]> jfr.im git - irc/evilnet/x3.git/blob - x3.conf.example
projects / irc / evilnet / x3.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
Added extended_accounts x3.conf setting for compatability with stock undernet ircu
[irc/evilnet/x3.git] / x3.conf.example
1 /* *****************************************************************
2 * X3 Services Example Configuration file.
3 *
4 * Copy it to your x3 runtime dir, and edit to taste.
5 *
6 * This file allows two kinds of comments. Whitespaces between
7 * tokens are ignored. All strings (even if they're just numbers)
8 * MUST be enclosed in double quotes. There must be a semicolon
9 * after every * key/value pair.
10 */
11
12 /* UPLINKS (servers we connect to) *********************************
13 * Each subsection describes one server. X3 will try to connect to
14 * each in turn maxtries times, and then will quit.
15 */
16 "uplinks" {
17 // This first entry connects to an ircd on teh same server an X3..
18 "Hub" { // This can be any string, just used here for your conveniance
19 "address" "127.0.0.1"; // The IP address of the server
20 "port" "8888"; // What TCP port to connect to
21 "password" "laoo,rpe"; // Both of these passwords must match
22 "their_password" "laoo,rpe"; // the one in the ircd C line for X3.
23 "enabled" "1"; // Set to 0 to disable connecting to this server
24 "max_tries" "10"; // How many times to attemt reconnect before quitting
25 "bind_address" "127.0.0.1"; // LOCAL IP address we want to connect FROM
26 };
27 // This next one connects to an ircd on another server
28 "Hub-west" {
29 // IP address and port the server listens on
30 "address" "192.168.234.123"; // IP of remote server
31 "port" "8888";
32 "password" "ekrpat"; // C line passwords
33 "their_password" "ekrpat"; // Set same as above
34 "enabled" "0"; // Set this to 1 to use this server..
35 "max_tries" "1";
36 "bind_address" "192.168.1.10";
37 };
38 };
39
40 /* SERVER (Details about our existance) **********************************
41 */
42 "server" {
43 "hostname" "X3.AfterNET.Services"; // The servers name. (Use this in the ircd's C line)
44 "description" "AfterNET Network Services"; // Shows up in /links.
45 "network" "AfterNET";
46 "hidden_host" "Users.AfterNET.Org"; // set this if you enabled Nefarious' +x mode
47 /* hidden_host should match the F:HIDDEN_HOST: line in your ircu's ircd.conf;
48 * x3 does not set the host suffix for users, but must know it when making
49 * things like bans, where it should not show the user's real hostname. */
50 "numeric" "51"; // hint: If you get collisions on link, CHANGE THIS.
51 "max_users" "256"; // You can save a little memory by setting this to a lower value.
52 "force_n2k" "1"; // Use extended (5-digit) numnick for self, even if 3 are possible.
53 "ping_freq" "60";
54 "ping_timeout" "90";
55 "max_cycles" "30"; // max uplink cycles before giving up
56 // Admin information is traditionally: location, location, email
57 // This shows up on a /admin x3.afternet.services command.
58 "admin" (
59 "AfterNET IRC Network",
60 "www.afternet.org",
61 "Support Staff <support@afternet.org>"
62 );
63 /* extended_accounts -
64 * enable this for nefarious 0.4.x and higher. Sends 'AC R nick account'instead of
65 * 'AC nick account' and allows for renames etc. */
66 "extended_accounts" "1";
67 /* the following two settings are for ircu's HEAD_IN_SAND features, and are equivelent to
68 * the F: lines in ircu's ircd.conf. both can be disabled by commenting them out. */
69 //"his_servername" "*.AfterNET.org"; // hidden server name, shown in remote /whois requests
70 //"his_servercomment" "AfterNET IRC Network";
71 };
72
73 /* SERVICES (Bot nicknames) *******************************************
74 * Each section describes one service nickname and the details of that
75 * bot's features
76 * You may disable a service by commenting out its "nick" config item.
77 */
78 "services" {
79 /* Nickserv is the bot you register with and auth to.
80 * Afternet uses the name "Authserv" without the nickname reservation
81 * features enabled. Some nets call it Nickserv and configure it to
82 * reserve nicks.
83 */
84 "nickserv" {
85 "nick" "AuthServ"; // The bots nick on IRC
86
87 // If you want to have *@* as the default hostmask, set
88 // default_hostmask. I highly reccomend this, and its required
89 // for login-on-connect to work.
90 "default_hostmask" "1";
91
92 // do we warn users when someone new auths to their account?
