UnrealIRCd 6.1.0-rc1 available for testing
Status: Beta
Brought to you by:
wildchild
Menu
▾
▴
UnrealIRCd 6.1.0-rc1 available for testing
|
From: Bram M. <sy...@un...> - 2023-04-07 14:20:03
|
(You can unsubscribe from this list here <https://sourceforge.net/projects/unreal/lists/unreal-notify/unsubscribe>) Hi everyone, The first release candidate for 6.1.0 is now available for testing. This release contains channel mode +f enhancements and introduces a new channel mode +F which should be much easier for users than the scary looking +f. You can help us by testing and reporting any issues at https://bugs.unrealircd.org/ <https://bugs.unrealircd.org/>. The stable 6.1.0 release is scheduled for May, 2023. Enhancements: * Channel flood protection improvements: o New channel mode |+F| <https://www.unrealircd.org/docs/Channel_anti-flood_settings> (uppercase F). This allows the user to choose a "flood profile", which (behind the scenes) translates to something similar to an |+f| mode. This so end-users can simply choose an |+F| profile without having to learn the complex channel mode |+f|. + For example |+F normal| effectively results in |[7c#C15,30j#R10,10k#K15,40m#M10,8n#N15]:15| + Multiple profiles are available and changing them is possible, see the documentation <https://www.unrealircd.org/docs/Channel_anti-flood_settings>. + Any settings in mode |+f| will override the ones of the |+F| profile. To see the effective flood settings, use |MODE #channel F|. o You can optionally set a default profile via set::anti-flood::channel::default-profile <https://www.unrealircd.org/docs/Channel_anti-flood_settings#Default_profile>. This profile is used if the channel is |-F|. If the user does not want channel flood protection then they have to use an explicit |+F off|. o When channel mode |+f| or |+F| detect that a flood is caused by >75% of "unknown-users" <https://www.unrealircd.org/docs/Security-group_block>, the server will now set a temporary ban on |~security-group:unknown-users|. It will still set |+i| and other modes if the flood keeps on going (eg. is caused by known-users). o Forced nick changes (eg. by NickServ) are no longer counted in nick flood for channel mode |+f|/|+F|. o When a server splits on the network, we now temporarily disable +f/+F join-flood protection for 75 seconds (set::anti-flood::channel::split-delay <https://www.unrealircd.org/docs/Channel_anti-flood_settings#config>). This because a server splitting could mean that server has network problems or has died (or restarted), in which case the clients would typically reconnect to the remaining other servers, triggering an +f/+F join-flood and channels ending up being |+i| and such. That is not good because we want +f/+F to be as efortless as possible, with as little false positives as possible. + If your network has 5+ servers and the user load is spread evenly among them, then you could disable this feature by setting the amount of seconds to |0|. This because in such a scenario only 1/5th (20%) of the users would reconnect and hopefully don't trigger +f/+F join floods. o All these features only work properly if all servers are on 6.1.0-rc1 or later. * JSON-RPC <https://www.unrealircd.org/docs/JSON-RPC>: o Logging of JSON-RPC requests (eg. via snomask |+R|) has been improved, it now shows: + The issuer, such as the user logged in to the admin panel (if known) + The parameters of the request o The JSON-RPC calls |channel.list| <https://www.unrealircd.org/docs/JSON-RPC:Channel#channel.list>, |channel.get| <https://www.unrealircd.org/docs/JSON-RPC:Channel#channel.get>, |user.list| <https://www.unrealircd.org/docs/JSON-RPC:User#user.list> and |user.get| <https://www.unrealircd.org/docs/JSON-RPC:User#user.get> now support an optional argument |object_detail_level| which specifies how detailed the Channel <https://www.unrealircd.org/docs/JSON-RPC:Channel#Structure_of_a_channel> and User <https://www.unrealircd.org/docs/JSON-RPC:User#Structure_of_a_client_object> response object will be. Especially useful if you don't need all the details in the list calls. o New JSON-RPC method |rpc.set_issuer| <https://www.unrealircd.org/docs/JSON-RPC:Rpc#rpc.set_issuer> to indiciate who is actually issuing the requests. The admin panel uses this to communicate who is logged in to the panel so this info can be used in logging. * A new message tag |unrealircd.org/issued-by| which is IRCOp-only (and used intra-server) to communicate who actually issued a command. See docs <https://www.unrealircd.org/issued-by>. Changes: * The RPC modules are enabled by default now. This so remote RPC works from other IRC servers for calls like |modules.list|. The default configuration does NOT enable the webserver nor does it cause listening on any socket for RPC, for that you need to follow the JSON-RPC <https://www.unrealircd.org/docs/JSON-RPC> instructions. * The blacklist-module <https://www.unrealircd.org/docs/Blacklist-module_directive> directive now accepts wildcards, eg |blacklist-module rpc/*;| * The setting set::modef-boot-delay has been moved to set::anti-flood::channel::boot-delay <https://www.unrealircd.org/docs/Channel_anti-flood_settings#config>. Developers and protocol: * The |cmode.free_param| definition changed. It now has an extra argument |int soft| and for return value you will normally |return 0| here. You can |return 1| if you resist freeing, which is rare and only used by |+F| with set::anti-flood::channel::default-profile. * New |cmode.flood_type_action| which can be used to indicate a channel mode can be used from +f/+F as an action. You need to specify for which flood type your mode is, eg |cmode.flood_type_action = 'j';| for joinflood. * JSON-RPC supports UNIX domain sockets <https://www.unrealircd.org/docs/JSON-RPC:Technical_documentation#UNIX_domain_socket> for making RPC calls. If this is used, we now split on |\n| (newline) so multiple parallel requests can be handled properly. You can download UnrealIRCd from https://www.unrealircd.org/ -- Bram Matthys Security and software eng...@vu... Website:www.vulnscan.org PGP key:www.vulnscan.org/pubkey.asc PGP fp: EBCA 8977 FCA6 0AB0 6EDB 04A7 6E67 6D45 7FE1 99A6 |
