[irc.git] / software / RELEASES / ircservices / achurch.org / services / lists / ircservices / 2001 / 001639.html

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
 <HEAD>
   <TITLE> [IRCServices] A discussion on the contents of the todo file (LONG)
   </TITLE>
   <LINK REL="Index" HREF="index.html" >
   <LINK REL="made" HREF="mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20A%20discussion%20on%20the%20contents%20of%20the%20todo%20file%20%28LONG%29&In-Reply-To=">
   <META NAME="robots" CONTENT="index,nofollow">
   <META http-equiv="Content-Type" content="text/html; charset=us-ascii">
   <LINK REL="Previous"  HREF="001653.html">
   <LINK REL="Next"  HREF="001657.html">
 </HEAD>
 <BODY BGCOLOR="#ffffff">
   <H1>[IRCServices] A discussion on the contents of the todo file (LONG)</H1>
    <B>Imran Ali Rashid</B> 
    <A HREF="mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20A%20discussion%20on%20the%20contents%20of%20the%20todo%20file%20%28LONG%29&In-Reply-To="
       TITLE="[IRCServices] A discussion on the contents of the todo file (LONG)">u970042 at giki.edu.pk
       </A><BR>
    <I>Mon Mar 19 06:32:01 PST 2001</I>
    <P><UL>
        <LI>Previous message: <A HREF="001653.html">[IRCServices] [Long mail] Service won't deop a user
</A></li>
        <LI>Next message: <A HREF="001657.html">[IRCServices] A discussion on the contents of the todo file (LONG)
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#1639">[ date ]</a>
              <a href="thread.html#1639">[ thread ]</a>
              <a href="subject.html#1639">[ subject ]</a>
              <a href="author.html#1639">[ author ]</a>
         </LI>
       </UL>
    <HR>  
<!--beginarticle-->
<PRE>Warning: another long email... mostly due to repeating old stuff, so that
people know what is being discussed.

&gt;<i> &gt;Here onwards I'll mention &quot;Things to think about&quot;
</I>&gt;<i>
</I>&gt;<i>      I should point out that many of the things listed here I myself don't
</I>&gt;<i> entirely agree with, but listed anyway to consider later and hopefully
</I>&gt;<i> generate comments (like these).
</I>
:<i>-)
</I>
&gt;<i> &gt;&gt; ** &quot;Blacklist&quot; of evil users to prevent them from getting +o/+v
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Isn't this already there ala access list autodeop. set the nojoin level to -2 and use this at -1.
</I>&gt;<i> &gt;As far as novoice goes, it could be added the same way autodeop is there.
</I>&gt;<i>
</I>&gt;<i>      You're misunderstanding this.  This is not on a per-channel basis,
</I>&gt;<i> but something that applies to a user or users on the entire network, no
</I>&gt;<i> matter what channel they are in.  In particular, I was thinking that
</I>&gt;<i> hostmasks could be used here to deal with people (or bots) who don't
</I>&gt;<i> register their nicks and get other people to op/voice them.
</I>
Isn't this a channel issue, which can be dealt with using secureops and a good access
list? I mean, if they get opped and people in the channel don't like it, its a channel issue,
so why should it be considered globally.

&gt;<i> &gt;&gt; ** Warn about being kicked off after N password failures
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Why not put this in the help message? You could also send it after N-1 tries.
</I>&gt;<i>
</I>&gt;<i>      The second is already what I'm thinking of doing, but the first is
</I>&gt;<i> a good idea as well, thanks.
</I>
No Problem :-)

&gt;<i> &gt;&gt; ** Use an easily-parsable log format (eg: &lt;time&gt; CS REG #chan Founder)
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Whats wrong with the current format?
</I>&gt;<i>
</I>&gt;<i>      It's not as easy to parse programmatically as it could be.  For
</I>&gt;<i> example, some people have suggested something like:
</I>&gt;<i>
</I>&gt;<i> 03/02/2001:12:34:56 N R NickName <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">user at somehost.net</A> <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">email at add.ress</A>
</I>
OUCH. you're right, this is insulting to human eyes.
But if this can be parsed, whats wrong with the current format?

