* Remote oper up notices -- sno_globaloper.so
* /whois notifications (snomask +W) -- sno_whois.so
* Oper-override (modehacking only) -- override.so
+ * Stop services kills -- no_kill_services.so
*/
#loadmodule "extensions/chm_adminonly.so";
#loadmodule "extensions/chm_operonly.so";
#loadmodule "extensions/sno_globaloper.so";
#loadmodule "extensions/sno_whois.so";
#loadmodule "extensions/override.so";
-
+#loadmodule "extensions/no_kill_services.so";
+
/* serverinfo {}: Contains information about the server. (OLD M:) */
serverinfo {
/* name: the name of our server */
*/
default_max_clients = 1024;
- /* nicklen: enforced nickname length (for this server only; must be 50 or smaller) */
+ /* nicklen: enforced nickname length (for this server only; must not
+ * be longer than the maximum length set while building).
+ */
nicklen = 30;
};
*/
connectfreq = 5 minutes;
- /* max number: the amount of servers to autoconnect to */
+ /* max number: the amount of servers to autoconnect to. if the number
+ * of servers in the class is or exceeds this, no more servers in the
+ * class are autoconnected. oper initiated connects are unaffected.
+ * this should usually be set to either 0 or 1. (autoconnecting from
+ * hubs to leaves may cause leaves to function as hubs by having
+ * multiple servers connected to them.)
+ */
max_number = 1;
/* sendq: servers need a higher sendq as they are sent more data */
/* listen {}: contain information about the ports ircd listens on (OLD P:) */
listen {
+ /* defer_accept: wait for clients to send IRC handshake data before
+ * accepting them. if you intend to use software which depends on the
+ * server replying first, such as BOPM, you should disable this feature.
+ * otherwise, you probably want to leave it on.
+ */
+ defer_accept = yes;
+
/* port: the specific port to listen on. if no host is specified
* before, it will listen on all available IPs.
*
user = "*@172.16.0.0/12";
user = "*test@123D:B567:*";
+ /* auth_user: This allows specifying a username:password instead of
+ * just a password in PASS, so that a fixed user@host is not
+ * necessary for a specific auth{} block.
+ */
+ #auth_user = "SomeUser";
+
/* password: an optional password that is required to use this block.
* By default this is not encrypted, specify the flag "encrypted" in
* flags = ...; below if it is.
auth {
user = "*@*";
class = "users";
-
- flags = need_ident;
};
/* privset{}: defines operator privilege sets. */
* IPv4 is currently the default as few blacklists support IPv6 operation
* as of this writing.
*
+ * As of charybdis 3.5, a matches parameter is allowed; if omitted, any result
+ * is considered a match. If included, a comma-separated list of *quoted*
+ * strings is allowed to match queries. They may be of the format "0" to "255"
+ * to match the final octet (e.g. 127.0.0.1) or "127.x.y.z" to explicitly match
+ * an A record. The blacklist is only applied if it matches anything in the
+ * list. You may freely mix full IP's and final octets.
+ *
+ * Consult your blacklist provider for the meaning of these parameters; they
+ * are usually used to denote different ban types.
+ *
* Note: AHBL (the providers of the below *.ahbl.org BLs) request that they be
* contacted, via email, at admins@2mbit.com before using these BLs.
* See <http://www.ahbl.org/services.php> for more information.
# type = ipv4;
# reject_reason = "${nick}, your IP (${ip}) is listed as a TOR exit node. In order to protect ${network-name} from tor-based abuse, we are not allowing TOR exit nodes to connect to our network.";
#
- /* Example of a blacklist that supports both IPv4 and IPv6 */
+ /* Example of a blacklist that supports both IPv4 and IPv6 and using matches */
# host = "foobl.blacklist.invalid";
+# matches = "4", "6", "127.0.0.10";
# type = ipv4, ipv6;
# reject_reason = "${nick}, your IP (${ip}) is listed in ${dnsbl-host} for some reason. In order to protect ${network-name} from abuse, we are not allowing connections listed in ${dnsbl-host} to connect";
};
ts_warn_delta = 30 seconds;
ts_max_delta = 5 minutes;
- /* client exit: prepend a users quit message with "Client exit: " */
+ /* client exit: prepend a user's quit message with "Quit: " */
client_exit = yes;
/* collision fnc: change user's nick to their UID instead of
*/
collision_fnc = yes;
+ /* resv fnc: change a user's nick to a nick they have recently used
+ * (or their UID, if no such nick can be found) when a resv matching
+ * them is set by services. Only enable this if all servers on the
+ * network allow remote nicks to start with a digit.
+ */
+ resv_fnc = yes;
+
/* global snotices: send out certain snotices (most +b, +f, +y,
* some +s) to other servers via ENCAP SNOTE. Received SNOTEs are
* displayed unconditionally.
client_flood_burst_max = 5;
client_flood_message_time = 1;
client_flood_message_num = 2;
+
+ /* max_ratelimit_tokens: the maximum number of ratelimit tokens that one
+ * user can accumulate. This attempts to limit the amount of outbound
+ * bandwidth one user can consume. Do not change unless you know what
+ * you're doing.
+ */
+ max_ratelimit_tokens = 30;
+
+ /* away_interval: the minimum interval between AWAY commands. One
+ * additional AWAY command is allowed, and only marking as away
+ * counts.
+ */
+ away_interval = 30;
};
modules {