* Channel mode +-T (blocks notices) -- chm_nonotice
* Channel mode +-O (oper only) -- chm_operonly
* Channel mode +-S (ssl only) -- chm_sslonly
- * Emulates channel mode +-O (oper only) (+-iI $o) -- chm_operonly_compat
- * Emulates channel mode +-R (quiet unreg) (+-q $~a) -- chm_quietunreg_compat
- * Emulates channel mode +-S (ssl only) (+-b $~z) -- chm_sslonly_compat
* Channel mode +-M (disallow KICK on IRC ops) -- chm_operpeace
* Restrict channel creation to logged in users -- createauthonly
* Account bans (+b $a[:mask]) -- extb_account
#loadmodule "extensions/chm_nonotice";
#loadmodule "extensions/chm_operonly";
#loadmodule "extensions/chm_sslonly";
-#loadmodule "extensions/chm_operonly_compat";
-#loadmodule "extensions/chm_quietunreg_compat";
-#loadmodule "extensions/chm_sslonly_compat";
#loadmodule "extensions/chm_operpeace";
#loadmodule "extensions/createauthonly";
#loadmodule "extensions/extb_account";
ssl_dh_params = "etc/dh.pem";
/* ssl_cipher_list: A list of ciphers, dependent on your TLS backend */
- #ssl_cipher_list = "EECDH+HIGH:EDH+HIGH:HIGH:!aNULL";
+ #ssl_cipher_list = "TLS_CHACHA20_POLY1305_SHA256:EECDH+HIGH:EDH+HIGH:HIGH:!aNULL";
/* ssld_count: number of ssld processes you want to start, if you
* have a really busy server, using N-1 where N is the number of
* channels etc. see /quote help operspy
* oper:hidden: hides the oper from /stats p
* oper:remoteban: allows remote kline etc
- * oper:mass_notice: allows sending wallops and mass notices
+ * oper:mass_notice: allows sending mass notices
+ * oper:wallops: allows sending wallops messages
* oper:grant: allows using the GRANT command
* usermode:servnotice: allows setting +s
*
privset "global_op" {
extends = "local_op";
privs = oper:routing, oper:kline, oper:unkline, oper:xline,
- oper:resv, oper:cmodes, oper:mass_notice, oper:remoteban;
+ oper:resv, oper:cmodes, oper:mass_notice, oper:wallops,
+ oper:remoteban;
};
privset "admin" {
/* port: the port to connect to this server on */
port = 6666;
- /* hub mask: the mask of servers that this server may hub. Multiple
- * entries are permitted
- */
- hub_mask = "*";
-
- /* leaf mask: the mask of servers this server may not hub. Multiple
- * entries are permitted. Useful for forbidding EU -> US -> EU routes.
- */
- #leaf_mask = "*.uk";
-
/* class: the class this server is in */
class = "server";
send_password = "password";
accept_password = "anotherpassword";
port = 9999;
- hub_mask = "*";
class = "server";
flags = ssl, topicburst;
};
/* stats c oper only: make stats c (connect {}) oper only */
stats_c_oper_only = no;
- /* stats h oper only: make stats h (hub_mask/leaf_mask) oper only */
- stats_h_oper_only = no;
-
/* stats y oper only: make stats y (class {}) oper only */
stats_y_oper_only = no;
*/
stats_k_oper_only = masked;
+ /* stats l/L oper only:
+ * yes: non-opers can't use this at all
+ * self: non-opers see only themselves
+ * no: show targeted users or non-hidden opers to everyone
+ */
+ stats_l_oper_only = self;
+
/* map oper only: make /map oper only */
map_oper_only = no;
/* tls_ciphers_oper_only: show the TLS cipher string in /WHOIS only to opers and self */
tls_ciphers_oper_only = no;
+
+ /* hidden_caps: client capabilities we'll pretend we don't support until they're requested */
+ #hidden_caps = "userhost-in-names";
+
+ /* oper_secure_only: require TLS on any connection trying to oper up */
+ oper_secure_only = no;
};
modules {