-/* doc/example.conf - brief example configuration file
+/* doc/ircd.conf.example - brief example configuration file
*
* Copyright (C) 2000-2002 Hybrid Development Team
* Copyright (C) 2002-2005 ircd-ratbox development team
* Copyright (C) 2005-2006 charybdis development team
*
- * $Id: example.conf 3582 2007-11-17 21:55:48Z jilles $
- *
* See reference.conf for more information.
*/
/* Extensions */
-#loadmodule "extensions/chm_operonly_compat.so";
-#loadmodule "extensions/chm_quietunreg_compat.so";
-#loadmodule "extensions/chm_sslonly_compat.so";
-#loadmodule "extensions/createauthonly.so";
-#loadmodule "extensions/extb_account.so";
-#loadmodule "extensions/extb_canjoin.so";
-#loadmodule "extensions/extb_channel.so";
-#loadmodule "extensions/extb_extgecos.so";
-#loadmodule "extensions/extb_oper.so";
-#loadmodule "extensions/extb_realname.so";
-#loadmodule "extensions/extb_server.so";
-#loadmodule "extensions/extb_ssl.so";
-#loadmodule "extensions/hurt.so";
-#loadmodule "extensions/m_findforwards.so";
-#loadmodule "extensions/m_identify.so";
-#loadmodule "extensions/no_oper_invis.so";
-#loadmodule "extensions/sno_farconnect.so";
-#loadmodule "extensions/sno_globalkline.so";
-#loadmodule "extensions/sno_globaloper.so";
-#loadmodule "extensions/sno_whois.so";
-#loadmodule "extensions/override.so";
-#loadmodule "extensions/no_kill_services.so";
+#loadmodule "extensions/chm_operonly_compat";
+#loadmodule "extensions/chm_quietunreg_compat";
+#loadmodule "extensions/chm_sslonly_compat";
+#loadmodule "extensions/chm_operpeace";
+#loadmodule "extensions/createauthonly";
+#loadmodule "extensions/extb_account";
+#loadmodule "extensions/extb_canjoin";
+#loadmodule "extensions/extb_channel";
+#loadmodule "extensions/extb_combi";
+#loadmodule "extensions/extb_extgecos";
+#loadmodule "extensions/extb_hostmask";
+#loadmodule "extensions/extb_oper";
+#loadmodule "extensions/extb_realname";
+#loadmodule "extensions/extb_server";
+#loadmodule "extensions/extb_ssl";
+#loadmodule "extensions/hurt";
+#loadmodule "extensions/m_extendchans";
+#loadmodule "extensions/m_findforwards";
+#loadmodule "extensions/m_identify";
+#loadmodule "extensions/no_oper_invis";
+#loadmodule "extensions/sno_farconnect";
+#loadmodule "extensions/sno_globalkline";
+#loadmodule "extensions/sno_globalnickchange";
+#loadmodule "extensions/sno_globaloper";
+#loadmodule "extensions/sno_whois";
+#loadmodule "extensions/override";
+#loadmodule "extensions/no_kill_services";
/*
* IP cloaking extensions: use ip_cloaking_4.0
* if you're linking 3.2 and later, otherwise use
- * ip_cloaking.so, for compatibility with older 3.x
+ * ip_cloaking, for compatibility with older 3.x
* releases.
*/
-#loadmodule "extensions/ip_cloaking_4.0.so";
-#loadmodule "extensions/ip_cloaking.so";
+#loadmodule "extensions/ip_cloaking_4.0";
+#loadmodule "extensions/ip_cloaking";
serverinfo {
name = "hades.arpa";
sid = "42X";
description = "charybdis test server";
network_name = "StaticBox";
- network_desc = "Your IRC network.";
- hub = yes;
/* On multi-homed hosts you may need the following. These define
* the addresses we connect from to other servers. */
/* for IPv4 */
- #vhost = "192.169.0.1";
+ #vhost = "192.0.2.6";
/* for IPv6 */
- #vhost6 = "3ffe:80e8:546::2";
+ #vhost6 = "2001:db8:2::6";
/* ssl_private_key: our ssl private key */
ssl_private_key = "etc/ssl.key";
/* ssl_cert: certificate for our ssl server */
- ssl_cert = "etc/ssl.cert";
+ ssl_cert = "etc/ssl.pem";
- /* ssl_dh_params: DH parameters, generate with openssl dhparam -out dh.pem 1024 */
+ /* ssl_dh_params: DH parameters, generate with openssl dhparam -out dh.pem 2048
+ * In general, the DH parameters size should be the same as your key's size.
