ircd-hybrid-8/doc/example.quick.conf

/* doc/example.conf.quick - ircd-hybrid-8 Example configuration file
 * Copyright (C) 2000-2012 Hybrid Development Team
 *
 * Written by ejb, wcampbel, db, leeh and others
 *
 * $Id$
 */

/* IMPORTANT NOTES:
 *
 * auth {} blocks MUST be specified in order of precedence.  The first one
 * that matches a user will be used.  So place spoofs first, then specials,
 * then general access, then restricted.
 *
 * Both shell style (#) and C style comments are supported.
 *
 * Files may be included by either:
 *        .include "filename"
 *        .include <filename>
 *
 * Times/durations are written as:
 *        12 hours 30 minutes 1 second
 *        
 * Valid units of time:
 *        month, week, day, hour, minute, second
 *
 * Valid units of size:
 *        megabyte/mbyte/mb, kilobyte/kbyte/kb, byte
 *
 * Sizes and times may be singular or plural.  
 */ 

/* EFNET NOTE:
 * 
 * This config file is NOT suitable for EFNet.  EFNet admins should use
 * example.efnet.conf
 */
 
serverinfo {
        name = "hades.arpa";
        sid = "_CHANGE_ME_";
        description = "hybrid-7 test server";
        network_name = "MyNet";
        network_desc = "This is My Network";
        hub = no;
        #vhost = "192.169.0.1";
        #vhost6 = "3ffe:80e8:546::2";
        max_clients = 512;
        #rsa_private_key_file = "/usr/local/ircd/etc/rsa.key";
        #ssl_certificate_file = "/usr/local/ircd/etc/cert.pem";
        #ssl_server_method = tlsv1, sslv3;
        #ssl_client_method = tlsv1;
};

/* admin {}: contains admin information about the server. (OLD A:) */
admin {
        name = "Smurf target";
        description = "Main Server Administrator";
        email = "<syn@packets.r.us>";
};

/* class {}: contain information about classes for users (OLD Y:) */
class {
        name = "users";
        ping_time = 2 minutes;
        number_per_ip = 2;
        max_number = 100;
        sendq = 100 kbytes;
};

class {
        name = "restricted";
        ping_time = 1 minute 30 seconds;
        number_per_ip = 1;
        max_number = 100;
        sendq = 60kb;
};

class {
        name = "opers";
        ping_time = 5 minutes;
        number_per_ip = 10;
        max_number = 100;
        sendq = 100kbytes;
};

class {
        name = "server";
        ping_time = 5 minutes;
        ping_warning = 15 seconds;
        connectfreq = 5 minutes;
        max_number = 1;
        sendq=2 megabytes;
};

/* listen {}: contain information about the ports ircd listens on (OLD P:) */
listen {
        port = 6665 .. 6669;

        flags = ssl;
        port = 6697;

        host = "1.2.3.4";
        port = 7000, 7001;

        host = "3ffe:1234:a:b:c::d";
        port = 7002;
};

/* auth {}: allow users to connect to the ircd (OLD I:) */
auth {
        user = "*@172.16.0.0/12";
        user = "*test@123D:B567:*";
        password = "letmein";
        flags = need_password, spoof_notice, exceed_limit, kline_exempt,
                gline_exempt, no_tilde;
        spoof = "I.still.hate.packets";
        class = "opers";
};

auth {
        redirserv = "irc.fi";
        redirport = 6667;
        user = "*.fi";
        class = "users";
};

auth {
        user = "*@*";
        class = "users";
        flags = need_ident;
};

/* operator {}: defines ircd operators. (OLD O:)
 * ircd-hybrid no longer supports local operators, privileges are
 * controlled via flags.
 */
operator {
        name = "god";
        user = "*god@*";
        user = "*@127.0.0.1";
        password = "etcnjl8juSU1E";
        encrypted = yes;
        #rsa_public_key_file = "/usr/local/ircd/etc/oper.pub";
        class = "opers";
        flags = global_kill, remote, kline, unkline, gline, module,
                xline, die, rehash, nick_changes, admin, set;
};

