3582 2007-11-17 21:55:48Z jilles $
  8. *
  9. * See reference.conf for more information.
  10. */
  11.  
  12. /* Extensions */
  13. loadmodule "extensions/chm_adminonly.so";
  14. loadmodule "extensions/chm_operonly.so";
  15. #loadmodule "extensions/chm_sslonly.so";
  16. #loadmodule "extensions/chm_operonly_compat.so";
  17. #loadmodule "extensions/chm_quietunreg_compat.so";
  18. #loadmodule "extensions/chm_sslonly_compat.so";
  19. #loadmodule "extensions/createauthonly.so";
  20. loadmodule "extensions/extb_account.so";
  21. loadmodule "extensions/extb_canjoin.so";
  22. loadmodule "extensions/extb_channel.so";
  23. loadmodule "extensions/extb_extgecos.so";
  24. loadmodule "extensions/extb_oper.so";
  25. loadmodule "extensions/extb_realname.so";
  26. loadmodule "extensions/extb_server.so";
  27. loadmodule "extensions/extb_ssl.so";
  28. loadmodule "extensions/hurt.so";
  29. loadmodule "extensions/ip_cloaking_3.so";
  30. #loadmodule "extensions/ip_cloaking_old.so";
  31. loadmodule "extensions/m_findforwards.so";
  32. loadmodule "extensions/m_identify.so";
  33. loadmodule "extensions/m_mkpasswd.so";
  34. loadmodule "extensions/m_webirc.so";
  35. loadmodule "extensions/m_cycle.so";
  36. loadmodule "extensions/m_oaccept.so";
  37. loadmodule "extensions/m_opme.so";
  38. loadmodule "extensions/m_ojoin.so";
  39. loadmodule "extensions/m_omode.so";
  40. loadmodule "extensions/m_olist.so";
  41. loadmodule "extensions/m_okick.so";
  42. loadmodule "extensions/m_forcejoin.so";
  43. loadmodule "extensions/m_forcepart.so";
  44. loadmodule "extensions/m_forcenick.so";
  45. loadmodule "extensions/m_forcequit.so";
  46. loadmodule "extensions/no_oper_invis.so";
  47. loadmodule "extensions/show_whois.so";
  48. loadmodule "extensions/sno_farconnect.so";
  49. loadmodule "extensions/sno_globalkline.so";
  50. loadmodule "extensions/sno_globaloper.so";
  51.  
  52. serverinfo {
  53. name = "shining.foxatomic.net";
  54. sid = "42X";
  55. description = "Foxatomic Public server";
  56. network_name = "FoxAtomicNET";
  57. helpchan = "#help";
  58. helpurl = "http://www.mynet.net/help";
  59. hub = yes;
  60.  
  61. /* ssl_private_key: our ssl private key */
  62. ssl_private_key = "etc/ssl.key";
  63.  
  64. /* ssl_cert: certificate for our ssl server */
  65. ssl_cert = "etc/ssl.pem";
  66.  
  67. /* ssl_dh_params: DH parameters, generate with openssl dhparam -out dh.pem 1024 */
  68. ssl_dh_params = "etc/dh.pem";
  69.  
  70. /* ssld_count: number of ssld processes you want to start, if you
  71. * have a really busy server, using N-1 where N is the number of
  72. * cpu/cpu cores you have might be useful. A number greater than one
  73. * can also be useful in case of bugs in ssld and because ssld needs
  74. * two file descriptors per SSL connection.
  75. */
  76. ssld_count = 1;
  77.  
  78. /* default max clients: the default maximum number of clients
  79. * allowed to connect. This can be changed once ircd has started by
  80. * issuing:
  81. * /quote set maxclients <limit>
  82. */
  83. default_max_clients = 1024;
  84. };
  85.  
  86. admin {
  87. name = "Lazy admin (lazya)";
  88. description = "AthemeNET client server";
  89. email = "adamh1989@gmail.com";
  90. };
  91.  
