From 1284e49701c56e2688d82d0cd690c8caff4c4401 Mon Sep 17 00:00:00 2001 From: Alexander Barton Date: Sat, 13 Apr 2024 14:21:16 +0200 Subject: [PATCH 1/4] Update the --help output --- common/help.inc | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/common/help.inc b/common/help.inc index e95de60..49b423a 100644 --- a/common/help.inc +++ b/common/help.inc @@ -1,5 +1,5 @@ -ngIRCd 24-CHARCONV+DEBUG+IDENT+IPv6+IRCPLUS+PAM+SNIFFER+SSL+SYSLOG+TCPWRAP+ZLIB-x86_64/pc/linux-gnu -Copyright (c)2001-2017 Alexander Barton (<alex@barton.de>) and Contributors. +ngIRCd 27~rc1-CHARCONV+DEBUG+IDENT+IPv6+IRCPLUS+PAM+SNIFFER+SSL+SYSLOG+TCPWRAP+ZLIB-x86_64/pc/linux-gnu +Copyright (c)2001-2024 Alexander Barton (<alex@barton.de>) and Contributors. Homepage: <http://ngircd.barton.de/> This is free software; see the source for copying conditions. There is NO @@ -12,5 +12,6 @@ warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. -s, --sniffer enable network sniffer and display all IRC traffic -t, --configtest read, validate and display configuration; then exit -V, --version output version information and exit + -y, --syslog log to syslog even when running in the foreground (-n) -h, --help display this help and exit -- 2.39.2 From 433aaf0f505daf4ab1b453ce0c0e9693ed06fab8 Mon Sep 17 00:00:00 2001 From: Alexander Barton Date: Fri, 26 Apr 2024 17:16:05 +0200 Subject: [PATCH 2/4] ngIRCd Release 27 --- common/download.inc | 14 ++++---------- news.php.de | 17 ++++++----------- news.php.en | 16 +++++----------- 3 files changed, 15 insertions(+), 32 deletions(-) diff --git a/common/download.inc b/common/download.inc index 5b294d7..c1906e2 100644 --- a/common/download.inc +++ b/common/download.inc @@ -1,14 +1,8 @@
- ngIRCd Release 26.1 (2021-01-02): + ngIRCd Release 27 (2024-04-26):
- - - -
- ngIRCd Release 27~rc1 (2024-04-13): -
- - - + + +
diff --git a/news.php.de b/news.php.de index e1a5227..e0492f1 100644 --- a/news.php.de +++ b/news.php.de @@ -14,10 +14,7 @@

Die aktuelle stabile Version ist - Release 26.1 vom 2. Januar 2021, - und - Release 27~rc1 vom 13. April 2024 - steht zum Test bereit; + Release 27 vom 26. April 2024, siehe auch die Download-Möglichkeiten.

@@ -42,13 +39,11 @@

Achtung: - ngIRCd 20, 20.1 und 20.2 beinhalten einen Fehler, - der zum Absturz des Servers führen kann, wenn die Konfigurationsoption - NoticeAuth aktiviert ist (was nicht der Default ist). - ngIRCd 20 und 20.1 beinhaltet zudem einen Fehler, der es jedem Nutzer - ermöglicht, den Server-Dienst zum Absturz zu bringen. - Alle Installationen sollten auf Version 20.3 vom 23. August - 2013 (oder neuer) aktualisiert werden! + ngIRCd bis einschließlich Release 26.1 hat SSL-Zertifikate bei + Server-Server-Links nicht validiert! Falls ngIRCd in einem + Netzwerk mit mehreren Servern eingesetzt wird, sollte auf + Version 27 vom 26. April 2024 (oder neuer) aktualisiert + werden!

Die NEWS-Datei und das diff --git a/news.php.en b/news.php.en index 9d32986..2091ad9 100644 --- a/news.php.en +++ b/news.php.en @@ -14,10 +14,7 @@

The current stable version is - Release 26.1 of January 1 2021, - and - Release 27~rc1 of April 13 2024 - is ready for testing; + Release 27 of April 26 2024, please refer to the Download options.

@@ -41,13 +38,10 @@

Caution: - ngIRCd 20, 20.1, and 20.2 contain an error that could crash - the server daemon when the configuration option NoticeAuth is - enabled (which is not the default). - ngIRCd 20 and 20.1 both contain an additional error that allows - arbitrary users to crash the server daemon. - All installations should be updated to version 20.3 (released - August 23, 2013) or newer! + ngIRCd up to and including release 26.1 did not validate SSL + certificates on server-server links! If you run a network of ngIRCd + daemons you should upgrade to ngIRCd 27 (released April 26, + 2024) or newer!