/* connect {}: controls servers we connect to (OLD C:, N:, H:, L:) */
connect {
        name = "irc.uplink.com";
        host = "192.168.0.1";
        send_password = "password";
        accept_password = "anotherpassword";
        encrypted = no;
        port = 6666;
        hub_mask = "*";
        #leaf_mask = "*.uk";
        class = "server";
        flags = autoconn;
};

connect {
        name = "ipv6.some.server";
        host = "3ffd:dead:beef::1";
        send_password = "password";
        accept_password = "password";
        port = 6666;

        aftype = ipv6;
        class = "server";
};

/* cluster{}: servers that share klines/unkline/xline/unxline/resv/unresv/locops
 * automatically (OLD hyb6 SLAVE_SERVERS)
 */
cluster {
        name = "*.arpa";
        type = kline, unkline, locops, xline, resv;
};

/* shared {}: users that are allowed to remote kline (OLD U:) */
shared {
        name = "irc2.some.server";
        user = "oper@my.host.is.spoofed";
        type = all;
};

/* kill {}: users that are not allowed to connect (OLD K:)
 * Oper issued klines will be added to the specified kline config
 */
kill {
        user = "bad@*.hacked.edu";
        reason = "Obviously hacked account";
};

/* deny {}: IPs that are not allowed to connect (before DNS/ident lookup)
 * Oper issued dlines will be added to the specified dline config
 */
deny {
        ip = "10.0.1.0/24";
        reason = "Reconnecting vhosted bots";
};

/* exempt {}: IPs that are exempt from deny {} and Dlines. (OLD d:) */
exempt {
        ip = "192.168.0.0/16";
};

/* resv {}: nicks and channels users may not use/join (OLD Q:) */
resv {
        nick = "nickserv";
        nick = "chanserv";
        channel = "#services";
        reason = "Clone bots";
        nick = "clone*";
};

gecos {
        name = "*sex*";
        reason = "Possible spambot";
};

gecos {
        name = "sub7server";
        reason = "Trojan drone";
};

gecos {
        name = "*http*";
        reason = "Spambot";
};

channel {
        restrict_channels = no;
        knock_delay = 5 minutes;
        knock_delay_channel = 1 minute;
        max_chans_per_user = 25;
        max_chans_per_oper = 50;
        quiet_on_ban = yes;
        max_bans = 25;
        join_flood_count = 16;
        join_flood_time = 8 seconds;
        default_split_user_count = 0;
        default_split_server_count = 0;
        no_create_on_split = yes;
        no_join_on_split = no;
};

serverhide {
        flatten_links = no;
        links_delay = 5 minutes;
        hidden = no;
        hide_servers = no;
        hidden_name = "*.hidden.com";
        hide_server_ips = no;
};

general {
        kill_chase_time_limit = 90 seconds;
        hide_spoof_ips = yes;
        ignore_bogus_ts = no;

        disable_auth = no;
        disable_remote_commands = no;
        default_floodcount = 10;
        failed_oper_notice = yes;
        dots_in_ident=2;
        min_nonwildcard = 4;
        min_nonwildcard_simple = 3;
        max_accept = 20;
        anti_nick_flood = yes;

        max_nick_time = 20 seconds;
        max_nick_changes = 5;

        anti_spam_exit_message_time = 5 minutes;
        ts_warn_delta = 30 seconds;
        ts_max_delta = 5 minutes;

        kline_with_reason = yes;
        reject_hold_time = 0;

        invisible_on_connect = yes;
        warn_no_nline = yes;
        stats_o_oper_only=yes;
        stats_P_oper_only=no;
        stats_i_oper_only=masked;
        stats_k_oper_only=masked;
        caller_id_wait = 1 minute;
        pace_wait_simple = 1 second;
        pace_wait = 10 seconds;
        short_motd = no;
        ping_cookie = no;
        no_oper_flood = yes;
        true_no_oper_flood = yes;
        oper_pass_resv = yes;

        /* REMOVE ME.  The following line checks you've been reading. */
        havent_read_conf = 1;

        max_targets = 4;
        client_flood = 2560;
        message_locale = "standard";
        oper_only_umodes = bots, cconn, debug, full, skill, nchange, 
                     rej, spy, external, operwall, locops, unauth;

        oper_umodes = bots, locops, servnotice, operwall, wallop;