  92. log {
  93. fname_userlog = "logs/userlog";
  94. #fname_fuserlog = "logs/fuserlog";
  95. fname_operlog = "logs/operlog";
  96. #fname_foperlog = "logs/foperlog";
  97. fname_serverlog = "logs/serverlog";
  98. #fname_klinelog = "logs/klinelog";
  99. fname_killlog = "logs/killlog";
  100. fname_operspylog = "logs/operspylog";
  101. #fname_ioerrorlog = "logs/ioerror";
  102. };
  103.  
  104. /* class {} blocks MUST be specified before anything that uses them. That
  105. * means they must be defined before auth {} and before connect {}.
  106. */
  107. class "users" {
  108. ping_time = 2 minutes;
  109. number_per_ident = 10;
  110. number_per_ip = 10;
  111. number_per_ip_global = 50;
  112. cidr_ipv4_bitlen = 24;
  113. cidr_ipv6_bitlen = 64;
  114. number_per_cidr = 200;
  115. max_number = 3000;
  116. sendq = 400 kbytes;
  117. };
  118.  
  119. class "opers" {
  120. ping_time = 5 minutes;
  121. number_per_ip = 10;
  122. max_number = 1000;
  123. sendq = 1 megabyte;
  124. };
  125.  
  126. class "server" {
  127. ping_time = 5 minutes;
  128. connectfreq = 5 minutes;
  129. max_number = 1;
  130. sendq = 4 megabytes;
  131. };
  132.  
  133. listen {
  134. /* If you want to listen on a specific IP only, specify host.
  135. * host definitions apply only to the following port line.
  136. */
  137. #host = "159.65.31.80";
  138. port = 5000, 6665 .. 6669;
  139. sslport = 6697;
  140.  
  141. #host = "127.0.0.1";
  142. #port = 5000;
  143.  
  144. /* Listen on IPv6 (if you used host= above). */
  145. #host = "3ffe:1234:a:b:c::d";
  146. #port = 5000, 6665 .. 6669;
  147. #sslport = 9999;
  148. };
  149.  
  150. /* auth {}: allow users to connect to the ircd (OLD I:)
  151. * auth {} blocks MUST be specified in order of precedence. The first one
  152. * that matches a user will be used. So place spoofs first, then specials,
  153. * then general access, then restricted.
  154. */
  155. auth {
  156. /* user: the user@host allowed to connect. Multiple IPv4/IPv6 user
  157. * lines are permitted per auth block. This is matched against the
  158. * hostname and IP address (using :: shortening for IPv6 and
  159. * prepending a 0 if it starts with a colon) and can also use CIDR
  160. * masks.
  161. */
  162. user = "*@172.16.0.0/12";
  163. user = "*test@123D:B567:*";
  164.  
  165. /* auth_user: The username (authenticated via SASL or PASS) allowed
  166. * to connect. You are able to put multiple auth_user lines. If people
  167. * are authenticating via SASL in this way, it is recommended to comment
  168. * out the password option below. You will also *NEED* to specify a user
  169. * line above auth_user, this can safely be "*@*", however.
  170. */
  171. auth_user = "jilles";
  172. auth_user = "jdhore";
  173.  
  174. /* password: an optional password that is required to use this block.
  175. * By default this is not encrypted, specify the flag "encrypted" in
  176. * flags = ...; below if it is.
  177. */
  178. password = "letmein";
  179.  
  180. /* spoof: fake the users user@host to be be this. You may either
  181. * specify a host or a user@host to spoof to. This is free-form,
  182. * just do everyone a favour and dont abuse it. (OLD I: = flag)
  183. */
  184. spoof = "I.still.hate.packets";
  185.  
  186. /* autojoin: Channel (or channels, comma-seperated) to join users
  187. * in this auth block to on connect. Note that this won't join
  188. * the user through any bans or otherwise restrictive chmodes.
  189. */
  190. autojoin = "#Lounge";
  191.  
  192.  
