ViewVC Help
View File | Revision Log | Show Annotations | View Changeset | Root Listing
root/svn/hopm/releases/1.0.0beta1/README
Revision: 5060
Committed: Mon Dec 22 13:54:58 2014 UTC (9 years, 3 months ago) by michael
Original Path: hopm/trunk/README
File size: 3646 byte(s)
Log Message:
- Update INSTALL & README

File Contents

# Content
1 Introduction
2 ------------
3
4 HOPM (Hybrid Open Proxy Monitor) is an open proxy monitoring bot designed for
5 Hybrid based ircds. The bot is designed to monitor an individual server (all
6 servers on the network have to run their own bot) with a local operator {}
7 block and monitor connections. When a client connects to the server, HOPM will
8 scan the connection for insecure proxies. Insecure proxies are determined by
9 attempting to connect the proxy back to another host (usually the IRC server in
10 question).
11
12 HOPM is written ground-up in C language, concept derived from wgmon. It
13 improves on wgmon with HTTP support, faster scanning (it can scan clients
14 simultaneously), better layout (scalability), and dnsbl support.
15
16
17 Requirements
18 ------------
19
20 o An IRCd which presents connection notices in a format which HOPM
21 recognises (see below).
22
23 o A host with full connectivity for all the ports you wish to scan. i.e. is
24 NOT transparently proxied -- many domestic internet connections have port 80
25 transparently proxied and this produces completely unpredictable results,
26 sometimes as severe as 100% of clients being K:lined!
27
28 o A unix OS with GNU Make, a C99 compiler, etc..
29
30 o Permission from your users to portscan them for open proxies.
31
32
33 Compatibility
34 -------------
35
36 ircd-hybrid 8.2.1
37
38 HOPM is designed for ircd-hybrid. It is easily suitable for any other ircd with
39 little modification (connregex in hopm.conf). However, if an ircd does not send
40 IP's in a connection notice, HOPM will not be effective because the time it takes
41 to resolve a hostname would be a significant factor to HOPM's efficiency.
42
43
44 Command Line Options
45 --------------------
46
47 -c <name> Config name. By default HOPM reads hopm.conf, "-c foo"
48 will cause HOPM to read foo.conf. The primary use for
49 this is to run multiple HOPMs from one directory.
50
51 -d Debug mode. HOPM will not fork, and will write logs to stderr.
52 Multiple -d increase debug level.
53
54
55 Operator Channel Commands
56 -------------------------
57
58 botnick check <host> [scanner] -- Manually scan host for insecure proxies and output all errors.
59 If scanner is not given, hopm will scan on all scanners.
60 NOTE: this will NOT add a kline (or whatever) if it finds a
61 proxy.
62
63 botnick stats -- Output scan stats, uptime and client connection count.
64
65 botnick fdstat -- Output some into about file descriptors in use.
66
67 Also if several HOPMs are present in one channel they will all respond to !all,
68 for example !all stats (fixed in BOPM 3.1.0).
69
70
71 Rehashing HOPM
72 --------------
73
74 A /kill to hopm will cause the process to restart, rehashing the configuration file
75 and ending all queued scans.
76
77
78 Logging
79 -------
80
81 Once started, HOPM logs all significant events to a file called "hopm.log"
82 which by default can be found at $HOME/hopm/var/hopm.log. There is also a
83 config option to log all proxy scans initiated, which can be quite useful if
84 you receive an abuse report related to portscanning.
85
86 These log files, especially the scan log, can grow quite large. It is
87 suggested that you arrange for these files to be rotated periodically. An
88 example shell script is provided in the contrib/logrotate directory. If you
89 prefer to use the log rotation facilities of your operating system then you
90 should send a USR1 signal to HOPM after moving its logfiles - this will cause
91 HOPM to reopen those files.
92
93
94 Support
95 -------
96
97 * Bug Reports:
98 - bugs@ircd-hybrid.org
99 * IRC contact:
100 - #ircd-coders on irc.ircd-hybrid.org
101
102 Credits
103 -------
104
105 Please see the CREDITS file.