        #use_egd = yes;
        #egdpool_path = "/var/run/egd-pool";
        throttle_time = 10;
};

modules {
        path = "/usr/local/ircd/lib/ircd-hybrid/modules";
        path = "/usr/local/ircd/lib/ircd-hybrid/modules/autoload";
        #module = "some_module.so";
};

/*
 * log {}:  contains information about logfiles.
 */
log {
        /* Do you want to enable logging to ircd.log? */
        use_logging = yes;

        file {
                type = oper;
                name = "/home/ircd/var/log/oper.log";
                size = unlimited;
        };

        file {
                type = user;
                name = "/home/ircd/var/log/user.log";
                size = 50 megabytes;
        };

        file {
                type = kill;
                name = "/home/ircd/var/log/kill.log";
                size = 50 megabytes;
        };

        file {
                type = kline;
                name = "/home/ircd/var/log/kline.log";
                size = 50 megabytes;
        };

        file {
                type = dline;
                name = "/home/ircd/var/log/dline.log";
                size = 50 megabytes;
        };

        file {
                type = gline;
                name = "/home/ircd/var/log/gline.log";
                size = 50 megabytes;
        };

        file {
                type = debug;
                name = "/home/ircd/var/log/debug.log";
                size = 50 megabytes;
        };
};
Revision:	1495
Committed:	Sun Aug 5 09:35:42 2012 UTC (13 years ago) by michael
File size:	7817 byte(s)
Log Message:	- Removed use_invex, use_except and use_knock configuration options. These features are now enabled by default
#	Content
1	/* doc/example.conf.quick - ircd-hybrid-8 Example configuration file
2	* Copyright (C) 2000-2012 Hybrid Development Team
3	*
4	* Written by ejb, wcampbel, db, leeh and others
5	*
6	* $Id$
7	*/
8
9	/* IMPORTANT NOTES:
10	*
11	* auth {} blocks MUST be specified in order of precedence. The first one
12	* that matches a user will be used. So place spoofs first, then specials,
13	* then general access, then restricted.
14	*
15	* Both shell style (#) and C style comments are supported.
16	*
17	* Files may be included by either:
18	* .include "filename"
19	* .include <filename>
20	*
21	* Times/durations are written as:
22	* 12 hours 30 minutes 1 second
23	*
24	* Valid units of time:
25	* month, week, day, hour, minute, second
26	*
27	* Valid units of size:
28	* megabyte/mbyte/mb, kilobyte/kbyte/kb, byte
29	*
30	* Sizes and times may be singular or plural.
31	*/
32
33	/* EFNET NOTE:
34	*
35	* This config file is NOT suitable for EFNet. EFNet admins should use
36	* example.efnet.conf
37	*/
38
39	serverinfo {
40	name = "hades.arpa";
41	sid = "_CHANGE_ME_";
42	description = "hybrid-7 test server";
43	network_name = "MyNet";
44	network_desc = "This is My Network";
45	hub = no;
46	#vhost = "192.169.0.1";
47	#vhost6 = "3ffe:80e8:546::2";
48	max_clients = 512;
49	#rsa_private_key_file = "/usr/local/ircd/etc/rsa.key";
50	#ssl_certificate_file = "/usr/local/ircd/etc/cert.pem";
51	#ssl_server_method = tlsv1, sslv3;
52	#ssl_client_method = tlsv1;
53	};
54
55	/* admin {}: contains admin information about the server. (OLD A:) */
56	admin {
57	name = "Smurf target";
58	description = "Main Server Administrator";
59	email = "<syn@packets.r.us>";
60	};
61
62	/* class {}: contain information about classes for users (OLD Y:) */
63	class {
64	name = "users";