  193. /* Possible flags in auth:
  194. *
  195. * encrypted | password is encrypted with mkpasswd
  196. * spoof_notice | give a notice when spoofing hosts
  197. * exceed_limit (old > flag) | allow user to exceed class user limits
  198. * kline_exempt (old ^ flag) | exempt this user from k/g/xlines&dnsbls
  199. * dnsbl_exempt | exempt this user from dnsbls
  200. * spambot_exempt | exempt this user from spambot checks
  201. * shide_exempt | exempt this user from serverhiding
  202. * jupe_exempt | exempt this user from generating
  203. * warnings joining juped channels
  204. * resv_exempt | exempt this user from resvs
  205. * flood_exempt | exempt this user from flood limits
  206. * USE WITH CAUTION.
  207. * no_tilde (old - flag) | don't prefix ~ to username if no ident
  208. * need_ident (old + flag) | require ident for user in this class
  209. * need_ssl | require SSL/TLS for user in this class
  210. * need_sasl | require SASL id for user in this class
  211. */
  212. flags = kline_exempt, exceed_limit;
  213.  
  214. /* class: the class the user is placed in */
  215. class = "opers";
  216. };
  217.  
  218. /* Example WEBIRC authblock */
  219. auth {
  220. /* user: webirc@IP.OF.YOUR.WEBIRC . the webirc@ part is required */
  221. user = "webirc@159.65.31.80";
  222.  
  223. /* password: password the webirc client sends in the WEBIRC command.
  224. * You can use a encrypted password here (see above auth block).
  225. */
  226. password = "tigerpassword";
  227.  
  228. /* spoof: This is required to keep it what it is currently if you
  229. * want the webirc client to show the users' real host as their
  230. * host on IRC.
  231. */
  232. spoof = "webirc.";
  233. class = "users";
  234. };
  235.  
  236. auth {
  237. user = "*@109.169.31.4";
  238. user = "*@107.161.19.53";
  239. user = "*@107.161.19.109";
  240. password = "tigerpassword";
  241. spoof = "webirc.";
  242. class = "users";
  243.  
  244. };
  245.  
  246. auth {
  247. user = "*@*";
  248. class = "users";
  249. };
  250.  
  251. /* privset {} blocks MUST be specified before anything that uses them. That
  252. * means they must be defined before operator {}.
  253. */
  254. privset "local_op" {
  255. privs = oper:local_kill, oper:operwall;
  256. };
  257.  
  258. privset "server_bot" {
  259. extends = "local_op";
  260. privs = oper:kline, oper:remoteban, snomask:nick_changes;
  261. };
  262.  
  263. privset "global_op" {
  264. extends = "local_op";
  265. privs = oper:global_kill, oper:routing, oper:kline, oper:unkline, oper:xline,
  266. oper:resv, oper:mass_notice, oper:remoteban;
  267. };
  268.  
  269. privset "admin" {
  270. extends = "global_op";
  271. privs = oper:admin, oper:die, oper:rehash, oper:spy, oper:override;
  272. };
  273.  
  274. connect "services.foxatomic.net" {
  275. host = "*";
  276. send_password = "tigerpassword";
  277. accept_password = "tigerpassword";
  278. port = 5000;
  279. hub_mask = "*";
  280. class = "server";
  281. flags = topicburst;
  282.  
  283. #fingerprint = "c77106576abf7f9f90cca0f63874a60f2e40a64b";
  284.  
  285. /* If the connection is IPv6, uncomment below.
  286. * Use 0::1, not ::1, for IPv6 localhost. */
  287. #aftype = ipv6;
  288. };
  289.  
  290. connect "london.foxatomic.net" {
  291. host = "*";
  292. send_password = "tigerpassword";
  293. accept_password = "tigerpassword";
  294. port = 6667;
  295. hub_mask = "*";
  296. class = "server";
  297. flags = topicburst;
  298.  
  299. #fingerprint = "c77106576abf7f9f90cca0f63874a60f2e40a64b";
  300.  
  301. /* If the connection is IPv6, uncomment below.
  302. * Use 0::1, not ::1, for IPv6 localhost. */
  303. #aftype = ipv6;
  304. };
  305.  
