Shivaram Lingamneni
5426c9fdc0
disallow TAKE and REQUEST while under a FORBID
4 gadus atpakaļ
Shivaram Lingamneni
e1f56aaee3
fix #764
4 gadus atpakaļ
Shivaram Lingamneni
955cdbdfef
impose throttle checks on HS TAKE
4 gadus atpakaļ
Shivaram Lingamneni
05cb80507f
fix #741
4 gadus atpakaļ
Shivaram Lingamneni
eb630b7657
Revert "never set the certfp lookup key before verification"
This reverts commit a120cc2443 .
4 gadus atpakaļ
Shivaram Lingamneni
a120cc2443
never set the certfp lookup key before verification
4 gadus atpakaļ
Shivaram Lingamneni
1b35c6887f
fix #733
4 gadus atpakaļ
Shivaram Lingamneni
f920d3b79f
fix #530, #721
4 gadus atpakaļ
Shivaram Lingamneni
8c1db7a2f5
better UX for cancelling channel transfers
4 gadus atpakaļ
Shivaram Lingamneni
33c8b2177e
fix a bug
In the previous commit, the client would receive a failure message but would
actually remain logged in after an authzid/authcid mismatch. This was a
correctness rather than a security issue, but now it's fixed so that the client
never logs in in the first place.
4 gadus atpakaļ
Shivaram Lingamneni
1487980fe0
Fix #710
4 gadus atpakaļ
Shivaram Lingamneni
26ca016c66
fix the analogous issue for vhosts
4 gadus atpakaļ
Shivaram Lingamneni
25c4eb2996
fix #702
4 gadus atpakaļ
Shivaram Lingamneni
6740222ecb
fix #616
4 gadus atpakaļ
Shivaram Lingamneni
07865b8f63
chanserv enhancements and miscellaneous fixes
* Fix #684
* Fix #683
* Add `CHANSERV CLEAR`
* Allow mode changes from channel founders even when they aren't joined
* Operators with the chanreg capability are exempt from max-channels-per-account
* Small fixes and cleanup
4 gadus atpakaļ
Shivaram Lingamneni
80aa77372b
fix spurious error message
5 gadus atpakaļ
Shivaram Lingamneni
1a1d3ff89f
fix #410
5 gadus atpakaļ
Shivaram Lingamneni
8794740f89
be more pedantic about distinguishing skeletons and casefolds
5 gadus atpakaļ
Shivaram Lingamneni
1121e3d320
fix #404
5 gadus atpakaļ
Shivaram Lingamneni
3d445573cf
implement draft/resume-0.4
5 gadus atpakaļ
Shivaram Lingamneni
8fc588375b
implement user preferences system
5 gadus atpakaļ
Shivaram Lingamneni
c193def606
fix some issues found with staticcheck.io
5 gadus atpakaļ
Shivaram Lingamneni
278e4acf57
fix handling of nil session in reattach code
5 gadus atpakaļ
Shivaram Lingamneni
4af783ed9e
fix #449
5 gadus atpakaļ
Shivaram Lingamneni
c2faeed4b5
initial implementation of bouncer functionality
5 gadus atpakaļ
Shivaram Lingamneni
63029e2ff5
refactor channel registration
5 gadus atpakaļ
Shivaram Lingamneni
a5f04495a1
fix #389
5 gadus atpakaļ
Shivaram Lingamneni
d147708158
allow SAREGISTER even when normal registration is fully disabled
5 gadus atpakaļ
Shivaram Lingamneni
754934b429
unregister should boot clients if sasl is required
5 gadus atpakaļ
Shivaram Lingamneni
7786043275
make the land-grab check case-insensitive
5 gadus atpakaļ
Shivaram Lingamneni
6d690b0e36
add loglines for account registration, login, and unregistration
5 gadus atpakaļ
Shivaram Lingamneni
e4c9351254
fix: set the existing channels unregistered
5 gadus atpakaļ
Shivaram Lingamneni
ff7bbc4a9c
track channel registrations per account
* limit the total number of registrations per account
* when an account is unregistered, unregister all its channels
5 gadus atpakaļ
Shivaram Lingamneni
775ead700f
prevent nick reservation land-grabs
5 gadus atpakaļ
Shivaram Lingamneni
1c23af8767
add sasl-only config option
5 gadus atpakaļ
Shivaram Lingamneni
35948d2e5b
refactor some conditions for clarity
5 gadus atpakaļ
Shivaram Lingamneni
b9b2553a2f
use the TR39 skeleton algorithm to prevent confusables (#178)
5 gadus atpakaļ
Shivaram Lingamneni
a52d167278
additional defensive check in EnforcementStatus
5 gadus atpakaļ
Shivaram Lingamneni
f20abf414f
don't log an error logline for an incorrect SASL password
5 gadus atpakaļ
Shivaram Lingamneni
2ee89b15b3
per-user settings for nickname enforcement
5 gadus atpakaļ
Shivaram Lingamneni
c2b2559ab4
avoid some uses of Sprintf for loglines
5 gadus atpakaļ
Shivaram Lingamneni
48f9b5e4fa
implement NS PASSWD for password changes
5 gadus atpakaļ
Shivaram Lingamneni
a0bf548fc5
draft/resume-0.2 implementation, message history support
5 gadus atpakaļ
Shivaram Lingamneni
dfb0a57040
refactor the password hashing / password autoupgrade system
6 gadus atpakaļ
Daniel Oaks
6260869068
Upgrade password hashing.
Previously, we generated and prepended a long salt before generating
password hashes. This resulted in the hash verification cutting off long
before it should do. This form of salting is also not necessary with
bcrypt as it's provided by the password hashing and verification
functions themselves, so totally rip it out.
This commit also adds the functionality for the server to automagically
upgrade users to use the new hashing system, which means better
security and more assurance that people can't bruteforce passwords.
No need to apply a database upgrade to do this, whoo! \o/
6 gadus atpakaļ
Shivaram Lingamneni
cc9941cb07
review fixes, bug fixes
6 gadus atpakaļ
Shivaram Lingamneni
5e62cc4ebc
initial vhosts implementation, #183
6 gadus atpakaļ
Daniel Oaks
a95c77bb86
Remove old command line that's no longer valid
6 gadus atpakaļ
Shivaram Lingamneni
fd34c78d6b
add sadrop command
6 gadus atpakaļ
Shivaram Lingamneni
679f25491c
can't reserve a nick that's the name of an unverified account
6 gadus atpakaļ