2 * *****************************************************************
3 * X3 Services Example Configuration file.
5 * Copy it to your x3 runtime dir, and edit to taste.
7 * This file allows two kinds of comments. Whitespaces between
8 * tokens are ignored. All strings (even if they're just numbers)
9 * MUST be enclosed in double quotes. There must be a semicolon
10 * after every * key/value pair.
13 /* UPLINKS (servers we connect to) *********************************
14 * Each subsection describes one server. X3 will try to connect to
15 * each in turn maxtries times, and then will quit.
18 // This first entry connects to an ircd on teh same server an X3..
19 "Hub" { // This can be any string, just used here for your conveniance
20 "address" "127.0.0.1"; // The IP address of the server
21 "port" "8888"; // What TCP port to connect to
22 "password" "laoo,rpe"; // Both of these passwords must match
23 "their_password" "laoo,rpe"; // the one in the ircd C line for X3.
24 "enabled" "1"; // Set to 0 to disable connecting to this server
25 "max_tries" "10"; // How many times to attemt reconnect before quitting
26 "bind_address" "127.0.0.1"; // LOCAL IP address we want to connect FROM
28 // This next one connects to an ircd on another server
30 // IP address and port the server listens on
31 "address" "192.168.234.123"; // IP of remote server
33 "password" "ekrpat"; // C line passwords
34 "their_password" "ekrpat"; // Set same as above
35 "enabled" "0"; // Set this to 1 to use this server..
37 "bind_address" "192.168.1.10";
41 /* SERVER (Details about our existance) **********************************
44 "hostname" "X3.AfterNET.Services"; // The servers name. (Use this in the ircd's C line)
45 "description" "AfterNET Network Services"; // Shows up in /links.
47 "hidden_host" "Users.AfterNET.Org"; // set this if you enabled Nefarious' +x mode
48 /* hidden_host should match the F:HIDDEN_HOST: line in your ircu's ircd.conf;
49 * x3 does not set the host suffix for users, but must know it when making
50 * things like bans, where it should not show the user's real hostname. */
51 "numeric" "51"; // hint: If you get collisions on link, CHANGE THIS.
52 "max_users" "256"; // You can save a little memory by setting this to a lower value.
53 "force_n2k" "1"; // Use extended (5-digit) numnick for self, even if 3 are possible.
56 "max_cycles" "30"; // max uplink cycles before giving up
57 // Admin information is traditionally: location, location, email
58 // This shows up on a /admin x3.afternet.services command.
60 "AfterNET IRC Network",
62 "Support Staff <support@afternet.org>"
64 /* the following two settings are for ircu's HEAD_IN_SAND features, and are equivelent to
65 * the F: lines in ircu's ircd.conf. both can be disabled by commenting them out. */
66 //"his_servername" "*.AfterNET.org"; // hidden server name, shown in remote /whois requests
67 //"his_servercomment" "AfterNET IRC Network";
70 /* SERVICES (Bot nicknames) *******************************************
71 * Each section describes one service nickname and the details of that
73 * You may disable a service by commenting out its "nick" config item.
76 /* Nickserv is the bot you register with and auth to.
77 * Afternet uses the name "Authserv" without the nickname reservation
78 * features enabled. Some nets call it Nickserv and configure it to
82 "nick" "AuthServ"; // The bots nick on IRC
84 // If you want to have *@* as the default hostmask, set
85 // default_hostmask. I highly reccomend this, and its required
86 // for login-on-connect to work.
87 "default_hostmask" "1";
89 // do we warn users when someone new auths to their account?
90 "warn_clone_auth" "1"; // -X3- warning: foobar has authed to your account
92 // default max number of logins allowed on new accounts. Users can set it
93 // to something different using authserv commands.
94 "default_maxlogins" "3";
96 // hard_maxlogins is the ammount the user cant override.
97 "hard_maxlogins" "10";
99 // This names a file that contains easily guessed passwords.
100 // It always contains "password", "<password>" and the user's
102 // uncomment if you have a dict file.
103 //"dict_file" "/usr/share/dict/words";
105 // Minimum number of various types of characters permitted in
106 // a password. Authserv will enforce these.
107 "password_min_length" "4";
108 "password_min_digits" "0";
109 "password_min_upper" "0";
110 "password_min_lower" "0";
112 // What should valid account and nicks look like?
113 // If valid_nick_regex is omitted, valid_account_regex is used
114 // for both nicks and accounts.
115 // Be very carefull changing these. This default is
116 // basically limited to letters, numbers, dash and underscore.
117 "valid_account_regex" "^[-_a-z0-9A-Z]{2,15}$";
118 "valid_nick_regex" "^[-_a-z][-_a-z0-9]*$";
120 // "Nickserv" networks, set this to 0. "Authserv" networks,
123 // One account may only own this many nicks.
