1 |
/* doc/example.conf.quick - ircd-hybrid-8 Example configuration file |
2 |
* Copyright (C) 2000-2012 Hybrid Development Team |
3 |
* |
4 |
* Written by ejb, wcampbel, db, leeh and others |
5 |
* |
6 |
* $Id$ |
7 |
*/ |
8 |
|
9 |
/* IMPORTANT NOTES: |
10 |
* |
11 |
* auth {} blocks MUST be specified in order of precedence. The first one |
12 |
* that matches a user will be used. So place spoofs first, then specials, |
13 |
* then general access, then restricted. |
14 |
* |
15 |
* Both shell style (#) and C style comments are supported. |
16 |
* |
17 |
* Files may be included by either: |
18 |
* .include "filename" |
19 |
* .include <filename> |
20 |
* |
21 |
* Times/durations are written as: |
22 |
* 12 hours 30 minutes 1 second |
23 |
* |
24 |
* Valid units of time: |
25 |
* month, week, day, hour, minute, second |
26 |
* |
27 |
* Valid units of size: |
28 |
* megabyte/mbyte/mb, kilobyte/kbyte/kb, byte |
29 |
* |
30 |
* Sizes and times may be singular or plural. |
31 |
*/ |
32 |
|
33 |
/* EFNET NOTE: |
34 |
* |
35 |
* This config file is NOT suitable for EFNet. EFNet admins should use |
36 |
* example.efnet.conf |
37 |
*/ |
38 |
|
39 |
serverinfo { |
40 |
name = "hades.arpa"; |
41 |
sid = "_CHANGE_ME_"; |
42 |
description = "hybrid-7 test server"; |
43 |
network_name = "MyNet"; |
44 |
network_desc = "This is My Network"; |
45 |
hub = no; |
46 |
#vhost = "192.169.0.1"; |
47 |
#vhost6 = "3ffe:80e8:546::2"; |
48 |
max_clients = 512; |
49 |
#rsa_private_key_file = "/usr/local/ircd/etc/rsa.key"; |
50 |
#ssl_certificate_file = "/usr/local/ircd/etc/cert.pem"; |
51 |
#ssl_server_method = tlsv1, sslv3; |
52 |
#ssl_client_method = tlsv1; |
53 |
}; |
54 |
|
55 |
/* admin {}: contains admin information about the server. (OLD A:) */ |
56 |
admin { |
57 |
name = "Smurf target"; |
58 |
description = "Main Server Administrator"; |
59 |
email = "<syn@packets.r.us>"; |
60 |
}; |
61 |
|
62 |
/* class {}: contain information about classes for users (OLD Y:) */ |
63 |
class { |
64 |
name = "users"; |
65 |
ping_time = 2 minutes; |
66 |
number_per_ip = 2; |
67 |
max_number = 100; |
68 |
sendq = 100 kbytes; |
69 |
}; |
70 |
|
71 |
class { |
72 |
name = "restricted"; |
73 |
ping_time = 1 minute 30 seconds; |
74 |
number_per_ip = 1; |
75 |
max_number = 100; |
76 |
sendq = 60kb; |
77 |
}; |
78 |
|
79 |
class { |
80 |
name = "opers"; |
81 |
ping_time = 5 minutes; |
82 |
number_per_ip = 10; |
83 |
max_number = 100; |
84 |
sendq = 100kbytes; |
85 |
}; |
86 |
|
87 |
class { |
88 |
name = "server"; |
89 |
ping_time = 5 minutes; |
90 |
ping_warning = 15 seconds; |
91 |
connectfreq = 5 minutes; |
92 |
max_number = 1; |
93 |
sendq=2 megabytes; |
94 |
}; |
95 |
|
96 |
/* listen {}: contain information about the ports ircd listens on (OLD P:) */ |
97 |
listen { |
98 |
port = 6665 .. 6669; |
99 |
|
100 |
flags = ssl; |
101 |
port = 6697; |
102 |
|
103 |
host = "1.2.3.4"; |
104 |
port = 7000, 7001; |
105 |
|
106 |
host = "3ffe:1234:a:b:c::d"; |
107 |
port = 7002; |
108 |
}; |
109 |
|
110 |
/* auth {}: allow users to connect to the ircd (OLD I:) */ |
111 |
auth { |
112 |
user = "*@172.16.0.0/12"; |
113 |
user = "*test@123D:B567:*"; |
114 |
password = "letmein"; |
115 |
flags = need_password, spoof_notice, exceed_limit, kline_exempt, |
116 |
gline_exempt, no_tilde; |
117 |
spoof = "I.still.hate.packets"; |
118 |
class = "opers"; |
119 |
}; |
120 |
|
121 |
auth { |
122 |
redirserv = "irc.fi"; |
123 |
redirport = 6667; |
124 |
user = "*.fi"; |
125 |
class = "users"; |
126 |
}; |
127 |
|
128 |
auth { |
129 |
user = "*@*"; |
130 |
