pissnet/pissircd
1
0
Fork 0
mirror of https://github.com/pissnet/pissircd.git synced 2025-05-05 13:05:04 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Commit graph

  • 4681603c52
         Fix bug where "link-security" was downgraded to level 1 if using 'spkifp'. Bram Matthys 2019-01-18 13:10:51 +01:00
  • 778be86c66
         Update HELPOP EXTBANS on ~t (timed bans), ~m (msgbypass) and ~T (textban) since these are loaded by default since UnrealIRCd 4.2.0. Bram Matthys 2019-01-14 15:08:56 +01:00
  • f4b432ae94
         Add RC4 and 3DES to set::ssl::outdated-ciphers, in case anyone uses some insecure custom ::ciphers setting, this so RC4 and 3DES still get flagged. Bram Matthys 2019-01-12 11:29:16 +01:00
  • 67d691fce9
         * New set::outdated-tls-policy which describes what to do with clients that use outdated SSL/TLS protocols (eg: TLSv1.0) and ciphers. The default settings are to warn in all cases: users connecting, opers /OPER'ing up and servers linking in. The user will see a message telling them to upgrade their IRC client. This should help with migrating such users since in the future, say one or two years from now, we would want to change the default to only allow TSLv1.2+ with ciphers that provide Forward Secrecy. Instead of rejecting clients without any error message, this provides a way to warn them and give them some time to upgrade their outdated IRC client. https://www.unrealircd.org/docs/Set_block#set::outdated-tls-policy Bram Matthys 2019-01-12 11:08:18 +01:00
  • 8e7a085474
         AppArmor profile in extras/security/apparmor: no changes but make it clear that this has been tested on Ubuntu 16.04 and Ubuntu 18.04. Bram Matthys 2019-01-12 10:52:05 +01:00
  • 5fd673d059
         Rename PLAINTEXT_POLICY_* to POLICY_ (and similarly, the struct, etc) Bram Matthys 2019-01-11 13:21:59 +01:00
  • a1d2698ead
         Provide get_ssl_options_for_client() to get the SSLOptions * for a client. Bram Matthys 2019-01-11 13:16:09 +01:00
  • b0c8629284
         Travis-CI: remove TLS test for libressl-25 (no longer supported) [skip ci] Bram Matthys 2019-01-11 12:34:43 +01:00
  • 72a3a445ee
         Travis-CI: Update OpenSSL and LibreSSL versions * Remove LibreSSL versions that are no longer supported (2.5.x and 2.6.x). * Add LibreSSL 2.8.x (current stable) and 2.9.x (current dev) * OpenSSL releases only had updates in their 'letter suffixes' Bram Matthys 2019-01-11 11:54:13 +01:00
  • 9668aaaade
         Travis-CI: Rename .txt files to match $BUILDCONFIG Bram Matthys 2019-01-11 11:42:36 +01:00
  • dbeb5af2ea
         Updates to SSL/TLS tests. Bram Matthys 2019-01-11 11:30:40 +01:00
  • 227abacdb5
         Hm? Bram Matthys 2019-01-11 10:52:16 +01:00
  • 8e1af5f304
         Update SSL/TLS tests and put them in extras/tests/tls Bram Matthys 2019-01-11 10:45:20 +01:00
  • 9873382e6b
         Add SSL/TLS tests. Bram Matthys 2019-01-11 10:06:21 +01:00
  • 7d68ea0570
         Update default ciphers, or actually only the ones not providing PFS, by preferring AES-256 over AES-128 (in contrast to the Mozilla "intermediate" profile which prefers AES-128). Again, this only affects non-PFS cases, as all modern clients with PFS already had CHACHA20 and AES-256 negotiated. The portion of non-PFS clients should only be few percent, if any. I was actually considering removing non-PFS ciphersuites but it seems a bit early to do so, at least not without more research on affected clients. Bram Matthys 2019-01-11 09:19:44 +01:00
  • dbbe6e7248
         Travis-CI: another attempt Bram Matthys 2019-01-10 20:29:11 +01:00
  • 981a5d44b2