65	ping_time = 2 minutes;
66	number_per_ip = 2;
67	max_number = 100;
68	sendq = 100 kbytes;
69	};
70
71	class {
72	name = "restricted";
73	ping_time = 1 minute 30 seconds;
74	number_per_ip = 1;
75	max_number = 100;
76	sendq = 60kb;
77	};
78
79	class {
80	name = "opers";
81	ping_time = 5 minutes;
82	number_per_ip = 10;
83	max_number = 100;
84	sendq = 100kbytes;
85	};
86
87	class {
88	name = "server";
89	ping_time = 5 minutes;
90	ping_warning = 15 seconds;
91	connectfreq = 5 minutes;
92	max_number = 1;
93	sendq=2 megabytes;
94	};
95
96	/* listen {}: contain information about the ports ircd listens on (OLD P:) */
97	listen {
98	port = 6665 .. 6669;
99
100	flags = ssl;
101	port = 6697;
102
103	host = "1.2.3.4";
104	port = 7000, 7001;
105
106	host = "3ffe:1234:a:b:c::d";
107	port = 7002;
108	};
109
110	/* auth {}: allow users to connect to the ircd (OLD I:) */
111	auth {
112	user = "*@172.16.0.0/12";
113	user = "test@123D:B567:";
114	password = "letmein";
115	flags = need_password, spoof_notice, exceed_limit, kline_exempt,
116	gline_exempt, no_tilde;
117	spoof = "I.still.hate.packets";
118	class = "opers";
119	};
120
121	auth {
122	redirserv = "irc.fi";
123	redirport = 6667;
124	user = "*.fi";
125	class = "users";
126	};
127
128	auth {
129	user = "@";
130	class = "users";
131	flags = need_ident;
132	};
133
134	/* operator {}: defines ircd operators. (OLD O:)
135	* ircd-hybrid no longer supports local operators, privileges are
136	* controlled via flags.
137	*/
138	operator {
139	name = "god";
140	user = "god@";
141	user = "*@127.0.0.1";
142	password = "etcnjl8juSU1E";
143	encrypted = yes;
144	#rsa_public_key_file = "/usr/local/ircd/etc/oper.pub";
145	class = "opers";
146	flags = global_kill, remote, kline, unkline, gline, module,
147	xline, die, rehash, nick_changes, admin, set;
148	};
149
150	/* connect {}: controls servers we connect to (OLD C:, N:, H:, L:) */
151	connect {
152	name = "irc.uplink.com";
153	host = "192.168.0.1";
154	send_password = "password";
155	accept_password = "anotherpassword";
156	encrypted = no;
157	port = 6666;
158	hub_mask = "*";
159	#leaf_mask = "*.uk";
160	class = "server";
161	flags = autoconn;
162	};
163
164	connect {
165	name = "ipv6.some.server";
166	host = "3ffd:dead:beef::1";
167	send_password = "password";
168	accept_password = "password";
169	port = 6666;
170
171	aftype = ipv6;
172	class = "server";
173	};
174
175	/* cluster{}: servers that share klines/unkline/xline/unxline/resv/unresv/locops
176	* automatically (OLD hyb6 SLAVE_SERVERS)
177	*/
178	cluster {
179	name = "*.arpa";
180	type = kline, unkline, locops, xline, resv;
181	};
182
183	/* shared {}: users that are allowed to remote kline (OLD U:) */
184	shared {
185	name = "irc2.some.server";
186	user = "oper@my.host.is.spoofed";
187	type = all;
188	};
189
190	/* kill {}: users that are not allowed to connect (OLD K:)
191	* Oper issued klines will be added to the specified kline config
192	*/
193	kill {
194	user = "bad@*.hacked.edu";
195	reason = "Obviously hacked account";
196	};
197
198	/* deny {}: IPs that are not allowed to connect (before DNS/ident lookup)
199	* Oper issued dlines will be added to the specified dline config
200	*/
201	deny {
202	ip = "10.0.1.0/24";
203	reason = "Reconnecting vhosted bots";
204	};
205
206	/* exempt {}: IPs that are exempt from deny {} and Dlines. (OLD d:) */
207	exempt {
208	ip = "192.168.0.0/16";
209	};
210
211	/* resv {}: nicks and channels users may not use/join (OLD Q:) */
