X-Git-Url: https://jfr.im/git/irc/evilnet/x3.git/blobdiff_plain/17d4a6989cbd5e8434c595aaebb48240ee943bbc..526f884e94d93c6927959058f258936ac2299d88:/x3.conf.example diff --git a/x3.conf.example b/x3.conf.example index 3700d34..c0e384e 100644 --- a/x3.conf.example +++ b/x3.conf.example @@ -49,17 +49,18 @@ * things like bans, where it should not show the user's real hostname. */ "hidden_host_type" "1"; // change this to 2 if you use Nefarious's style 2 host hiding. "key1" "45432"; // Set these key values to the network KEY values you use - "key2" "76934"; // for host hiding style 2. - "key3" "98336"; + "key2" "76934"; // for host hiding style 2. If you are using Nefarious 1.3.0 (type 8) + "key3" "98336"; // then these are ignored. "prefix" "AfterNET"; // If you use style 2 then this is the name that is prefixed to hosts. "numeric" "51"; // hint: If you get collisions on link, CHANGE THIS. - /* Type handles some changes in nefarious 1.0 (was 0.5.0) + /* Type handles some changes in Nefarious from version to version. * 4 - nefarious 0.4.x and other ircds * 5 - nefarious 1.0.x and higher (Obselete) - * 6 - nefarious 1.1.0 and higher (Branch Revision) - * 7 - nefarious 1.2.0 and higher (Trunk Revsions) + * 6 - nefarious 1.1.0 and higher (Obselete) + * 7 - nefarious 1.2.0 and higher (Branch Revsion) + * 8 - nefarious 1.3.0 and higher (Trunk Revsions) */ - "type" "6"; + "type" "8"; "host_in_topic" "1"; //Set to 1 if your Nefarious server have the HOST_IN_TOPIC F:line set to TRUE. "max_users" "256"; // You can save a little memory by setting this to a lower value. "force_n2k" "1"; // Use extended (5-digit) numnick for self, even if 3 are possible. @@ -165,6 +166,15 @@ // This is ignored if "auto_reclaim_action" is "none". "auto_reclaim_delay" "0"; + // Expire nicks + "expire_nicks" "0"; + + // how often should nicks be expired? + "nick_expire_freq" "1d"; + + // how long until a nick expires? + "nick_expire_delay" "900d"; + // access control for who can change account flags // See /msg authserv help account flags "flag_levels" { @@ -173,6 +183,7 @@ "uc_H" "800"; // net helper (upper case H) "S" "999"; // O3 access suspended "b" "1"; // Bot (Hidden from !staff etc) + "I" "999"; // User can impersonate another account using SASL authentication }; // and for who can change epithets for staff @@ -191,6 +202,12 @@ // how long until an account with no access to any channels expires? "nochan_account_expire_delay" "365d"; + // how long must an account be inactive so it can be ounregistered without force? + "ounregister_inactive" "1M"; + + // which flags on an account require the ounregister to be used with force? + "ounregister_flags" "ShgsfnHbu"; + // If somebody keeps guessing passwords incorrectly, do we gag them? "autogag_enabled" "1"; "autogag_duration" "30m"; @@ -248,6 +265,10 @@ //"ldap_field_account" "uid"; //"ldap_field_password" "userPassword"; //"ldap_field_email" "mail"; + //"ldap_field_oslevel" "X3AccountLevel"; + //// NOTE: X3AccountLevel is a custom LDAP attribute + //// that LDAP servers will not know by default. A custom + //// schema is required to provide it. //// This bit is needed if you want to put ircops into a group: //"ldap_oper_group_dn" "cn=Opers,ou=Groups,dc=afternet,dc=org"; //"ldap_oper_group_level" "99"; // must be above this level to be added to oper ldap group @@ -448,6 +469,9 @@ // How long is a channel unvisited (by masters or above) before it can be expired? "chan_expire_delay" "30d"; + // How often to look for dnrs that have expired? + "dnr_expire_freq" "1h"; + // what !set options should we show when user calls "!set" with no arguments? "set_shows" ("DefaultTopic", "TopicMask", "Greeting", "UserGreeting", "Modes", "PubCmd", "InviteMe", "UserInfo", "EnfOps", "EnfModes", "EnfTopic", "TopicSnarf", "Setters", "CtcpReaction", "BanTimeout", "Protect", "Toys", "DynLimit", "NoDelete"); @@ -471,6 +495,23 @@ "No.", "Maybe."); + // This is a list of wheel-of-misfortune results. Remove