[Mar 19 08:29:48 2001] NickServ: aala-hazrat!<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">Stud at altamash.hostel4.giki.edu.pk</A>
identified for nick aala-hazrat

You can still use the first word after the braces end to know if its nickserv or not.
registered is the second word after the : if register is being talked about. I don't think
the second word starts with 'r' in any other scenario. The rest can easily be parsed
since you already know which word has the nick and mask.

&gt;<i>      One thing I'm considering is to (optionally, of course) keep two
</I>&gt;<i> logfiles: one the same as now, and one with the new format containing
</I>&gt;<i> only registrations/identifies/drops and similar events.
</I>
Ummm why another log file... As i mentioned above, it can still be parsed easily.
A little extra effort is required, but not as much as people think.

&gt;<i> &gt;&gt; OS REHASH command
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;Please Please Please put this in.
</I>&gt;<i> &gt;and umm a slightly different behaviour as compared to the SIGHUP signal.
</I>&gt;<i> &gt;I refer to the fact that everyone has to identify again.
</I>&gt;<i>
</I>&gt;<i>      If/when I do implement a rehash feature, this is what SIGHUP will
</I>&gt;<i> do (instead of restart).
</I>
Cool.
Umm &quot;if/when&quot;? please could u put this on the todo list? :-)
Anyone else in favour?

&gt;<i> &gt;&gt; CS Last used time for access, AKICK entries
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;This is a good idea. This was even mentioned by someone recently.
</I>&gt;<i> &gt;So lets discuss it and see how many people like it.
</I>&gt;<i>
</I>&gt;<i>      I'm already planning to implement this in 5.0 unless there's some
</I>&gt;<i> objection.
</I>
No objections

&gt;<i> &gt;&gt;NS Show services oper/admin/root status in INFO
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;I don't see why this is necessary... If you want to let people know who is what, make it a separate command. But I
</I>don't
&gt;<i> &gt;think that either of the suggestions(the todo one and the one i just mentioned) is a good one.
</I>&gt;<i>
</I>&gt;<i>      I don't see why it's a _bad_ suggestion, though with the newer
</I>&gt;<i> servers which support +a (Services admin) mode it's not as necessary
</I>&gt;<i> anymore.  My aim with this is to let people know who they can go to
</I>&gt;<i> when they have problems with Services--though of course that's really
</I>&gt;<i> a network policy matter more than anything, I suppose.
</I>
If you want to announce who the services admin is, there are easier ways, ala
motd and logonnews. Why put it in his nickserv info. This is not a good idea
from a security point of view, and like I said, if you want something extra to let
people know who to go to, put in a separate command, that lists active services
admins and so on.

&gt;<i> &gt;Even the channel founder is sometimes baffled, since he can't find out. You have to go to a services admin.
</I>&gt;<i> &gt;Why not add a command to let people know which nicks are linked to theirs(after identifying of course), and add
</I>&gt;<i> &gt;something to chanserv to let people know how a person got opped(the linked nick being a case in point).
</I>&gt;<i>
</I>&gt;<i>      The former is already present, though only usable by Services
</I>&gt;<i> admins (NickServ LISTLINKS).  The latter has been requested by other
</I>&gt;<i> people as well, and I'll look into implementing it for version 5.0.
</I>
Knew about the former, was requesting the latter :-)

&gt;<i> &gt;&gt; MS MemoServ IGNORE {ADD,DEL,LIST}
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;If a person wants to irritate you and u put him on ignore, whats to stop them from getting another nick and sending
</I>&gt;<i> &gt;another memo? to help against this and cases of memo flooding, a command may be put in to get rid of the memos of a
</I>&gt;<i> &gt;certain nick.
</I>&gt;<i>
</I>&gt;<i>      Since you can already delete ranges of memos with a single
</I>&gt;<i> command, I don't see the benefit of this.  As for the usefulness of
</I>&gt;<i> IGNORE, as someone else also pointed out, ignoring <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">user at host</A> masks
</I>&gt;<i> will prevent the register-a-new-nick problem.
</I>
Oops, forgot about that, I don't know how I missed it.
You're right. Bad suggestion.