124 "nicks_per_account" "4";
126 // Send a warning when someone uses a registered nick?
127 "warn_nick_owned" "0";
129 // What to do when someone uses the NickServ "reclaim" command?
130 // This can be one of "none", "warn", "svsnick", or "kill", but
131 // stock ircu does not support svsnick -- you need Bahamut or
133 "reclaim_action" "none";
135 // What (else) to do when someone uses a registered nick?
136 // This can be anything "reclaim_action" can be, but it makes
137 // more sense to use the "warn_nick_owned" instead of "warn".
138 "auto_reclaim_action" "none";
140 // How long to wait before doing the auto_reclaim_action?
141 // This is ignored if "auto_reclaim_action" is "none".
142 "auto_reclaim_delay" "0";
144 // access control for who can change account flags
145 // See /msg authserv help account flags
147 "g" "800"; // God mode
148 "lc_h" "800"; // support helper (lower case h)
149 "uc_H" "800"; // net helper (upper case H)
150 "S" "999"; // O3 access suspended
151 "b" "1"; // Bot (not sure what it does tho)
154 // and for who can change epithets for staff
155 // epithets show up in /whois as another line about the person.
156 "set_epithet_level" "800";
158 // what opserv access level do you need to set somebody else's level?
159 "modoper_level" "850";
161 // how often should accounts be expired?
162 "account_expire_freq" "1d";
164 // how long until an account with access to any channel(s) expires?
165 "account_expire_delay" "900d";
167 // how long until an account with no access to any channels expires?
168 "nochan_account_expire_delay" "365d";
170 // If somebody keeps guessing passwords incorrectly, do we gag them?
171 "autogag_enabled" "1";
172 "autogag_duration" "30m";
179 // How to integrate with email cookies?
180 // In order to use mail, mail must be enabled and configured
181 // down below in the mail section of this config file.
182 "email_enabled" "1"; // Allow account verification and password reset by email.
183 "email_required" "1"; // if above is 1, require verification to authenticate.
184 "cookie_timeout" "2d"; // how long before we expire cookies?
185 "accounts_per_email" "1"; // How many people can use the same email account.
187 "email_search_level" "600"; // minimum OpServ level to search based on email address (search print email *foo*)
188 "email_visible_level" "800"; // minimum OpServ level to see somebody's email address
189 "titlehost_suffix" "AfterNET.Org"; // 'USET title' sets a fake hostname of name.title.titlehost on a user.
190 "set_title_level" "900"; // Access to use 'uset title'.
191 "set_fakehost_level" "1000"; //Access to set a freeform fakehost. (uset fakehost)
193 // This is a hacked in feature which exports every account change to a file sync.log. Afternet uses this and
194 // a bunch of custom PHP scripts to make our websites SQL user db the same as authserv, every 5 minutes.
195 // You have to be a pretty handy person with the shell commands and programming to make use of this..
196 "sync_log" "0"; // Log account changes to a file for syncing w/ a website?
200 * OpServ is the bot opers use to do glines, look at info etc.
201 * Afternet uses the nickname "O3" for this as its easier to type.
205 // should use of this service be limited to global opers?
208 // fullname for service
209 "description" "Oper Service Bot"; // (for /whois)
211 // hostname for service; only used if "description" is also set
212 "hostname" "X3.AfterNET.Services"; // (for /whois)
214 // What channel should opserv send debug output to?
215 // I don't have any idea what debug info goes here. You can configure
216 // debugging logs in the log section to go to any channel.
217 // Probably safest to set to your oper channel.
218 "debug_channel" "#TheOps"; // Bot will join this channel, also.
219 "debug_channel_modes" "+tnOS"; // Modes get set every time X3 starts up
221 // where to send general alerts (e.g. flood alerts)?
222 "alert_channel" "#TheOps"; // Bot will join this channel, also.
223 "alert_channel_modes" "+"; // Modes get set every time X3 starts up
225 // who to tell about staff auths?
226 "staff_auth_channel" "#OperServ"; // Bot will join this channel, also.
227 "staff_auth_channel_modes" "+tnOs"; // modes get set every time X3 starts up
229 // how many clones to allow from an untrusted host?
230 // Use this carefully, users with half the # of clones will trigger this
231 // when a server pings out and they reconnect before the old connection is noticed
232 // to be dead by the server.. so set it at about twice the # you want to allow to
233 // avoid false positives.
234 "untrusted_max" "6"; // 3 connections and 3 ghosts, 7th connection causes a gline.
236 // how long of a g-line should be issued if the max hosts is exceeded?
237 "clone_gline_duration" "2h"; // durations are smhdmy
239 // how long to g-line for ?block (or, by default, for trace gline)?
240 "block_gline_duration" "12h";
242 // When a user joins an illegal channel, O3 joins it and locks it down.