93 "warn_clone_auth" "1"; // -X3- warning: foobar has authed to your account
94
95 // default max number of logins allowed on new accounts. Users can set it
96 // to something different using authserv commands.
97 "default_maxlogins" "3";
98
99 // hard_maxlogins is the ammount the user cant override.
100 "hard_maxlogins" "10";
101
102 // This names a file that contains easily guessed passwords.
103 // It always contains "password", "<password>" and the user's
104 // account name.
105 // uncomment if you have a dict file.
106 //"dict_file" "/usr/share/dict/words";
107
108 // Minimum number of various types of characters permitted in
109 // a password. Authserv will enforce these.
110 "password_min_length" "4";
111 "password_min_digits" "0";
112 "password_min_upper" "0";
113 "password_min_lower" "0";
114
115 // What should valid account and nicks look like?
116 // If valid_nick_regex is omitted, valid_account_regex is used
117 // for both nicks and accounts.
118 // Be very carefull changing these. This default is
119 // basically limited to letters, numbers, dash and underscore.
120 "valid_account_regex" "^[-_a-z0-9A-Z]{2,15}$";
121 "valid_nick_regex" "^[-_a-z][-_a-z0-9]*$";
122
123 // "Nickserv" networks, set this to 0. "Authserv" networks,
124 // set it to 1.
125 "disable_nicks" "1";
126 // One account may only own this many nicks.
127 "nicks_per_account" "4";
128
129 // Send a warning when someone uses a registered nick?
130 "warn_nick_owned" "0";
131
132 // What to do when someone uses the NickServ "reclaim" command?
133 // This can be one of "none", "warn", "svsnick", or "kill", but
134 // stock ircu does not support svsnick -- you need Bahamut or
135 // nefarious.
136 "reclaim_action" "none";
137
138 // What (else) to do when someone uses a registered nick?
139 // This can be anything "reclaim_action" can be, but it makes
140 // more sense to use the "warn_nick_owned" instead of "warn".
141 "auto_reclaim_action" "none";
142
143 // How long to wait before doing the auto_reclaim_action?
144 // This is ignored if "auto_reclaim_action" is "none".
145 "auto_reclaim_delay" "0";
146
147 // access control for who can change account flags
148 // See /msg authserv help account flags
149 "flag_levels" {
150 "g" "800"; // God mode
151 "lc_h" "800"; // support helper (lower case h)
152 "uc_H" "800"; // net helper (upper case H)
153 "S" "999"; // O3 access suspended
154 "b" "1"; // Bot (not sure what it does tho)
155 };
156
157 // and for who can change epithets for staff
158 // epithets show up in /whois as another line about the person.
159 "set_epithet_level" "800";
160
161 // what opserv access level do you need to set somebody else's level?
162 "modoper_level" "850";
163
164 // how often should accounts be expired?
165 "account_expire_freq" "1d";
166
167 // how long until an account with access to any channel(s) expires?
168 "account_expire_delay" "900d";
169
170 // how long until an account with no access to any channels expires?
171 "nochan_account_expire_delay" "365d";
172
173 // If somebody keeps guessing passwords incorrectly, do we gag them?
174 "autogag_enabled" "1";
175 "autogag_duration" "30m";
176 "auth_policer" {
177 "size" "5";
178 "drain-rate" "0.05";
179 };
180
181
182 // How to integrate with email cookies?
183 // In order to use mail, mail must be enabled and configured
184 // down below in the mail section of this config file.
185 "email_enabled" "1"; // Allow account verification and password reset by email.
186 "email_required" "1"; // if above is 1, require verification to authenticate.
187 "cookie_timeout" "2d"; // how long before we expire cookies?
188 "accounts_per_email" "1"; // How many people can use the same email account.
189
190 "email_search_level" "600"; // minimum OpServ level to search based on email address (search print email *foo*)
191 "email_visible_level" "800"; // minimum OpServ level to see somebody's email address
192 "titlehost_suffix" "AfterNET.Org"; // 'USET title' sets a fake hostname of name.title.titlehost on a user.
193 "set_title_level" "900"; // Access to use 'uset title'.
194 "set_fakehost_level" "1000"; //Access to set a freeform fakehost. (uset fakehost)
195
196 // This is a hacked in feature which exports every account change to a file sync.log. Afternet uses this and
197 // a bunch of custom PHP scripts to make our websites SQL user db the same as authserv, every 5 minutes.
198 // You have to be a pretty handy person with the shell commands and programming to make use of this..
199 "sync_log" "0"; // Log account changes to a file for syncing w/ a website?
