Shivaram Lingamneni
12947644e2
remove SCRAM-SHA-256 from advertised SASL mechanisms
Advertising SCRAM-SHA-256 breaks irccloud, which doesn't fall back to PLAIN
if it sees SCRAM advertised but SCRAM then fails (as is the case for any
account password hashed on Ergo 2.7 or lower).
Leave a config option for irctest to enable it in the controller.
2 년 전
Valentin Lorentz
f6f25039b7
Advertise support for multiple KICK targets
This is already implemented, but TARGMAX=KICK:1 says it isn't.
Instead, let's advertise that indefinitely many targets are allowed.
Refs:
* https://defs.ircdocs.horse/defs/isupport.html#targmax
* https://github.com/ircdocs/modern-irc/pull/112
2 년 전
Shivaram Lingamneni
e1401934df
implement SCRAM-SHA-256
2 년 전
Shivaram Lingamneni
59bddd066f
update draft/register -> draft/account-registration
Fixes #1740
3 년 전
Shivaram Lingamneni
0751f31b9e
fix #1722
Validate operator vhosts against the configured (or default)
vhosts.valid-regexp
3 년 전
Shivaram Lingamneni
b68696eb9b
fix #1714
Fix a panic if the operator class title is empty
3 년 전
Shivaram Lingamneni
4910aefa37
use ergochat/irc-go instead of goshuirc/irc-go
3 년 전
Shivaram Lingamneni
23c7218bf1
first pass at renaming Oragono to Ergo
3 년 전
Shivaram Lingamneni
7c5a8f2013
make MaxLineLen configurable
3 년 전
Shivaram Lingamneni
ba21987d03
remove draft/resume-0.5
3 년 전
Shivaram Lingamneni
2d31a16647
propagate require-sasl into tor-listeners.require-sasl
3 년 전
Shivaram Lingamneni
97ba1c3d63
fix #1634:
1. Fix auth bypass in the default configuration with the addition of
server.password (the REGISTER command was allowed before connection
registration, allowing unauthenticated users to REGISTER and then
take advantage of skip-server-password)
2. Caution operators against the use of require-sasl without disabling
user-initiated account registration. (Such a configuration is still valid
in the case of a public server that requires everyone to register.)
3 년 전
Shivaram Lingamneni
5eed48c077
fix #1622
Allow users to set max MySQL connections and connection lifetime;
set a sane default for max connections if it's not present.
3 년 전
Shivaram Lingamneni
517b776b62
don't call (*Config).prepareListeners twice
3 년 전
Shivaram Lingamneni
1a5d079670
fix #1611
Allow setting the minimum TLS version
3 년 전
Shivaram Lingamneni
8dd12b0693
publish the FORWARD 005 token
3 년 전
Shivaram Lingamneni
aecb28a616
support SNI
3 년 전
Shivaram Lingamneni
f9c1a00b91
populate (tls.Certificate).Leaf
3 년 전
Shivaram Lingamneni
03185ea4a9
deprecate message truncation
Implements #1577 , but the issue should remain open until we clean up
the debugging loglines.
3 년 전
Shivaram Lingamneni
29666107ab
fix #1559
Improve debuggability of some config deserialization errors
3 년 전
Shivaram Lingamneni
9e25a3027a
fix #1549
If history is disabled, disable the history CAPs
3 년 전
Shivaram Lingamneni
430b40fc2f
upgrade go to 1.16
Fixes #1510
3 년 전
Shivaram Lingamneni
4a48e52518
fix #1490
Track channel join times, use them to optionally enforce history access
restrictions
3 년 전
Shivaram Lingamneni
64bc363cf1
fix #1443
Improve auditability of sensitive operator actions
3 년 전
Shivaram Lingamneni
e195854851
fix #1442
strip local_ from oper capab names, also consolidate unban into ban
3 년 전
Shivaram Lingamneni
db81b15acb
initial work on #1483
Add the new utf8-only cap, disallow non-utf8 when websockets are enabled
3 년 전
Shivaram Lingamneni
48166b5b4b
Implement expiration for always-on clients
Fixes #810
3 년 전
Shivaram Lingamneni
45471138d2
update nick reservation docs
3 년 전
Shivaram Lingamneni
7bdbb01238
fix #1428
Tor listeners should never see an STS cap.
Add an undocumented 'hide-sts' key for listeners that hides the STS cap.
This can be used if the listener is secured at layer 3 or 4 (VPNs,
E2E mixnets). It will be necessary to add the relevant IPs to `secure-nets`.
3 년 전
Shivaram Lingamneni
3ee6fd1f6c
allow overriding services hostname
Fixes #1407
3 년 전
Shivaram Lingamneni
3062f97c2b
fix #1389
Support PROXY protocol v2, including ahead of plaintext connections
3 년 전
Shivaram Lingamneni
42d246b557
improve security properties of INVITE
See #1171 .
3 년 전
Shivaram Lingamneni
203fc580f4
fix #1049
3 년 전
Shivaram Lingamneni
cf5a426f90
fix #1346
3 년 전
Shivaram Lingamneni
bd40b46639
fix #307
3 년 전
Shivaram Lingamneni
a30e369225
add +u and +U to CHANMODES token
3 년 전
Shivaram Lingamneni
76e3d67b66
replace suppress-ident with coerce-ident
3 년 전
Shivaram Lingamneni
a37a91694c
fix #1337
3 년 전
Shivaram Lingamneni
4ee97ddb43
USERHOST needs to respect hidden operators as well
3 년 전
Shivaram Lingamneni
78b2f61707
fix #1194
3 년 전
Shivaram Lingamneni
9ed789f67c
fix #1075
3 년 전
Alex Jaspersen
504659abb5
Add +M (only registered/voice can speak) chanmode.
Add chanmode preventing speech to error message.
Fixes #1182 .
3 년 전
Shivaram Lingamneni
6a0d11d449
make roleplay.enabled default to false when unset
See #1240 .
3 년 전
Shivaram Lingamneni
1a98a37a75
scripting API for IP bans
See discussion on #68 .
3 년 전
Shivaram Lingamneni
af056f26a9
fixes and refactoring
3 년 전
Shivaram Lingamneni
307adba8bd
fix #1213
3 년 전
Shivaram Lingamneni
20fcbe5147
remove stray references to timeout enforcement
These should have been removed in #1027 .
3 년 전
Shivaram Lingamneni
6628a3d1c6
fix #1244
3 년 전
Shivaram Lingamneni
df8be72c6f
move StringSet to utils package
3 년 전
Shivaram Lingamneni
9000383f88
Move config errors to call sites
Since allocating them is rare.
3 년 전