class = "users"; |
131 |
flags = need_ident; |
132 |
}; |
133 |
|
134 |
/* operator {}: defines ircd operators. (OLD O:) |
135 |
* ircd-hybrid no longer supports local operators, privileges are |
136 |
* controlled via flags. |
137 |
*/ |
138 |
operator { |
139 |
name = "god"; |
140 |
user = "*god@*"; |
141 |
user = "*@127.0.0.1"; |
142 |
password = "etcnjl8juSU1E"; |
143 |
encrypted = yes; |
144 |
#rsa_public_key_file = "/usr/local/ircd/etc/oper.pub"; |
145 |
class = "opers"; |
146 |
flags = global_kill, remote, kline, unkline, gline, module, |
147 |
xline, die, rehash, nick_changes, admin; |
148 |
}; |
149 |
|
150 |
/* connect {}: controls servers we connect to (OLD C:, N:, H:, L:) */ |
151 |
connect { |
152 |
name = "irc.uplink.com"; |
153 |
host = "192.168.0.1"; |
154 |
send_password = "password"; |
155 |
accept_password = "anotherpassword"; |
156 |
encrypted = no; |
157 |
port = 6666; |
158 |
hub_mask = "*"; |
159 |
#leaf_mask = "*.uk"; |
160 |
class = "server"; |
161 |
flags = autoconn; |
162 |
}; |
163 |
|
164 |
connect { |
165 |
name = "ipv6.some.server"; |
166 |
host = "3ffd:dead:beef::1"; |
167 |
send_password = "password"; |
168 |
accept_password = "password"; |
169 |
port = 6666; |
170 |
|
171 |
aftype = ipv6; |
172 |
class = "server"; |
173 |
}; |
174 |
|
175 |
/* cluster{}: servers that share klines/unkline/xline/unxline/resv/unresv/locops |
176 |
* automatically (OLD hyb6 SLAVE_SERVERS) |
177 |
*/ |
178 |
cluster { |
179 |
name = "*.arpa"; |
180 |
type = kline, unkline, locops, xline, resv; |
181 |
}; |
182 |
|
183 |
/* shared {}: users that are allowed to remote kline (OLD U:) */ |
184 |
shared { |
185 |
name = "irc2.some.server"; |
186 |
user = "oper@my.host.is.spoofed"; |
187 |
type = all; |
188 |
}; |
189 |
|
190 |
/* kill {}: users that are not allowed to connect (OLD K:) |
191 |
* Oper issued klines will be added to the specified kline config |
192 |
*/ |
193 |
kill { |
194 |
user = "bad@*.hacked.edu"; |
195 |
reason = "Obviously hacked account"; |
196 |
}; |
197 |
|
198 |
/* deny {}: IPs that are not allowed to connect (before DNS/ident lookup) |
199 |
* Oper issued dlines will be added to the specified dline config |
200 |
*/ |
201 |
deny { |
202 |
ip = "10.0.1.0/24"; |
203 |
reason = "Reconnecting vhosted bots"; |
204 |
}; |
205 |
|
206 |
/* exempt {}: IPs that are exempt from deny {} and Dlines. (OLD d:) */ |
207 |
exempt { |
208 |
ip = "192.168.0.0/16"; |
209 |
}; |
210 |
|
211 |
/* resv {}: nicks and channels users may not use/join (OLD Q:) */ |
212 |
resv { |
213 |
nick = "nickserv"; |
214 |
nick = "chanserv"; |
215 |
channel = "#services"; |
216 |
reason = "Clone bots"; |
217 |
nick = "clone*"; |
218 |
}; |
219 |
|
220 |
gecos { |
221 |
name = "*sex*"; |
222 |
reason = "Possible spambot"; |
223 |
}; |
224 |
|
225 |
gecos { |
226 |
name = "sub7server"; |
227 |
reason = "Trojan drone"; |
228 |
}; |
229 |
|
230 |
gecos { |
231 |
name = "*http*"; |
232 |
reason = "Spambot"; |
233 |
}; |
234 |
|
235 |
channel { |
236 |
restrict_channels = no; |
237 |
disable_local_channels = no; |
238 |
use_invex = yes; |
239 |
use_except = yes; |
240 |
use_knock = yes; |
241 |
knock_delay = 5 minutes; |
242 |
knock_delay_channel = 1 minute; |
243 |
max_chans_per_user = 25; |
244 |
max_chans_per_oper = 50; |
245 |
quiet_on_ban = yes; |
246 |
max_bans = 25; |
247 |
join_flood_count = 16; |
248 |
join_flood_time = 8 seconds; |
249 |
default_split_user_count = 0; |
250 |
default_split_server_count = 0; |
251 |
no_create_on_split = yes; |
252 |
no_join_on_split = no; |
253 |
}; |
254 |