200 };
201
202 /*
203 * OpServ is the bot opers use to do glines, look at info etc.
204 * Afternet uses the nickname "O3" for this as its easier to type.
205 */
206 "opserv" {
207 "nick" "O3";
208 // should use of this service be limited to global opers?
209 "privileged" "1";
210
211 // fullname for service
212 "description" "Oper Service Bot"; // (for /whois)
213
214 // hostname for service; only used if "description" is also set
215 "hostname" "X3.AfterNET.Services"; // (for /whois)
216
217 // What channel should opserv send debug output to?
218 // I don't have any idea what debug info goes here. You can configure
219 // debugging logs in the log section to go to any channel.
220 // Probably safest to set to your oper channel.
221 "debug_channel" "#TheOps"; // Bot will join this channel, also.
222 "debug_channel_modes" "+tnOS"; // Modes get set every time X3 starts up
223
224 // where to send general alerts (e.g. flood alerts)?
225 "alert_channel" "#TheOps"; // Bot will join this channel, also.
226 "alert_channel_modes" "+"; // Modes get set every time X3 starts up
227
228 // who to tell about staff auths?
229 "staff_auth_channel" "#OperServ"; // Bot will join this channel, also.
230 "staff_auth_channel_modes" "+tnOs"; // modes get set every time X3 starts up
231
232 // how many clones to allow from an untrusted host?
233 // Use this carefully, users with half the # of clones will trigger this
234 // when a server pings out and they reconnect before the old connection is noticed
235 // to be dead by the server.. so set it at about twice the # you want to allow to
236 // avoid false positives.
237 "untrusted_max" "6"; // 3 connections and 3 ghosts, 7th connection causes a gline.
238
239 // how long of a g-line should be issued if the max hosts is exceeded?
240 "clone_gline_duration" "2h"; // durations are smhdmy
241
242 // how long to g-line for ?block (or, by default, for trace gline)?
243 "block_gline_duration" "12h";
244
245 // how long to shun for ?sblock (or, by default, for trace shun)?
246 "block_shun_duration" "12h";
247
248 // When a user joins an illegal channel, O3 joins it and locks it down.
249 // how long to keep an illegal channel locked down (seconds)?
250 "purge_lock_delay" "60";
251
252 // The join-flood policer code goes off all the time when a server
253 // goes down (and everyone reconnects) so i don't reccomend using it.
254 // Automatically moderate join flooded channels?
255 "join_flood_moderate" "0";
256 // channel join flood policer params?
257 "join_policer" {
258 "size" "20";
259 "drain-rate" "1";
260 };
261 // Don't moderate and warn channels unless there are more than
262 // join_flood_moderate_threshold users in the channel. the
263 // value 0 will disable the threshold.
264 "join_flood_moderate_threshold" "50";
265 // new user flood policer params
266 "new_user_policer" {
267 "size" "200";
268 "drain-rate" "3";
269 };
270 };
271
272 "chanserv" {
273 "nick" "X3";
274 // Does your ircd have off-channel services support?
275 // Bahamut has it, Nefarious has it, but its inharently flawed and will cause desynch, so don't use it.
276 "off_channel" "no";
277
278 // Infolines are sent when channel users join the channel. Users set them with USET INFO in X3.
279 // how long should a person be unseen before resending infoline?
280 "info_delay" "120";
281
282 // Greetings can be configured by the channel manager(s) and sent to users who join the channel.
283 // Many people (rightly) find this annoying, so keep them short.
284 // maximum greeting length
285 "max_greetlen" "120";
286
287 // maximum users in a channel userlist
288 "max_chan_users" "512";
289 // maximum bans on a channel banlist
290 "max_chan_bans" "512";
291 // maximum length of a user's infoline
292 "max_userinfo_length" "400"; // for god sake lower this. 80 seems good.
293
294 // If SET DynLimit is on and there are N users in the channel, ChanServ will
295 // try to keep the limit at N+<adjust_threshold>. This makes the channel
296 // somewhat protected from clone attacks.
297 "adjust_threshold" "5";
298 // .. but ChanServ will only increment or decrement the limit this often.
299 "adjust_delay" "30"; // (seconds)
300
301 // How often to look for expired bans?
302 "ban_timeout_freq" "2m";
303
304 // How often to look for channels that have expired?
305 "chan_expire_freq" "1d";
306
307 // How long is a channel unvisited (by masters or above) before it can be expired?
308 "chan_expire_delay" "30d";
309
310 // what !set options should we show when user calls "!set" with no arguments?