212	resv {
213	nick = "nickserv";
214	nick = "chanserv";
215	channel = "#services";
216	reason = "Clone bots";
217	nick = "clone*";
218	};
219
220	gecos {
221	name = "sex";
222	reason = "Possible spambot";
223	};
224
225	gecos {
226	name = "sub7server";
227	reason = "Trojan drone";
228	};
229
230	gecos {
231	name = "http";
232	reason = "Spambot";
233	};
234
235	channel {
236	restrict_channels = no;
237	knock_delay = 5 minutes;
238	knock_delay_channel = 1 minute;
239	max_chans_per_user = 25;
240	max_chans_per_oper = 50;
241	quiet_on_ban = yes;
242	max_bans = 25;
243	join_flood_count = 16;
244	join_flood_time = 8 seconds;
245	default_split_user_count = 0;
246	default_split_server_count = 0;
247	no_create_on_split = yes;
248	no_join_on_split = no;
249	};
250
251	serverhide {
252	flatten_links = no;
253	links_delay = 5 minutes;
254	hidden = no;
255	hide_servers = no;
256	hidden_name = "*.hidden.com";
257	hide_server_ips = no;
258	};
259
260	general {
261	kill_chase_time_limit = 90 seconds;
262	hide_spoof_ips = yes;
263	ignore_bogus_ts = no;
264
265	disable_auth = no;
266	disable_remote_commands = no;
267	default_floodcount = 10;
268	failed_oper_notice = yes;
269	dots_in_ident=2;
270	min_nonwildcard = 4;
271	min_nonwildcard_simple = 3;
272	max_accept = 20;
273	anti_nick_flood = yes;
274
275	max_nick_time = 20 seconds;
276	max_nick_changes = 5;
277
278	anti_spam_exit_message_time = 5 minutes;
279	ts_warn_delta = 30 seconds;
280	ts_max_delta = 5 minutes;
281
282	kline_with_reason = yes;
283	reject_hold_time = 0;
284
285	invisible_on_connect = yes;
286	warn_no_nline = yes;
287	stats_o_oper_only=yes;
288	stats_P_oper_only=no;
289	stats_i_oper_only=masked;
290	stats_k_oper_only=masked;
291	caller_id_wait = 1 minute;
292	pace_wait_simple = 1 second;
293	pace_wait = 10 seconds;
294	short_motd = no;
295	ping_cookie = no;
296	no_oper_flood = yes;
297	true_no_oper_flood = yes;
298	oper_pass_resv = yes;
299
300	/* REMOVE ME. The following line checks you've been reading. */
301	havent_read_conf = 1;
302
303	max_targets = 4;
304	client_flood = 2560;
305	message_locale = "standard";
306	oper_only_umodes = bots, cconn, debug, full, skill, nchange,
307	rej, spy, external, operwall, locops, unauth;
308
309	oper_umodes = bots, locops, servnotice, operwall, wallop;
310
311
312	#use_egd = yes;
313	#egdpool_path = "/var/run/egd-pool";
314	throttle_time = 10;
315	};
316
317	modules {
318	path = "/usr/local/ircd/lib/ircd-hybrid/modules";
319	path = "/usr/local/ircd/lib/ircd-hybrid/modules/autoload";
320	#module = "some_module.so";
321	};
322
323	/*
324	* log {}: contains information about logfiles.
325	*/
326	log {
327	/* Do you want to enable logging to ircd.log? */
328	use_logging = yes;
329
330	file {
331	type = oper;
332	name = "/home/ircd/var/log/oper.log";
333	size = unlimited;
334	};
335
336	file {
337	type = user;
338	name = "/home/ircd/var/log/user.log";
339	size = 50 megabytes;
340	};
341
342	file {
343	type = kill;
344	name = "/home/ircd/var/log/kill.log";
345	size = 50 megabytes;
346	};
347
348	file {
349	type = kline;
350	name = "/home/ircd/var/log/kline.log";
351	size = 50 megabytes;
352	};
353
354	file {
355	type = dline;
356	name = "/home/ircd/var/log/dline.log";
357	size = 50 megabytes;
358	};
359
360	file {
361	type = gline;
362	name = "/home/ircd/var/log/gline.log";
363	size = 50 megabytes;
364	};
365
366	file {
367	type = debug;
368	name = "/home/ircd/var/log/debug.log";
369	size = 50 megabytes;
370	};
371	};