  306.  
  307.  
  308. service {
  309. name = "services.foxatomic.net";
  310. };
  311.  
  312. cluster {
  313. name = "*";
  314. flags = kline, tkline, unkline, xline, txline, unxline, resv, tresv, unresv;
  315. };
  316.  
  317. shared {
  318. oper = "*@*", "*";
  319. flags = all;
  320. };
  321.  
  322. /* exempt {}: IPs that are exempt from Dlines and rejectcache. (OLD d:) */
  323. exempt {
  324. ip = "127.0.0.1";
  325. };
  326.  
  327. channel {
  328. #disabledmodes = "ME";
  329. autochanmodes = "nt";
  330. autotopic = "Please set a topic, and if necessary, register this channel.";
  331. admin_on_channel_create = no;
  332. exemptchanops = "NT";
  333. use_halfop = yes;
  334. use_admin = yes;
  335. use_owner = yes;
  336. use_knock = yes;
  337. use_local_channels = yes;
  338. knock_delay = 5 minutes;
  339. knock_delay_channel = 1 minute;
  340. max_chans_per_user = 15;
  341. max_bans = 100;
  342. max_bans_large = 500;
  343. default_split_user_count = 0;
  344. default_split_server_count = 0;
  345. no_create_on_split = no;
  346. no_join_on_split = no;
  347. burst_topicwho = yes;
  348. kick_on_split_riding = no;
  349. only_ascii_channels = no;
  350. cycle_host_change = yes;
  351. host_in_topic = yes;
  352. resv_forcepart = yes;
  353. channel_target_change = yes;
  354. };
  355.  
  356. serverhide {
  357. flatten_links = yes;
  358. links_delay = 5 minutes;
  359. hidden = no;
  360. disable_hidden = no;
  361. };
  362.  
  363. /* These are the blacklist settings.
  364. * You can have multiple combinations of host and rejection reasons.
  365. * They are used in pairs of one host/rejection reason.
  366. *
  367. * These settings should be adequate for most networks, and are (presently)
  368. * required for use on AthemeNet.
  369. *
  370. * Word to the wise: Do not use blacklists like SPEWS for blocking IRC
  371. * connections.
  372. *
  373. * As of charybdis 2.1.3, you can do some keyword substitution on the rejection
  374. * reason. The available keyword substitutions are:
  375. *
  376. * ${ip} - the user's IP
  377. * ${host} - the user's canonical hostname
  378. * ${dnsbl-host} - the dnsbl hostname the lookup was done against
  379. * ${nick} - the user's nickname
  380. * ${network-name} - the name of the network
  381. *
  382. * Note: AHBL (the providers of the below *.ahbl.org BLs) request that they be
  383. * contacted, via email, at admins@2mbit.com before using these BLs.
  384. * See <http://www.ahbl.org/services.php> for more information.
  385. */
  386.  
  387. alias "NickServ" {
  388. target = "NickServ";
  389. };
  390.  
  391. alias "ChanServ" {
  392. target = "ChanServ";
  393. };
  394.  
  395. alias "OperServ" {
  396. target = "OperServ";
  397. };
  398.  
  399. alias "MemoServ" {
  400. target = "MemoServ";
  401. };
  402.  
  403. alias "HostServ" {
  404. target = "HostServ";
  405. };
  406.  
  407. alias "BotServ" {
  408. target = "BotServ";
  409. };
  410.  
  411. alias "InfoServ" {
  412. target = "InfoServ";
  413. };
  414.  
  415. alias "GroupServ" {
  416. target = "GroupServ";
  417. };
  418.  
  419. alias "NS" {
  420. target = "NickServ";
  421. };
  422.  
  423. alias "CS" {
  424. target = "ChanServ";
  425. };
  426.  
  427. alias "OS" {
  428. target = "OperServ";
  429. };
  430.  
  431. alias "MS" {
  432. target = "MemoServ";
  433. };
  434.  