243 // how long to keep an illegal channel locked down (seconds)?
244 "purge_lock_delay" "60";
246 // The join-flood policer code goes off all the time when a server
247 // goes down (and everyone reconnects) so i don't reccomend using it.
248 // Automatically moderate join flooded channels?
249 "join_flood_moderate" "0";
250 // channel join flood policer params?
255 // Don't moderate and warn channels unless there are more than
256 // join_flood_moderate_threshold users in the channel. the
257 // value 0 will disable the threshold.
258 "join_flood_moderate_threshold" "50";
259 // new user flood policer params
268 // Does your ircd have off-channel services support?
269 // Bahamut has it, Nefarious has it, but its inharently flawed and will cause desynch, so don't use it.
272 // Infolines are sent when channel users join the channel. Users set them with USET INFO in X3.
273 // how long should a person be unseen before resending infoline?
276 // Greetings can be configured by the channel manager(s) and sent to users who join the channel.
277 // Many people (rightly) find this annoying, so keep them short.
278 // maximum greeting length
279 "max_greetlen" "120";
281 // maximum users in a channel userlist
282 "max_chan_users" "512";
283 // maximum bans on a channel banlist
284 "max_chan_bans" "512";
285 // maximum length of a user's infoline
286 "max_userinfo_length" "400"; // for god sake lower this. 80 seems good.
288 // If SET DynLimit is on and there are N users in the channel, ChanServ will
289 // try to keep the limit at N+<adjust_threshold>. This makes the channel
290 // somewhat protected from clone attacks.
291 "adjust_threshold" "5";
292 // .. but ChanServ will only increment or decrement the limit this often.
293 "adjust_delay" "30"; // (seconds)
295 // How often to look for expired bans?
296 "ban_timeout_freq" "2m";
298 // How often to look for channels that have expired?
299 "chan_expire_freq" "1d";
301 // How long is a channel unvisited (by masters or above) before it can be expired?
302 "chan_expire_delay" "30d";
304 // what !set options should we show when user calls "!set" with no arguments?
305 "set_shows" ("DefaultTopic", "TopicMask", "Greeting", "UserGreeting", "Modes", "PubCmd", "InviteMe", "UserInfo", "EnfOps", "EnfModes", "EnfTopic", "TopicSnarf", "Setters", "CtcpReaction", "Voice", "Protect", "Toys", "DynLimit", "NoDelete");
307 // A list of !8ball responses
309 "Are you out of your MIND?",
310 "It won't happen, not a chance, definitely no.",
311 "Outlook seems bleak.",
312 "My sources say no.",
314 "It is decidedly so.",
315 "It's hard to be sure.",
318 "If the prophets wish it...",
319 "Forecast hazy, try again later.",
327 // channel(s) that support helpers must be in to be helping
328 // if this is a list, any one by itself will do
329 "support_channel" ("#Operations", "#Help");
331 // maximum number of channels a user may have. ( FORCE can override )
334 // how long between automatic topic refreshes with TopicRefresh 0
335 "refresh_period" "99d"; // Nefarious sync's topics so we'll practically disable this..
337 // what should !access say for various staff?
338 "irc_operator_epithet" "AfterNET IRC Operator";
339 "network_helper_epithet" "AfterNET Network Helper";
340 "support_helper_epithet" "AfterNET Support Helper";
342 // what should a newly registered channel get as its modes?
343 "default_modes" "+nt";
345 // minimum opserv access to set, clear or override channel nodelete setting?
346 "nodelete_level" "1";
349 /* Global is a service bot that can send out network-wide messages for you. I
350 * like to set ours' nick to 'AfterNET', but some people use 'Global'
354 // should users get community announcements by default or not?
355 // community announcements are a type of global that users may
356 // opt into (or out of, depending on this setting)
357 "announcements_default" "on";
361 /* MODULES (optional components) *************************************************
362 * These must be explicitly compiled in (see ./configure --help)
363 * When enabled, they are configured here..
366 /* Helpserv is a help-queue tracker module for your #support channels, if
367 * they are busy. It issues users tickets, and tracks the next available helper.
370 // The description/fullname field
371 "description" "Help Queue Manager"; // (for whois)
373 // HelpServ bots log all of their requests to this file, with
374 // details on when they were opened, closed, their contents,
375 // helper, etc. The file is written in saxdb format for easy
376 // parsing by external programs. Please note that you cannot
377 // use ?set to change this value while x3 is running.
378 "reqlogfile" "helpservreq.log";
380 // How long should a helpserv be inactive (no requests assigned)
381 // before it can be unregistered by the expire command?
384 /* SockCheck reads sockcheck.conf and can do configurable scans
385 * to probe for open relays in an attempt to stop drones from using
386 * the network. DO NOT enable this unless you have permission from
387 * your ISP.. the probes will show up as attacks on everyones firewalls
388 * and you will get a lot of complaints.