311 "set_shows" ("DefaultTopic", "TopicMask", "Greeting", "UserGreeting", "Modes", "PubCmd", "InviteMe", "UserInfo", "EnfOps", "EnfModes", "EnfTopic", "TopicSnarf", "Setters", "CtcpReaction", "Voice", "Protect", "Toys", "DynLimit", "NoDelete");
312
313 // A list of !8ball responses
314 "8ball" (
315 "Are you out of your MIND?",
316 "It won't happen, not a chance, definitely no.",
317 "Outlook seems bleak.",
318 "My sources say no.",
319 "You bet!",
320 "It is decidedly so.",
321 "It's hard to be sure.",
322 "Most definitely.",
323 "In your dreams...",
324 "If the prophets wish it...",
325 "Forecast hazy, try again later.",
326 "I don't know!",
327 "Absolutely!",
328 "Never.",
329 "Yes.",
330 "No.",
331 "Maybe.");
332
333 // channel(s) that support helpers must be in to be helping
334 // if this is a list, any one by itself will do
335 "support_channel" ("#Operations", "#Help");
336
337 // maximum number of channels a user may have. ( FORCE can override )
338 "max_owned" "2";
339
340 // how long between automatic topic refreshes with TopicRefresh 0
341 "refresh_period" "99d"; // Nefarious sync's topics so we'll practically disable this..
342
343 // what should !access say for various staff?
344 "irc_operator_epithet" "AfterNET IRC Operator";
345 "network_helper_epithet" "AfterNET Network Helper";
346 "support_helper_epithet" "AfterNET Support Helper";
347
348 // what should a newly registered channel get as its modes?
349 "default_modes" "+nt";
350
351 // minimum opserv access to set, clear or override channel nodelete setting?
352 "nodelete_level" "1";
353 };
354
355 /* Global is a service bot that can send out network-wide messages for you. I
356 * like to set ours' nick to 'AfterNET', but some people use 'Global'
357 */
358 "global" {
359 "nick" "Global";
360 // should users get community announcements by default or not?
361 // community announcements are a type of global that users may
362 // opt into (or out of, depending on this setting)
363 "announcements_default" "on";
364 };
365 };
366
367 /* MODULES (optional components) *************************************************
368 * These must be explicitly compiled in (see ./configure --help)
369 * When enabled, they are configured here..
370 */
371 "modules" {
372 /* Helpserv is a help-queue tracker module for your #support channels, if
373 * they are busy. It issues users tickets, and tracks the next available helper.
374 */
375 "helpserv" {
376 // The description/fullname field
377 "description" "Help Queue Manager"; // (for whois)
378
379 // HelpServ bots log all of their requests to this file, with
380 // details on when they were opened, closed, their contents,
381 // helper, etc. The file is written in saxdb format for easy
382 // parsing by external programs. Please note that you cannot
383 // use ?set to change this value while x3 is running.
384 "reqlogfile" "helpservreq.log";
385
386 // How long should a helpserv be inactive (no requests assigned)
387 // before it can be unregistered by the expire command?
388 "expiration" "60d";
389 };
390 /* SockCheck reads sockcheck.conf and can do configurable scans
391 * to probe for open relays in an attempt to stop drones from using
392 * the network. DO NOT enable this unless you have permission from
393 * your ISP.. the probes will show up as attacks on everyones firewalls
394 * and you will get a lot of complaints.
395 */
396 "sockcheck" {
397 // disabling this hopefully
398 "max_sockets" "0"; // 64 is a good # of concurrent clients to be checked
399 "max_read" "1024"; // don't read more than 1024 bytes from any client
400 "gline_duration" "1d"; // issue G-lines lasting one hour
401 "max_cache_age" "60"; // only cache results for 60 seconds
402 "address" "192.168.1.10"; // do proxy tests from this address
403 };
404 /* Snoop sends connect, quit, join, and part messages for every user
405 * on the network, and helps in finding drones. Put it somewhere secure
406 * so your users privacy is honored.
407 */
408 "snoop" {
409 // Where to send snoop messages?
410 "channel" "#MrSnoopy";
411 // Which bot?
412 "bot" "O3";
413 // Show new users and joins from net joins? (off by default)
414 "show_bursts" "0";
415 };
416 /* Memoserv lets users send messages to other users accounts.
417 */
418 "memoserv" {
419 "bot" "MemoServ";
420 "message_expiry" "30d"; // age when messages are deleted; set
421 // to 0 to disable message expiration
422 };
423 };
424
425 "policers" {
426 "commands-luser" {
427 "size" "5";
428 "drain-rate" "0.5";
429 };
430 };
431
432 "rlimits" {
433 "data" "50M";
434 "stack" "6M";
435 "vmem" "100M";
436 };
437
438 /* MAIL (if and how X3 sends mail ) *********************************
439 * Mainly Authserv/Nickserv send mail, See the Nickserv
440 * section for additional mail settings also.