  435. alias "HS" {
  436. target = "HostServ";
  437. };
  438.  
  439. alias "BS" {
  440. target = "BotServ";
  441. };
  442.  
  443. alias "IS" {
  444. target = "InfoServ";
  445. };
  446.  
  447. alias "GS" {
  448. target = "GroupServ";
  449. };
  450.  
  451. general {
  452. hide_error_messages = opers;
  453. hide_spoof_ips = yes;
  454.  
  455. /*
  456. * default umodes: umodes to set upon connection
  457. * If you have enabled the ip_cloaking extension, and you wish for
  458. * incoming clients to be cloaked upon connection, +x must be in
  459. * the umode string below.
  460. */
  461. default_umodes = "+ix";
  462.  
  463. default_operstring = "is an IRC Operator";
  464. default_adminstring = "is a Server Administrator";
  465. default_operhost = "staff.foxatomic.net";
  466. #static_quit = "I like turtles!";
  467. servicestring = "is a Network Service";
  468.  
  469. disable_fake_channels = no;
  470. hide_channel_below_users = 3;
  471. tkline_expire_notices = no;
  472. default_floodcount = 10;
  473. failed_oper_notice = yes;
  474. dots_in_ident=2;
  475. min_nonwildcard = 4;
  476. min_nonwildcard_simple = 3; max_accept = 100;
  477. max_monitor = 100;
  478. anti_nick_flood = yes;
  479. max_nick_time = 20 seconds;
  480. max_nick_changes = 5;
  481. anti_spam_exit_message_time = 1 minutes;
  482. use_part_messages = yes;
  483. ts_warn_delta = 30 seconds;
  484. ts_max_delta = 5 minutes;
  485. client_exit = yes;
  486. collision_fnc = yes;
  487. global_snotices = yes;
  488. dline_with_reason = yes;
  489. kline_delay = 0 seconds;
  490. kline_with_reason = yes;
  491. kline_reason = "K-Lined";
  492. custom_cloak = "cloaked";
  493. identify_service = "NickServ@services.foxatomic.net";
  494.  
  495.  
  496.  
  497. identify_command = "IDENTIFY";
  498. non_redundant_klines = yes;
  499. warn_no_nline = yes;
  500. use_propagated_bans = yes;
  501. stats_e_disabled = no;
  502. stats_c_oper_only=no;
  503. stats_h_oper_only=no;
  504. stats_y_oper_only=no;
  505. stats_o_oper_only=yes;
  506. stats_P_oper_only=no;
  507. stats_i_oper_only=masked;
  508. stats_k_oper_only=masked;
  509. map_oper_only = no;
  510. links_oper_only = no;
  511. operspy_admin_only = no;
  512. operspy_dont_care_user_info = no;
  513. secret_channels_in_whois = no;
  514. caller_id_wait = 1 minute;
  515. pace_wait_simple = 1 second;
  516. pace_wait = 10 seconds;
  517. short_motd = no;
  518. ping_cookie = no;
  519. connect_timeout = 30 seconds;
  520. default_ident_timeout = 5;
  521. disable_auth = no;
  522. no_oper_flood = yes;
  523. true_no_oper_flood = no;
  524. max_targets = 4;
  525. client_flood = 20;
  526. use_whois_actually = no;
  527. oper_only_umodes = operwall, locops, servnotice;
  528. oper_umodes = locops, servnotice, operwall, wallop;
  529. oper_snomask = "+s";
  530. burst_away = yes;
  531. nick_delay = 0 seconds; # 15 minutes if you want to enable this
  532. reject_ban_time = 1 minute;
  533. reject_after_count = 3;
  534. reject_duration = 5 minutes;
  535. throttle_duration = 60;
  536. throttle_count = 4;
  537. static_parts = no;
  538. static_part_reason = " ";
  539. expire_override_time = 5 minutes;
  540. hide_opers = no;
  541. };
  542.  
  543. modules {
  544. path = "modules";
  545. path = "modules/autoload";
  546. };
  547. .include "opers.conf"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!