them to disable. + // You must make sure your ircd supports, and has enabled, the features needed + // for these. + "wheel" ( + "peer", + // "partall", // needs svspart + "gline", + // "shun", // needs shun + "nothing", + // "randjoin", // needs svsjoin and svspart + // "abusewhois", // needs epitaph in /whois support + "kickall", + // "nickchange", // needs svsnick + "kill", + "svsignore", + "kickbanall" ); + // channel(s) that support helpers must be in to be helping // if this is a list, any one by itself will do "support_channel" ("#Operations", "#Help"); @@ -494,6 +535,11 @@ // when does god mode time out? "god_timeout" "30m"; + + // What should valid registered channels look like? + // Be very carefull changing these. This default is + // basically limited to letters, numbers, dash and underscore. + "valid_channel_regex" "^#[-_a-z][-_a-z0-9]*$"; }; /* Global is a service bot that can send out network-wide messages for you. I @@ -515,6 +561,7 @@ // debug channel "debug_channel" "#operserv"; + "debug_channel_modes" "+tinms"; // url of the network rules. if you don't have network rules, remove this key. "network_rules" "http://www.afternet.org/aup"; @@ -601,7 +648,7 @@ "max_read" "1024"; // don't read more than 1024 bytes from any client "gline_duration" "1d"; // issue G-lines lasting one hour "max_cache_age" "60"; // only cache results for 60 seconds - "address" "192.168.1.10"; // do proxy tests from this address + "bind_address" "192.168.0.10"; // do proxy tests from this address }; /* Snoop sends connect, quit, join, and part messages for every user * on the network, and helps in finding drones. Put it somewhere secure @@ -639,6 +686,49 @@ // to 0 to disable message expiration "limit" "30"; // Max amount of messages a person can get. }; + "qserver" { + "bind_address" "127.0.0.1"; + "port" "7702"; + "password" "hello"; + }; + "blacklist" { + // File containing blacklisted client addresses. + // "file" "blacklist.txt"; + // Each line in the file should start with an IP or hostname. + // If there is whitespace and a message after that, the + // message will override this one: + "file_reason" "client is blacklisted"; + // How long should a blacklist G-line last? + "gline_duration" "1h"; + // If you want to use DNS blacklists, add them here: + "dnsbl" { + // This DNSBL zone does not exist - you'll have to pick your own. + "dnsbl.example.org" { + "description" "Example DNSBL entry"; + "reason" "busted by a dns blacklist"; + "duration" "1h"; + // You can stick the client's IP in the G-line message. + "reason_2" "Example DNSBL reported %ip%'s address as 127.0.0.2"; + // .. or the contents of a DNS TXT. + "reason_3" "%txt%"; + }; + }; + }; + "sar" { + // You generally will not want to override these defaults. + // "resolv_conf" "/etc/resolv.conf"; + // "services" "/etc/services"; + // "bind_address" "0.0.0.0"; + // "bind_port" "0"; + // The defaults for these are derived from the system config files (above). + // "domain" "example.org"; + // "timeout" "3"; // base timeout for a DNS reply + // "retries" "3"; // number of times to retry on different servers or longer timeouts + // "ndots" "1"; // number of dots needed in a hostname to bypass search path + // "edns0" "0"; // if set, enable EDNS0 extended message sizes + // "search" ("example.org", "example.net"); + // "nameservers" ("127.0.0.1"); + }; /* WebTV allows webtv clients to use common IRC commands. */ "webtv" { @@ -680,6 +770,10 @@ "body_prefix" ("AfterNET Support - User and Channel registration system"); "body_suffix_first" ("", "AfterNET IRC Network", "http://www.afternet.org"); "body_suffix" ("", "AfterNET IRC Network", "http://www.afternet.org", "support@afternet.org","irc://irc.afternet.org/afternet"); + // If you are using the smtp mail back-end, you may need to set these: + "smtp_server" "localhost"; + "smtp_service" "smtp"; + // "smtp_myname" "localhost.domain"; }; /* DBS (Databases) *************************************************