         Travis-CI: install specific bundler (wtf?) Bram Matthys 2019-01-06 20:34:16 +01:00
  • 2a9b20369b
         Travis-CI: use Ubuntu 16.04 instead of 14.04 ...since 14.04 seems to fail due to an outdated ruby. Bram Matthys 2019-01-06 20:14:04 +01:00
  • 8c9e4b8668
         Poison unused parv[] elements that code should never access. The last parv[] array element will be NULL. Accessing any elements after that is undefined, similar to reading past the nul byte of a string. This poison will help catch such bugs. Without this poison your code will also crash, now it just crashes more consistently. Bram Matthys 2019-01-06 19:21:59 +01:00
  • dbf7aeb386
         UnrealIRCd 4.2.1.1: compile fix for Debian stretch if you have a version of libargon2 installed that does not provide Argon2id. Bram Matthys 2019-01-03 08:57:59 +01:00
  • 4965fc6741
         Fix for systems with libargon2 that don't have Argon2id (Debian 9.6). Apparently Debian stretch has 20160821's version which just falls short. 20161029 already has it included. We'll now use shipped libargon2 for versions below 20161029. Thanks to vectr0n for reporting the issue. Bram Matthys 2019-01-02 19:20:42 +01:00
  • c173b17064
         Fix SAJOIN, SAPART and SAMODE not working due to operclass.default.conf using the 'sacmds' permission, when it should actually be 'sacmd'. Reported by Stanley. Bram Matthys 2018-12-28 17:55:32 +01:00
  • 5da3ef8889
         UnrealIRCd 4.2.1 (will publish tomorrow) Bram Matthys 2018-12-26 23:06:33 +01:00
  • 8b0cad3845
         Fix for 'require authentication' (duh) .. yeah I and others were still using 'require sasl' :D Bram Matthys 2018-12-22 10:36:48 +01:00
  • 56568f4033
         Update release notes. This may be final for 4.2.1-rc1. Bram Matthys 2018-12-22 10:12:53 +01:00
  • 43de2dd747
         Update release notes Bram Matthys 2018-12-21 18:05:06 +01:00
  • 73502ca4b6
         Update help.conf with new WHO status flag 's' (secure) Bram Matthys 2018-12-21 18:03:57 +01:00
  • bb7bc90612
         Forgot to update c-ares version in extras/curlinstall.... Bram Matthys 2018-12-21 15:59:51 +01:00
  • ad9a1b0b94
         Import settings from UnrealIRCd 4.2.0 [skip ci] Bram Matthys 2018-12-21 15:57:08 +01:00
  • e30712f3d4
         Update Windows libraries and the Windows build command for build tests. [skip travis ci] Bram Matthys 2018-12-21 15:42:32 +01:00
  • f3f397b066
         Update shipped libs: c-ares to 1.15.0 and PCRE2 to 10.32 Bram Matthys 2018-12-21 15:32:23 +01:00
  • f1844e40a5
         Set version to 4.2.1-rc1. The release notes are still likely to change. Bram Matthys 2018-12-21 15:24:12 +01:00
  • 54c17aa65d
         Indicate 's' in WHO reply flags if the user is secure (SSL/TLS). Bram Matthys 2018-12-21 14:21:19 +01:00
  • bb0530f694
         In the authprompt documentation point the user to (possibly) tweaking the set::handshake-timeout setting as well. Bram Matthys 2018-12-21 13:24:25 +01:00
  • 7755d10829
         [authprompt] Suggest /QUOTE AUTH .. instead of /AUTH .. Bram Matthys 2018-12-21 07:58:38 +01:00
  • 62e30ec342
         Fix typo in config warning. Bram Matthys 2018-12-21 07:58:12 +01:00
  • 267c2f3e56
         Make authprompt work for soft KLINE/GLINE and soft-xx ban actions (in registration phase anyway), as promised earlier in the documentation. Bram Matthys 2018-12-19 17:42:13 +01:00
  • 7f8172faef
         Bump fakelag on failed authentication attempt (SASL, real or emulated) Bram Matthys 2018-12-19 17:41:28 +01:00
  • 7aaf5e9a42
         Update release notes regarding a fix from today. [skip ci] Bram Matthys 2018-12-19 17:13:39 +01:00