+ * However it has been reported that some clients have broken TLS implementations which may
+ * choke on keysizes larger than 2048-bit, so we would recommend using 2048-bit DH parameters
+ * for now if your keys are larger than 2048-bit.
+ */
ssl_dh_params = "etc/dh.pem";
/* ssld_count: number of ssld processes you want to start, if you
/* If you want to listen on a specific IP only, specify host.
* host definitions apply only to the following port line.
*/
- #host = "192.169.0.1";
+ #host = "192.0.2.6";
port = 5000, 6665 .. 6669;
sslport = 6697;
/* Listen on IPv6 (if you used host= above). */
- #host = "3ffe:1234:a:b:c::d";
+ #host = "2001:db8:2::6";
#port = 5000, 6665 .. 6669;
#sslport = 9999;
};
* prepending a 0 if it starts with a colon) and can also use CIDR
* masks.
*/
- user = "*@172.16.0.0/12";
- user = "*test@123D:B567:*";
+ user = "*@198.51.100.0/24";
+ user = "*test@2001:db8:1:*";
/* password: an optional password that is required to use this block.
* By default this is not encrypted, specify the flag "encrypted" in
privset "admin" {
extends = "global_op";
- privs = oper:admin, oper:die, oper:rehash, oper:spy;
+ privs = oper:admin, oper:die, oper:rehash, oper:spy, oper:grant;
};
operator "god" {
};
connect "irc.uplink.com" {
- host = "192.168.0.1";
+ host = "203.0.113.3";
send_password = "password";
accept_password = "anotherpassword";
port = 6666;
};
connect "ssl.uplink.com" {
- host = "192.168.0.1";
+ host = "203.0.113.129";
send_password = "password";
accept_password = "anotherpassword";
port = 9999;
knock_delay = 5 minutes;
knock_delay_channel = 1 minute;
max_chans_per_user = 15;
+ max_chans_per_user_large = 60;
max_bans = 100;
max_bans_large = 500;
default_split_user_count = 0;
resv_forcepart = yes;
channel_target_change = yes;
disable_local_channels = no;
+ autochanmodes = "+nt";
+ displayed_usercount = 3;
+ strip_topic_colors = no;
};
serverhide {
*
* Consult your blacklist provider for the meaning of these parameters; they
* are usually used to denote different ban types.
- *
- * Note: AHBL (the providers of the below *.ahbl.org BLs) request that they be
- * contacted, via email, at admins@2mbit.com before using these BLs.
- * See <http://www.ahbl.org/services.php> for more information.
*/
blacklist {
host = "rbl.efnetrbl.org";
type = ipv4;
reject_reason = "${nick}, your IP (${ip}) is listed in EFnet's RBL. For assistance, see http://efnetrbl.org/?i=${ip}";
-# host = "ircbl.ahbl.org";
-# type = ipv4;
-# reject_reason = "${nick}, your IP (${ip}) is listed in ${dnsbl-host} for having an open proxy. In order to protect ${network-name} from abuse, we are not allowing connections with open proxies to connect.";
-#
-# host = "tor.ahbl.org";
-# type = ipv4;
-# reject_reason = "${nick}, your IP (${ip}) is listed as a TOR exit node. In order to protect ${network-name} from tor-based abuse, we are not allowing TOR exit nodes to connect to our network.";
-#
/* Example of a blacklist that supports both IPv4 and IPv6 and using matches */
# host = "foobl.blacklist.invalid";
# type = ipv4, ipv6;
default_operstring = "is an IRC Operator";
default_adminstring = "is a Server Administrator";
servicestring = "is a Network Service";
+
+ /*
+ * Nick of the network's SASL agent. Used to check whether services are here,
+ * SASL credentials are only sent to its server. Needs to be a service.
+ *
+ * Defaults to SaslServ if unspecified.
+ */
+ sasl_service = "SaslServ";
disable_fake_channels = no;
tkline_expire_notices = no;
default_floodcount = 10;
throttle_count = 4;
max_ratelimit_tokens = 30;
away_interval = 30;
+ certfp_method = sha1;
+ hide_opers_in_whois = no;
};
modules {
projects / solanum.git / blobdiff