441 */
442 "mail" {
443 "enable" "1";
444 "mailer" "/usr/sbin/sendmail";
445 // OR Afternet uses a custom script to keep the services IP hidden:
446 // "mailer" "/home/x3user/x3/sendmail.sh";
447 "from_address" "supportrobot@afternet.org";
448 "extra_headers" ("AfterNET-Services: x3");
449 "body_prefix_first" ("Welcome to AfterNET, looks like this is your first email from us.");
450 "body_prefix" ("AfterNET Support - User and Channel registration system");
451 "body_suffix_first" ("", "AfterNET IRC Network", "http://www.afternet.org");
452 "body_suffix" ("", "AfterNET IRC Network", "http://www.afternet.org", "support@afternet.org","irc://irc.afternet.org/afternet");
453 };
454
455 /* DBS (Databases) *************************************************
456 * let you configure what databases go in what files.
457 *
458 * This default sets up everything in one big x3.db file.
459 *
460 * If you leave this section out, each database will be in its own file,
461 * and they will be written out every half hour.
462 */
463 "dbs" {
464 // This just illustrates how you can jam every database into one huge ("mondo") file.
465 "ChanServ" { "mondo_section" "ChanServ"; };
466 "gline" { "mondo_section" "gline"; };
467 "shun" { "mondo_section" "shun"; };
468 "Global" { "mondo_section" "Global"; };
469 "HelpServ" { "mondo_section" "HelpServ"; };
470 "modcmd" { "mondo_section" "modcmd"; };
471 "NickServ" { "mondo_section" "NickServ"; };
472 "OpServ" { "mondo_section" "OpServ"; };
473 "sendmail" { "mondo_section" "sendmail"; };
474
475 // These are the options if you want a database to be in its own file.
476 "mondo" {
477 // Where to put it?
478 "filename" "x3.db";
479 // How often should it be saved?
480 // (You can disable automatic saves by setting this to 0.)
481 "frequency" "30m";
482 };
483 };
484
485 /* LOGS (If and how X3 logs data ) ***********************************
486 * LOGS sets up where X3 logs various kinds of info to.
487 */
488 "logs" {
489 // Two kinds of items exist in this section.
490
491 // One is a facility configuration subsection. These have the
492 // name of a log facility (one of "ChanServ", "Global",
493 // "HelpServ", "NickServ", "OpServ", "ProxyCheck", or "x3") and
494 // the value is a subsection. The "x3" log facility is a
495 // catch-all/fall-back facility.
496 "x3" {
497 // The "max_age" option says how long to keep log audit entries.
498 "max_age" "10h";
499 // The "max_count" option says how many log audit entries to keep.
500 "max_count" "1024";
501 // Audit (command tracking) entries are discarded if they exceed
502 // either limit: for example, if entry 500 is 10 minutes old, it
503 // will be discarded next time any audit command is logged.
504 };
505
506 // The other kind of item is a target list. The name of each is a
507 // description of facility-and-severity combinations, and the value
508 // is a string (or list of strings) that describe where matching
509 // events should be logged. As a special case, the facility * will
510 // specify how to log events regardless of their true facility, and
511 // the severity * will match all severities for a facility.
512 // Log targets use a psuedo-URI syntax: one of "file:filename",
513 // "std:[out|err|n]" where n is a valid file descriptor, or
514 // "irc:#channel" (nicknames or server masks can be used instead
515 // of channel names, but should be used with care).
516 // The severity is one of "replay", "debug", "command", "info",
517 // "override", "staff", "warning", "error", or "fatal".
518 // WARNING: If any severity except "replay" for a facility is left
519 // unspecified, it will use the default target (for example,
520 // "file:chanserv.log"). For "replay" severity, you must ALWAYS
521 // list a target to log it -- this is because it is very rarely
522 // useful.
523 "*.*" ("std:out", "file:everything.log"); // does NOT suppress any defaults
524 "*.override,error,fatal" "irc:#TheOps"; // report all uses of staff commands
525 "*.staff" "irc:#MrSnoopy"; // report all uses of staff commands
526 "ChanServ.*" "file:chanserv.log"; // duplicates the default behavior
527 "ProxyCheck.*" (); // stop it from logging anything
528 };
Unnamed repository; edit this file 'description' to name the repository.