ngIRCd - Next Generation IRC Server
http://ngircd.barton.de/
- (c)2001-2011 Alexander Barton and Contributors.
+ (c)2001-2012 Alexander Barton and Contributors.
ngIRCd is free software and published under the
terms of the GNU General Public License.
-- ChangeLog --
-ngIRCd
-
- - Make [No]ZeroConf configuration option work with Howl.
- - Deprecate NoXX-Options in ngircd.conf: 'NoDNS=no' => 'DNS=yes',
- 'NoIdent=no' => 'Ident=yes', 'NoPAM=no' => 'PAM=yes', and
- 'NoZeroConf=no' => 'ZeroConf=yes' (and vice-versa).
- The defaults are adjusted accordingly and the old variables are still
- accepted, so there is no functional change.
- - Fix confusing "adding to invite list" debug messages.
- - Don't throttle services and servers beeing registered.
- - Xcode: correctly sort files
- - Don't assert() when serching a client for an invalid server token.
+ngIRCd Release 19.1 (2012-03-19)
+
+ - Fix gcc warning (v4.6.3), initialize "list" variable to NULL.
+ - Fix typos: "recieved" -> "received", "Please not" -> "Please note",
+ and fix lintian(1) warning ""hyphen-used-as-minus-sign", too.
+ - Really include _all_ patches to build the Anope module into the
+ distribution archive ... ooops!
+ - getpid.sh: Fix test case error for Debian using sbuild(1).
+ - Don't log "ngIRCd hello message" two times when starting up.
+
+ngIRCd Release 19 (2012-02-29)
+
+ - Update build system: bump config.guess and config.sub files used by
+ GNU autoconf/automake to recent versions.
+ - Fix configuration file parser: don't accept "[SSL]" blocks in the
+ configuration file when no SSL support is built in ngIRCd.
+ - Fix building ngIRCd with old gcc versions (e. g. 2.7.2).
+ - Correctly re-open syslog logging after reading of configuration
+ file: Syslog logging has been initialized before reading the
+ configuration, so ngIRCd always used the default facility and ignored
+ the "SyslogFacility" configuration option ...
+ Thanks to Patrik Schindler for reporting this issue!
+
+ ngIRCd 19~rc1 (2012-02-12)
+ - Enhance command limits for server links: the limit now is dependent
+ on the number of users connected in the network and higher while
+ servers are joining the network to make the login of servers faster.
+ - Log more information about server synchronization.
+ - Update preliminary ngIRCd protocol module for Anope 1.9.6, which now
+ is the only supported version.
+ - New numeric RPL_WHOISHOST_MSG(378), which returns the DNS host name
+ (if available) and the IP address of a client in the WHOIS reply.
+ Only the user itself and local IRC operators get this numeric.
+ - Implement channel exception list (mode 'e'). This allows a channel
+ operator to define exception masks that allow users to join the
+ channel even when a "ban" would match and prevent them from joining:
+ the exception list (e) overrides the ban list (b).
+ - PRIVMSG and NOTICE: Handle nick!user@host masks case-insensitive.
+ - Implement user mode 'C': If the target user of a PRIVMSG or NOTICE
+ command has the user mode 'C' set, it is required that both sender
+ and receiver are on the same channel. This prevents private flooding
+ by completely unknown clients.
+ - New RPL_WHOISREGNICK_MSG(307) numeric in WHOIS command replies: it
+ indicates if a nick name is registered (if user mode 'R' set).
+ - Limit channel invite, ban, and exception lists to 50 entries and fix
+ duplicate check and error messages when adding already listed entries
+ or deleting no (longer) existing ones.
+ - Fix both ERR_SUMMONDISABLED(445) and ERR_USERSDISABLED(446) replies.
+ - MODE command: correctly return ERR_UNKNOWNMODE(472) numeric for
+ unknown channel modes, instead of ERR_UMODEUNKNOWNFLAG(501).
+ - ISUPPORT(005) numeric: add "O", "R", and "z" modes to "CHANMODES",
+ add "EXCEPTS=e" and "INVEX=I", add "MAXLIST=beI:50".
+ - Limit the number of list items in the reply of LIST (100), WHO (25),
+ WHOIS (10), and WHOWAS (25) commands.
+ - LIST command: compare pattern case insensitive.
+ - Limit the MODE command to handle a maximum number of 5 channel modes
+ that require an argument (+Ibkl) per call and report this number
+ in the ISUPPORT(005) numeric: "MODES=5".
+ - Fix handling of channel mode sequence with/without arguments.
+ For example, don't generate wrong error messages when handling
+ "MODE #chan +IIIIItn *!aa@b *!bb@c *!cc@d *!dd@e *!ee@f".
+ - When sending data on a connection, only try to get the type of
+ the client if there still is one assigned. This could trigger an
+ assertion and end the daemon in some error paths.