&gt;<i> &gt;&gt; ** Add a way to send OperServ (and other?) commands from the shell
</I>&gt;<i> &gt;
</I>&gt;<i> &gt;This is defintely a big help. but how about just having a telnet session with services, since that would facilitate
</I>an
&gt;<i> &gt;easier access to commands, and is a seemingly good idea...
</I>&gt;<i>
</I>&gt;<i>      Although I haven't decided on exactly how, I hope to implement
</I>&gt;<i> something like this for version 5.0.  Obviously, there are security
</I>&gt;<i> concerns associated with allowing remote access, which I'll have to
</I>&gt;<i> consider as well.
</I>
how about 127.0.0.1 access only and having a password specially set
by the services admins for this purpose via irc or otherwise, which is
encrypted. What else is a concern from a security point of view?


&gt;<i> &gt;&gt; ** Services log channel
</I>&gt;<i> &gt;Was there a recent discussion on this?
</I>&gt;<i>
</I>&gt;<i>      Not recent, but a long time ago there was some discussion about
</I>&gt;<i> this.  As I recall, it essentially came down to the benefit of being
</I>&gt;<i> able to monitor the log online (remotely) vs. the security problems of
</I>&gt;<i> having Services status information broadcast on the network and the
</I>&gt;<i> additional network load.  I personally think it would be better off
</I>&gt;<i> not being added, but I'm open to comments.
</I>
As such, if there is access to the server on which services is hosted, then
this suggestion is useless, but if access is a problem, then this seems to
be a good idea to help with troubleshooting, and the same way, rotatelog
would seem helpful.. By the way, I know its still there via SIGUSR2 but why
was it removed from operserv?


</PRE>

<!--endarticle-->
    <HR>
    <P><UL>
        <!--threads-->
	<LI>Previous message: <A HREF="001653.html">[IRCServices] [Long mail] Service won't deop a user
</A></li>
	<LI>Next message: <A HREF="001657.html">[IRCServices] A discussion on the contents of the todo file (LONG)
</A></li>
         <LI> <B>Messages sorted by:</B> 
              <a href="date.html#1639">[ date ]</a>
              <a href="thread.html#1639">[ thread ]</a>
              <a href="subject.html#1639">[ subject ]</a>
              <a href="author.html#1639">[ author ]</a>
         </LI>
       </UL>