  • 88fadc134d
         Fix build issue on Windows [skip travis ci] Bram Matthys 2018-12-19 13:58:44 +01:00
  • 0ac56e4444
         Fix line number in error messages being off, as reported in https://bugs.unrealircd.org/view.php?id=5169 caused by commit 51ed51dff1 Bram Matthys 2018-12-19 13:50:09 +01:00
  • 56a964bba1
         Hide remote includes auth information in error messages. Reported by Jellis in https://bugs.unrealircd.org/view.php?id=5172 Bram Matthys 2018-12-19 13:02:36 +01:00
  • 6b089dfcd6
         The new module is now called authprompt. Also wrote an article: https://www.unrealircd.org/docs/Authentication And "require sasl" is now "require authentication" (the old name will only raise a warning, not cause an error) Bram Matthys 2018-12-17 17:32:43 +01:00
  • b1e1b6d9d5
         quick fix for build tests, will fix later. Bram Matthys 2018-12-16 16:40:35 +01:00
  • ce4aeff63f
         Add saslemulation to Windows makefile. [skip travis ci] Bram Matthys 2018-12-16 15:53:12 +01:00
  • 2ed958f2ee
         Fix typo in modules.optional.conf. Bram Matthys 2018-12-16 15:52:04 +01:00
  • 9f3e060a3d
         This is a better one line description. Bram Matthys 2018-12-16 13:56:17 +01:00
  • 0254894368
         Authentication prompt for non-SASL users: We previously introduced the "require sasl" block which allows you to force users from certain IP addresses to authenticate with their nickname and password via SASL. We now offer a new experimental module called 'saslemulation' which will help non-SASL users by showing a notice and asking them to authenticate to their account via /AUTH <user>:<pass>. See https://www.unrealircd.org/docs/Set_block#set::sasl-emulation Bram Matthys 2018-12-16 13:51:22 +01:00
  • c124f65027 fix IPv6 DNS blacklist (#78) k4bek4be 2018-12-15 19:53:33 +01:00
  • 3774e5661f
         Fix for *-with-override operclasses. Bram Matthys 2018-12-14 18:10:14 +01:00
  • a0167c35c0
         Major reorganization of operclass privileges: * The operclass privileges have been redone. Since there were 50+ changes to the 100+ privileges it makes little sense to list the changes here. If, like 99% of the users, you use default operclasses such as "globop" and "admin-with-override" then you don't need to do anything. However, if you have custom operclass { } blocks then the privileges will have to be redone. For more information on the conversion process, see https://www.unrealircd.org/docs/FAQ#New_operclass_permissions For the new list of permissions, with much better naming and grouping: https://www.unrealircd.org/docs/Operclass_permissions The inconsistency in the privileges was initially reported by webczat in https://bugs.unrealircd.org/view.php?id=4771 The subsequent reorganization took two full days, so.. hopefully the people who are using - or plan to use - custom operclasses will like the new layout... except that they need to redo their work of course ;) Bram Matthys 2018-12-14 17:05:32 +01:00
  • e470541a8b
         Windows............ whatever. Bram Matthys 2018-12-10 18:28:13 +01:00
  • 267f6adc54
         Tadah. Fix vs2017, reported by Gottem. Bram Matthys 2018-12-10 18:15:22 +01:00
  • 7dcb5a5bb1
         The authentication types 'md5', 'sha1' and 'ripemd160' have been deprecated because they can be cracked at high speeds. They still work, but a warning will be shown on boot and on rehash. Please use 'bcrypt' or (even better) the new 'argon2' type instead: "./unrealircd mkpasswd argon2" or "/mkpasswd argon2 passwd" on IRC. Bram Matthys 2018-12-10 15:36:51 +01:00
  • 02184fe3a0