391 // disabling this hopefully
392 "max_sockets" "0"; // 64 is a good # of concurrent clients to be checked
393 "max_read" "1024"; // don't read more than 1024 bytes from any client
394 "gline_duration" "1d"; // issue G-lines lasting one hour
395 "max_cache_age" "60"; // only cache results for 60 seconds
396 "address" "192.168.1.10"; // do proxy tests from this address
398 /* Snoop sends connect, quit, join, and part messages for every user
399 * on the network, and helps in finding drones. Put it somewhere secure
400 * so your users privacy is honored.
403 // Where to send snoop messages?
404 "channel" "#MrSnoopy";
407 // Show new users and joins from net joins? (off by default)
410 /* Memoserv lets users send messages to other users accounts.
414 "message_expiry" "30d"; // age when messages are deleted; set
415 // to 0 to disable message expiration
432 /* MAIL (if and how X3 sends mail ) *********************************
433 * Mainly Authserv/Nickserv send mail, See the Nickserv
434 * section for additional mail settings also.
438 "mailer" "/usr/sbin/sendmail";
439 // OR Afternet uses a custom script to keep the services IP hidden:
440 // "mailer" "/home/x3user/x3/sendmail.sh";
441 "from_address" "supportrobot@afternet.org";
442 "extra_headers" ("AfterNET-Services: x3");
443 "body_prefix_first" ("Welcome to AfterNET, looks like this is your first email from us.");
444 "body_prefix" ("AfterNET Support - User and Channel registration system");
445 "body_suffix_first" ("", "AfterNET IRC Network", "http://www.afternet.org");
446 "body_suffix" ("", "AfterNET IRC Network", "http://www.afternet.org", "support@afternet.org","irc://irc.afternet.org/afternet");
449 /* DBS (Databases) *************************************************
450 * let you configure what databases go in what files.
452 * This default sets up everything in one big x3.db file.
454 * If you leave this section out, each database will be in its own file,
455 * and they will be written out every half hour.
458 // This just illustrates how you can jam every database into one huge ("mondo") file.
459 "ChanServ" { "mondo_section" "ChanServ"; };
460 "gline" { "mondo_section" "gline"; };
461 "Global" { "mondo_section" "Global"; };
462 "HelpServ" { "mondo_section" "HelpServ"; };
463 "modcmd" { "mondo_section" "modcmd"; };
464 "NickServ" { "mondo_section" "NickServ"; };
465 "OpServ" { "mondo_section" "OpServ"; };
466 "sendmail" { "mondo_section" "sendmail"; };
468 // These are the options if you want a database to be in its own file.
472 // How often should it be saved?
473 // (You can disable automatic saves by setting this to 0.)
478 /* LOGS (If and how X3 logs data ) ***********************************
479 * LOGS sets up where X3 logs various kinds of info to.
482 // Two kinds of items exist in this section.
484 // One is a facility configuration subsection. These have the
485 // name of a log facility (one of "ChanServ", "Global",
486 // "HelpServ", "NickServ", "OpServ", "ProxyCheck", or "x3") and
487 // the value is a subsection. The "x3" log facility is a
488 // catch-all/fall-back facility.
490 // The "max_age" option says how long to keep log audit entries.
492 // The "max_count" option says how many log audit entries to keep.
494 // Audit (command tracking) entries are discarded if they exceed
495 // either limit: for example, if entry 500 is 10 minutes old, it
496 // will be discarded next time any audit command is logged.
499 // The other kind of item is a target list. The name of each is a
500 // description of facility-and-severity combinations, and the value
501 // is a string (or list of strings) that describe where matching
502 // events should be logged. As a special case, the facility * will
503 // specify how to log events regardless of their true facility, and
504 // the severity * will match all severities for a facility.
505 // Log targets use a psuedo-URI syntax: one of "file:filename",
506 // "std:[out|err|n]" where n is a valid file descriptor, or
507 // "irc:#channel" (nicknames or server masks can be used instead
508 // of channel names, but should be used with care).
509 // The severity is one of "replay", "debug", "command", "info",
510 // "override", "staff", "warning", "error", or "fatal".
511 // WARNING: If any severity except "replay" for a facility is left
512 // unspecified, it will use the default target (for example,
513 // "file:chanserv.log"). For "replay" severity, you must ALWAYS
514 // list a target to log it -- this is because it is very rarely
516 "*.*" ("std:out", "file:everything.log"); // does NOT suppress any defaults
517 "*.override,error,fatal" "irc:#TheOps"; // report all uses of staff commands
518 "*.staff" "irc:#MrSnoopy"; // report all uses of staff commands
519 "ChanServ.*" "file:chanserv.log"; // duplicates the default behavior
520 "ProxyCheck.*" (); // stop it from logging anything