</body></html>
Commit	Line	Data
3bd189cb JR	1	<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
	2	<HTML>
	3	<HEAD>
	4	<TITLE> [IRCServices] A discussion on the contents of the todo file (LONG)
	5	</TITLE>
	6	<LINK REL="Index" HREF="index.html" >
	7	<LINK REL="made" HREF="mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20A%20discussion%20on%20the%20contents%20of%20the%20todo%20file%20%28LONG%29&In-Reply-To=">
	8	<META NAME="robots" CONTENT="index,nofollow">
	9	<META http-equiv="Content-Type" content="text/html; charset=us-ascii">
	10	<LINK REL="Previous" HREF="001653.html">
	11	<LINK REL="Next" HREF="001657.html">
	12	</HEAD>
	13	<BODY BGCOLOR="#ffffff">
	14	<H1>[IRCServices] A discussion on the contents of the todo file (LONG)</H1>
	15	<B>Imran Ali Rashid</B>
	16	<A HREF="mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20A%20discussion%20on%20the%20contents%20of%20the%20todo%20file%20%28LONG%29&In-Reply-To="
	17	TITLE="[IRCServices] A discussion on the contents of the todo file (LONG)">u970042 at giki.edu.pk
	18	</A><BR>
	19	<I>Mon Mar 19 06:32:01 PST 2001</I>
	20	<P><UL>
	21	<LI>Previous message: <A HREF="001653.html">[IRCServices] [Long mail] Service won't deop a user
	22	</A></li>
	23	<LI>Next message: <A HREF="001657.html">[IRCServices] A discussion on the contents of the todo file (LONG)
	24	</A></li>
	25	<LI> <B>Messages sorted by:</B>
	26	<a href="date.html#1639">[ date ]</a>
	27	<a href="thread.html#1639">[ thread ]</a>
	28	<a href="subject.html#1639">[ subject ]</a>
	29	<a href="author.html#1639">[ author ]</a>
	30	</LI>
	31	</UL>
	32	<HR>
	33	<!--beginarticle-->
	34	<PRE>Warning: another long email... mostly due to repeating old stuff, so that
	35	people know what is being discussed.
	36
	37	><i> >Here onwards I'll mention "Things to think about"
	38	</I>><i>
	39	</I>><i> I should point out that many of the things listed here I myself don't
	40	</I>><i> entirely agree with, but listed anyway to consider later and hopefully
	41	</I>><i> generate comments (like these).
	42	</I>
	43	:<i>-)
	44	</I>
	45	><i> >> ** "Blacklist" of evil users to prevent them from getting +o/+v
	46	</I>><i> >
	47	</I>><i> >Isn't this already there ala access list autodeop. set the nojoin level to -2 and use this at -1.
	48	</I>><i> >As far as novoice goes, it could be added the same way autodeop is there.
	49	</I>><i>
	50	</I>><i> You're misunderstanding this. This is not on a per-channel basis,
	51	</I>><i> but something that applies to a user or users on the entire network, no
	52	</I>><i> matter what channel they are in. In particular, I was thinking that
	53	</I>><i> hostmasks could be used here to deal with people (or bots) who don't
	54	</I>><i> register their nicks and get other people to op/voice them.
	55	</I>
	56	Isn't this a channel issue, which can be dealt with using secureops and a good access
	57	list? I mean, if they get opped and people in the channel don't like it, its a channel issue,
	58	so why should it be considered globally.
	59
	60	><i> >> ** Warn about being kicked off after N password failures
	61	</I>><i> >
	62	</I>><i> >Why not put this in the help message? You could also send it after N-1 tries.
	63	</I>><i>
	64	</I>><i> The second is already what I'm thinking of doing, but the first is
65	</I>><i> a good idea as well, thanks.
66	</I>
67	No Problem :-)
68
69	><i> >> ** Use an easily-parsable log format (eg: <time> CS REG #chan Founder)
70	</I>><i> >
71	</I>><i> >Whats wrong with the current format?
72	</I>><i>
73	</I>><i> It's not as easy to parse programmatically as it could be. For
74	</I>><i> example, some people have suggested something like:
75	</I>><i>
76	</I>><i> 03/02/2001:12:34:56 N R NickName <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">user at somehost.net</A> <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">email at add.ress</A>
77	</I>
78	OUCH. you're right, this is insulting to human eyes.
79	But if this can be parsed, whats wrong with the current format?
80
81	[Mar 19 08:29:48 2001] NickServ: aala-hazrat!<A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">Stud at altamash.hostel4.giki.edu.pk</A>
82	identified for nick aala-hazrat
83
84	You can still use the first word after the braces end to know if its nickserv or not.
85	registered is the second word after the : if register is being talked about. I don't think
86	the second word starts with 'r' in any other scenario. The rest can easily be parsed
87	since you already know which word has the nick and mask.
88
89	><i> One thing I'm considering is to (optionally, of course) keep two
90	</I>><i> logfiles: one the same as now, and one with the new format containing
91	</I>><i> only registrations/identifies/drops and similar events.
92	</I>
93	Ummm why another log file... As i mentioned above, it can still be parsed easily.
94	A little extra effort is required, but not as much as people think.
95
96	><i> >> OS REHASH command
97	</I>><i> >
98	</I>><i> >Please Please Please put this in.
99	</I>><i> >and umm a slightly different behaviour as compared to the SIGHUP signal.
100	</I>><i> >I refer to the fact that everyone has to identify again.
101	</I>><i>
102	</I>><i> If/when I do implement a rehash feature, this is what SIGHUP will
103	</I>><i> do (instead of restart).
104	</I>
105	Cool.
106	Umm "if/when"? please could u put this on the todo list? :-)