         Write release notes (reflecting current state, anyway). [skip ci] Bram Matthys 2018-12-10 09:00:35 +01:00
  • b335f8c284
         Remove -lrt and -ldl for systems lacking pkg-config and building with system libargon2. Bram Matthys 2018-12-10 08:49:30 +01:00
  • 8bbcd94071
         Set UnrealIRCd version to 4.2.1-dev Bram Matthys 2018-12-10 08:24:57 +01:00
  • 9fdd93f0e4
         Fix libargon2 autodetection (system lib). Bram Matthys 2018-12-10 08:19:41 +01:00
  • 942da806dd
         Make build test compile with Argon2 lib Bram Matthys 2018-12-09 17:56:04 +01:00
  • a852b480d5
         Add support for Argon2 password hashes (argon2id). Also, make this the default for './unrealircd mkpasswd'. The Windows version also works.. I just need to create a new library package, will be done later today or tomorrow. https://bugs.unrealircd.org/view.php?id=5116 Bram Matthys 2018-12-09 17:22:12 +01:00
  • 459a55245a
         No longer require "};" in config files, from now on "}" will suffice. Note that both }; and } forms are accepted now, even mixed, and this will not raise a warning or error. I've always found it odd that we required a ; after }. In a language like C for typedef structs it has some meaning since there could be an alias between the } and the ;, but in UnrealIRCd there's no such thing. Bram Matthys 2018-12-08 16:03:58 +01:00
  • 51ed51dff1
         Remove non-standard 'nested comments' features, also known as "comments within comments are not ignored". Reported by bekarfel in https://bugs.unrealircd.org/view.php?id=4075 FAQ entry: https://www.unrealircd.org/docs/FAQ#Nesting_comments Bram Matthys 2018-12-08 15:51:50 +01:00
  • 7cd0bbbcb9
         On second thought, for m_whox the priority is not important, so set it to zero (0). Bram Matthys 2018-12-08 15:29:02 +01:00
  • 9cfff2d07d
         In 4.2.0 we added support for priorities in CmdoverrideAddEx(), however it turns out they were accidentally reversed. This is now corrected: highest number = highest prioty. Reported by Gottem in https://bugs.unrealircd.org/view.php?id=5162 Bram Matthys 2018-12-08 15:23:42 +01:00
  • 8d1047d4e9
         Remove old function is_irc_banned(). Ahhh, WebTV times.. Bram Matthys 2018-12-08 13:06:41 +01:00
  • 84686f02bb
         Fix checking for target nick bans (cannot change to a nick that is banned). This was and still is the default, set::check-target-nick-bans 'yes', however the feature was broken since UnrealIRCd 4.0.0 (-betaX) by commit 709c7e890e. Reported by PeGaSuS and St3Nl3y. Bram Matthys 2018-12-08 13:01:27 +01:00
  • 4bef3a5238
         Nothing important. Update comments of place_host_ban() and add an explicit 'case BAN_ACT_SOFT_KILL', even though it is already handled by 'case default'. Bram Matthys 2018-11-21 14:26:35 +01:00
  • 4a0dcc5f13
         Load antimixedutf8 from modules.optional.conf Bram Matthys 2018-11-21 12:35:25 +01:00
  • 9d5e46c43c
         Set default score to 10. Prevents innocent Russians from getting caught :D Bram Matthys 2018-11-18 20:07:09 +01:00
  • 9f7b8997f2
         Fix stupid bug for <4.2.0, reported by PeGaSuS Bram Matthys 2018-11-18 19:52:54 +01:00
  • 112c5d922e
         Fixes for Cyrillic (false positives when speaking Russian, etc...) Bram Matthys 2018-11-18 19:39:39 +01:00
  • b89bd719a7
         Compatibility... Bram Matthys 2018-11-18 18:50:45 +01:00
  • d0799a0f04
         Build antimixedutf8 Bram Matthys 2018-11-18 18:28:28 +01:00
  • 6f3ef8e3a7 Update help.conf (#76) Vitor 2018-11-18 18:21:34 +01:00
  • 4b5e950ffd Update antimixedutf8.c (#77) Vitor 2018-11-18 17:00:55 +01:00