|
255 |
serverhide { |
256 |
flatten_links = no; |
257 |
links_delay = 5 minutes; |
258 |
hidden = no; |
259 |
disable_hidden = no; |
260 |
hide_servers = no; |
261 |
hidden_name = "*.hidden.com"; |
262 |
hide_server_ips = no; |
263 |
}; |
264 |
|
265 |
general { |
266 |
kill_chase_time_limit = 90 seconds; |
267 |
hide_spoof_ips = yes; |
268 |
ignore_bogus_ts = no; |
269 |
|
270 |
disable_auth = no; |
271 |
disable_remote_commands = no; |
272 |
default_floodcount = 10; |
273 |
failed_oper_notice = yes; |
274 |
dots_in_ident=2; |
275 |
min_nonwildcard = 4; |
276 |
min_nonwildcard_simple = 3; |
277 |
max_accept = 20; |
278 |
anti_nick_flood = yes; |
279 |
|
280 |
max_nick_time = 20 seconds; |
281 |
max_nick_changes = 5; |
282 |
|
283 |
anti_spam_exit_message_time = 5 minutes; |
284 |
ts_warn_delta = 30 seconds; |
285 |
ts_max_delta = 5 minutes; |
286 |
|
287 |
kline_with_reason = yes; |
288 |
kline_with_connection_closed = no; |
289 |
reject_hold_time = 0; |
290 |
|
291 |
invisible_on_connect = yes; |
292 |
warn_no_nline = yes; |
293 |
stats_o_oper_only=yes; |
294 |
stats_P_oper_only=no; |
295 |
stats_i_oper_only=masked; |
296 |
stats_k_oper_only=masked; |
297 |
caller_id_wait = 1 minute; |
298 |
pace_wait_simple = 1 second; |
299 |
pace_wait = 10 seconds; |
300 |
short_motd = no; |
301 |
ping_cookie = no; |
302 |
no_oper_flood = yes; |
303 |
true_no_oper_flood = yes; |
304 |
oper_pass_resv = yes; |
305 |
|
306 |
/* REMOVE ME. The following line checks you've been reading. */ |
307 |
havent_read_conf = 1; |
308 |
|
309 |
max_targets = 4; |
310 |
client_flood = 2560; |
311 |
message_locale = "standard"; |
312 |
oper_only_umodes = bots, cconn, debug, full, skill, nchange, |
313 |
rej, spy, external, operwall, locops, unauth; |
314 |
|
315 |
oper_umodes = bots, locops, servnotice, operwall, wallop; |
316 |
|
317 |
|
318 |
#use_egd = yes; |
319 |
#egdpool_path = "/var/run/egd-pool"; |
320 |
throttle_time = 10; |
321 |
}; |
322 |
|
323 |
glines { |
324 |
enable = yes; |
325 |
duration = 1 day; |
326 |
log = reject; |
327 |
|
328 |
user = "god@I.still.hate.packets"; |
329 |
name = "hades.arpa"; |
330 |
action = reject, block; |
331 |
|
332 |
user = "god@*"; |
333 |
name = "*"; |
334 |
action = block; |
335 |
}; |
336 |
|
337 |
modules { |
338 |
path = "/usr/local/ircd/lib/ircd-hybrid/modules"; |
339 |
path = "/usr/local/ircd/lib/ircd-hybrid/modules/autoload"; |
340 |
#module = "some_module.so"; |
341 |
}; |
342 |
|
343 |
/* |
344 |
* log {}: contains information about logfiles. |
345 |
*/ |
346 |
log { |
347 |
/* Do you want to enable logging to ircd.log? */ |
348 |
use_logging = yes; |
349 |
|
350 |
file { |
351 |
type = oper; |
352 |
name = "/home/ircd/var/log/oper.log"; |
353 |
size = unlimited; |
354 |
}; |
355 |
|
356 |
file { |
357 |
type = user; |
358 |
name = "/home/ircd/var/log/user.log"; |
359 |
size = 50 megabytes; |
360 |
}; |
361 |
|
362 |
file { |
363 |
type = kill; |
364 |
name = "/home/ircd/var/log/kill.log"; |
365 |
size = 50 megabytes; |
366 |
}; |
367 |
|
368 |
file { |
369 |
type = kline; |
370 |
name = "/home/ircd/var/log/kline.log"; |
371 |
size = 50 megabytes; |
372 |
}; |
373 |
|
374 |
file { |
375 |
type = dline; |
376 |
name = "/home/ircd/var/log/dline.log"; |
377 |
size = 50 megabytes; |
378 |
}; |
379 |
|
380 |
file { |
381 |
type = gline; |
382 |
name = "/home/ircd/var/log/gline.log"; |
383 |
size = 50 megabytes; |
384 |
}; |
385 |
|
386 |
file { |
387 |
type = debug; |
388 |
name = "/home/ircd/var/log/debug.log"; |
389 |
size = 50 megabytes; |
390 |
}; |
391 |
}; |