107	Anyone else in favour?
108
109	><i> >> CS Last used time for access, AKICK entries
110	</I>><i> >
111	</I>><i> >This is a good idea. This was even mentioned by someone recently.
112	</I>><i> >So lets discuss it and see how many people like it.
113	</I>><i>
114	</I>><i> I'm already planning to implement this in 5.0 unless there's some
115	</I>><i> objection.
116	</I>
117	No objections
118
119	><i> >>NS Show services oper/admin/root status in INFO
120	</I>><i> >
121	</I>><i> >I don't see why this is necessary... If you want to let people know who is what, make it a separate command. But I
122	</I>don't
123	><i> >think that either of the suggestions(the todo one and the one i just mentioned) is a good one.
124	</I>><i>
125	</I>><i> I don't see why it's a _bad_ suggestion, though with the newer
126	</I>><i> servers which support +a (Services admin) mode it's not as necessary
127	</I>><i> anymore. My aim with this is to let people know who they can go to
128	</I>><i> when they have problems with Services--though of course that's really
129	</I>><i> a network policy matter more than anything, I suppose.
130	</I>
131	If you want to announce who the services admin is, there are easier ways, ala
132	motd and logonnews. Why put it in his nickserv info. This is not a good idea
133	from a security point of view, and like I said, if you want something extra to let
134	people know who to go to, put in a separate command, that lists active services
135	admins and so on.
136
137	><i> >Even the channel founder is sometimes baffled, since he can't find out. You have to go to a services admin.
138	</I>><i> >Why not add a command to let people know which nicks are linked to theirs(after identifying of course), and add
139	</I>><i> >something to chanserv to let people know how a person got opped(the linked nick being a case in point).
140	</I>><i>
141	</I>><i> The former is already present, though only usable by Services
142	</I>><i> admins (NickServ LISTLINKS). The latter has been requested by other
143	</I>><i> people as well, and I'll look into implementing it for version 5.0.
144	</I>
145	Knew about the former, was requesting the latter :-)
146
147	><i> >> MS MemoServ IGNORE {ADD,DEL,LIST}
148	</I>><i> >
149	</I>><i> >If a person wants to irritate you and u put him on ignore, whats to stop them from getting another nick and sending
150	</I>><i> >another memo? to help against this and cases of memo flooding, a command may be put in to get rid of the memos of a
151	</I>><i> >certain nick.
152	</I>><i>
153	</I>><i> Since you can already delete ranges of memos with a single
154	</I>><i> command, I don't see the benefit of this. As for the usefulness of
155	</I>><i> IGNORE, as someone else also pointed out, ignoring <A HREF="http://www.ircservices.za.net/mailman/listinfo/ircservices">user at host</A> masks
156	</I>><i> will prevent the register-a-new-nick problem.
157	</I>
158	Oops, forgot about that, I don't know how I missed it.
159	You're right. Bad suggestion.
160
161	><i> >> ** Add a way to send OperServ (and other?) commands from the shell
162	</I>><i> >
163	</I>><i> >This is defintely a big help. but how about just having a telnet session with services, since that would facilitate
164	</I>an
165	><i> >easier access to commands, and is a seemingly good idea...
166	</I>><i>
167	</I>><i> Although I haven't decided on exactly how, I hope to implement
168	</I>><i> something like this for version 5.0. Obviously, there are security
169	</I>><i> concerns associated with allowing remote access, which I'll have to
170	</I>><i> consider as well.
171	</I>
172	how about 127.0.0.1 access only and having a password specially set
173	by the services admins for this purpose via irc or otherwise, which is
174	encrypted. What else is a concern from a security point of view?
175
176
177	><i> >> ** Services log channel
178	</I>><i> >Was there a recent discussion on this?
179	</I>><i>
180	</I>><i> Not recent, but a long time ago there was some discussion about
181	</I>><i> this. As I recall, it essentially came down to the benefit of being
182	</I>><i> able to monitor the log online (remotely) vs. the security problems of
183	</I>><i> having Services status information broadcast on the network and the
184	</I>><i> additional network load. I personally think it would be better off
185	</I>><i> not being added, but I'm open to comments.
186	</I>
187	As such, if there is access to the server on which services is hosted, then
188	this suggestion is useless, but if access is a problem, then this seems to
189	be a good idea to help with troubleshooting, and the same way, rotatelog
190	would seem helpful.. By the way, I know its still there via SIGUSR2 but why
191	was it removed from operserv?
192
193
194
195	</PRE>
196
197	<!--endarticle-->
198	<HR>
199	<P><UL>
200	<!--threads-->
201	<LI>Previous message: <A HREF="001653.html">[IRCServices] [Long mail] Service won't deop a user
202	</A></li>
203	<LI>Next message: <A HREF="001657.html">[IRCServices] A discussion on the contents of the todo file (LONG)
204	</A></li>
205	<LI> <B>Messages sorted by:</B>
206	<a href="date.html#1639">[ date ]</a>
207	<a href="thread.html#1639">[ thread ]</a>
208	<a href="subject.html#1639">[ subject ]</a>
209	<a href="author.html#1639">[ author ]</a>
210	</LI>
211	</UL>
212
213	</body></html>