  • 793e827218
         Add "anti mixed utf8" module (antimixedutf8): This module will detect and stop spam containing of characters of mixed "scripts", where some characters are in Latin script and other characters are in Cyrillic. This unusual behavior can be detected easily and action can be taken. Bram Matthys 2018-11-18 15:19:11 +01:00
  • d11b3228e6
         ** UnrealIRCd 4.2.0 ** Bram Matthys 2018-09-29 21:31:35 +02:00
  • 98a33f7485
         Windows: modules.optional.conf missing Bram Matthys 2018-09-29 20:08:26 +02:00
  • 02d69e7d83
         Update release notes / version Bram Matthys 2018-09-28 15:32:31 +02:00
  • 2509482e02
         Update UnrealIRCd version Bram Matthys 2018-09-28 09:31:35 +02:00
  • 6acfa3404b
         UnrealIRCd version updates Bram Matthys 2018-09-28 09:26:40 +02:00
  • 02c5c8567a
         Fix rare crash if deleting spamfilter by id that isn't a spamfilter. Bram Matthys 2018-09-23 18:41:47 +02:00
  • b4b6ebbca3
         Similarly, use sptr/acptr to conform to current style. Bram Matthys 2018-09-22 12:44:03 +02:00
  • 75e2ed38e2
         Some re-indenting / codestyle changes, nothing fancy, mostly whitespace and brackets. Bram Matthys 2018-09-22 12:42:14 +02:00
  • 1feeb86cd3
         Fix crash bug in m_whox. Bram Matthys 2018-09-22 11:38:08 +02:00
  • 24ea77f507
         Update release notes @skip-ci Bram Matthys 2018-09-21 09:32:59 +02:00
  • a7af69b887
         Use same ciphersuite as decided earlier. Bram Matthys 2018-09-21 09:11:09 +02:00
  • d56eddd69a
         'timedban' and 'nocodes' were (still) marked 3rd party, even though they are official modules. Bram Matthys 2018-09-21 08:58:44 +02:00
  • 7d38909126
         m_whox: fix -Wparentheses warning Bram Matthys 2018-09-21 08:50:04 +02:00
  • fb0148a44a
         New set::ssl::options::ciphersuites option for TLSv1.3. Since OpenSSL decided not to use the regular ciphers but make this a separate option, we now make this a separate option as well. So there is ::ciphers for <=TLSv1.2 and ::ciphersuites for TLSv1.3 More documentation will follow. Patch from 'i' in https://bugs.unrealircd.org/view.php?id=5149 Bram Matthys 2018-09-20 20:14:18 +02:00
  • bd0821fc41
         Add m_whox to Windows build makefile Bram Matthys 2018-09-20 20:06:19 +02:00
  • c4eac1df0e
         Add initial version of m_whox from 'i'. This is to get it tested by the buildfarm / autotesters. More commits will follow. Bram Matthys 2018-09-20 20:04:29 +02:00
  • 30da2ae553
         Module devs: Add priorities for command overrides. Use: CmdoverrideAddEx(module, name, priority, function) Suggested by Gottem in https://bugs.unrealircd.org/view.php?id=5143 ..and needed by some upcoming stuff. Bram Matthys 2018-09-20 20:01:39 +02:00
  • 886b67ca8a
         Merge pull request #73 from digitalcircuit/fix-strip-monostrike-format Bram Matthys 2018-09-16 08:12:26 +02:00
  • dba2081641 m_message: Also strip monospace/strikethrough Shane Synan 2018-09-15 16:25:05 -05:00
  • 3f7ec605dd
         The away-notify CAP did not send AWAY status upon join, which is required. Reported by digitalcircuit in https://bugs.unrealircd.org/view.php?id=5144 Bram Matthys 2018-09-15 08:46:18 +02:00
  • 57a008b808
         UnrealIRCd 4.0.19-rc2 Bram Matthys 2018-09-14 09:51:25 +02:00
  • cd2f77defd
         Update release notes @skip-ci Bram Matthys 2018-09-14 09:45:19 +02:00
  • 402958a3c6
         Allow slashes in vhost/chghost/sethost/.. (but not through DNS) Bram Matthys 2018-09-11 20:25:32 +02:00
  • 8738c42b82
         Update release notes @skip-ci Bram Matthys 2018-09-10 18:47:01 +02:00