The NEWS-file and the -- 2.39.2 From 5485c2141ac40945d0745ea6823fbe12b4e2ffec Mon Sep 17 00:00:00 2001 From: Alexander Barton Date: Sat, 4 May 2024 18:45:58 +0200 Subject: [PATCH 3/4] Update HTML manual pages --- man/ngircd.8.html | 25 ++++++++++++++++++++----- man/ngircd.conf.5.html | 15 +++++++++++++++ 2 files changed, 35 insertions(+), 5 deletions(-) diff --git a/man/ngircd.8.html b/man/ngircd.8.html index 7646e30..4f98cea 100644 --- a/man/ngircd.8.html +++ b/man/ngircd.8.html @@ -253,11 +253,24 @@ re-initialize the daemon.

the configuration of ngIRCd after making changes to the configuration files!

DEBUGGING

-

When ngIRCd is compiled with debug code, that is, its source code has -been ./configure'd with "--enable-debug" and/or "--enable-sniffer" -(witch enables debug mode automatically as well), you can use two more -command line options and two more signals to debug problems with the -daemon itself or IRC clients:

+

ngIRCd can log additional debug messages, which can be enabled with +the command line option --debug (-d) or by sending the USR1 signal to +the running daemon. Some of those messages may leak personal +information, be very technical and can be very verbose. Therefore the +debug mode is meant for troubleshooting only and should definitely be +disabled during normal operation!

+

In addition, a "protocol sniffer" can be enabled on build time by +passing the "--enable-sniffer" option to the ./configure script which +enables the "--sniffer" (-s) command line option (which is not available +by default): this "sniffer" logs all incoming and outgoing IRC commands +on all connections, which can be handy to debug problems with the daemon +itself or IRC clients.

+

Both modes are indicated in the version string shown by the IRC +"VERSION" command: if the version ends in a dot (like in "26.1."), the +daemon operates in "normal" mode (the version used in the example is +"26.1"). If it ends in ".1" (like in "26.1.1") the "debug-mode" is +enabled; and if it ends in ".2" (like in "26.1.2") the "IRC sniffer" is +enabled, too.

Options:

-d, --debug
@@ -273,6 +286,8 @@ automatically, too.

Signals:

+

Note: Usage of these signals is broadcasted to all users with the +s +("receive server notices") mode set!

USR1
diff --git a/man/ngircd.conf.5.html b/man/ngircd.conf.5.html index 9934c4c..6e8ff16 100644 --- a/man/ngircd.conf.5.html +++ b/man/ngircd.conf.5.html @@ -590,6 +590,12 @@ used. Default: not set.

recognized by ngIRCd when it is compiled with support for SSL using OpenSSL or GnuTLS!

+
CAFile (string)
+
+

Filename pointing to the Trusted CA Certificates. This is required +for verifying peer certificates. Default: not set, so no certificates +are trusted.

+
CertFile (string)

SSL Certificate file of the private server key.

@@ -601,6 +607,10 @@ to "HIGH:!aNULL:@STRENGTH:!SSLv3" (OpenSSL) or "SECURE128:-VERS-SSL3.0" (GnuTLS). Please see 'man 1ssl ciphers' (OpenSSL) and 'man 3 gnutls_priority_init' (GnuTLS) for details.

+
CRLFile (string)
+
+

Filename of Certificate Revocation List.

+
DHFile (string)

Name of the Diffie-Hellman Parameter file. Can be created with GnuTLS @@ -703,6 +713,11 @@ create the link.

Connect to the remote server using TLS/SSL. Default: false.

+
SSLVerify (boolean)
+
+

Verify the TLS certificate presented by the remote server. Default: +yes.

+
ServiceMask (string)

Define a (case insensitive) list of masks matching nicknames that -- 2.39.2 From 163fd79307f55d2b2a5c866775562ddfaaa678b7 Mon Sep 17 00:00:00 2001 From: Alexander Barton Date: Sat, 4 May 2024 18:46:38 +0200 Subject: [PATCH 4/4] README.md: Fix output path of pandoc command --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 70262d4..f076fcd 100644 --- a/README.md +++ b/README.md @@ -13,7 +13,7 @@ This source code is available on Use `pandoc` like this: ```bash -pandoc -s -f man -t html -o ngircd.conf.5.html ../ngIRCd.git/man/ngircd.conf.5 +pandoc -s -f man -t html -o man/ngircd.conf.5.html ../ngIRCd.git/man/ngircd.conf.5 pandoc -s -f man -t html -o man/ngircd.8.html ../ngIRCd.git/man/ngircd.8 ``` -- 2.39.2