+ - Don't try to close already closed/invalid sockets to forked child
+ processes. This could potentially crash the daemon in some cases
+ with IDENT lookups enabled.
+ - WHOIS command: make sure that the reply ends with RPL_ENDOFWHOIS,
+ don't answer queries for IRC servers, make sure mask matching is
+ case-insensitive, and that RPL_ENDOFWHOIS numeric is sent with the
+ unmodified mask (like it has been received from the client).
+ - LINKS command: support <mask> parameter to limit the reply.
+ - Add 1 second penalty for every further target on PRIVMSG/NOTICE
+ commands: this reduces the possibility of flooding channels with
+ commands like "PRIVMSG/NOTICE #a,#n,#c,... :message" a little bit.
+ Problem noticed by Cahata, thanks!
+ - Display correct error message when "Server{UID|GID}" variable in the
+ configuration file is invalid (not a number and no existing user).
+ - Update Copyright notices for 2012 :-)
+ - JOIN command: don't stop handling of channel lists when a single
+ channel cannot be joined (because of bad name, wrong key or channel
+ limit reached), but report an error and continue. And don't check
+ the channel limit and don't report with "too many channels" when
+ trying to join a channel that the client already is a member of.
+ - ISON command: reply with the correct upper-/lowercase nick names.
+ - New configuration option "PAMIsOptional": when set, clients not
+ sending a password are still allowed to connect: they won't become
+ "identified" and keep the "~" character prepended to their supplied
+ user name. See "man 5 ngircd.conf" for details.
+ - Fixed handling of WHO commands. This fixes two bugs: "WHO <nick>"
+ returned nothing at all if the user was "+i" (reported by Cahata,
+ thanks) and "WHO <nick|nickmask>" returned channel names instead
+ of "*" when the user was member of a (visible) channel.
+ - Fixed some spelling errors in documentation and code comments
+ (Thanks to Christoph Biedl).
+ - contrib/Debian/control: Update and complete "Build-Depends" and
+ update our Debian package descriptions with "official" ones.
+ - Fixed typo in two error messages.
+ - LUSERS reply: only count channels that are visible to the requesting
+ client, so the existence of secret channels is no longer revealed by
+ using LUSERS. Reported by Cahata, thanks!
+ - Unknown user and channel modes no longer stop the mode parser, but
+ are simply ignored. Therefore modes after the unknown one are now
+ handled. This is how ircd2.10/ircd2.11/ircd-seven behave, at least.
+ Reported by Cahata, thanks!
+ - README: Update list of implemented commands.
+ - Log better error messages when rejecting clients.
+ - Implement IRC commands "GLINE" and "KLINE" to ban users. G-Lines are
+ synchronized between server on peering, K-Lines are local only.
+ If you use "*!<user>@<host>" or "*!*@<host>" masks, these connections
+ are blocked even before the user is fully logged in (before PASS,
+ NICK, and USER commands have been processed) and before the child
+ processes for authentication are forked, so resource usage is smaller.
+ - Xcode: update project file for Xcode 4.2 and define HAVE_GAI_STRERROR
+ for Mac OS X Xcode builds.
+ - ./configure: Fix logic and quoting of poll() detection code: only use
+ poll() when poll.h exists as well.
+ - Suppress 'Can't create pre-defined channel: invalid name: ""' message.
+ - whois-test: handle local host name = "localhost.localdomain" using the
+ pattern "localhost*" for valid local host names.
+ - sample-ngircd.conf: show correct default for "PAM" variable: The
+ default of "PAM" is "yes" when ngIRCd has been configured to use it,
+ so show the correct default value in the sample configuration file.
+ (Closes #119)
+ - Update GPL 2 license text to current version.
+ - Only close "unrelated" sockets in forked child processes: This fixes
+ the problem that ngIRCd can't do any IDENT lookups because of the
+ socket has already been closed in the child process.
+ The bug has been introduced starting with ngIRCd 17 ... :-(
+ (commit ID 6ebb31ab35e)
+ - Added doc/Modes.txt: document modes supported by ngIRCd.
+ - Implement user mode "R": indicates that the nick name of this user
+ is "registered". This mode isn't handled by ngIRCd itself, but must
+ be set and unset by IRC services like Anope.
+ - Implement channel mode "R": only registered users (having the user
+ mode "R" set) are allowed to join this channel.
+ - Test suite: bind to loopback (127.0.0.1) interface only.
+ - New 2nd message "Nickname too long" for error code 432.
+ - Xcode: Mac OS X config.h: support 10.5 as well as 10.6/10.7 SDK.
+ - Xcode: exclude more Xcode 4 specific directories in ".gitignore".
+ - Disconnect directly linked servers sending QUIT. Without this,
+ the server becomes removed from the network and the client list,
+ but the connection isn't shut down at all ...
+ - contrib/ngindent: detect "gindent" as GNU indent.
+ - Handle unknown user and channel modes: these modes are saved and
+ forwarded to other servers, but ignored otherwise.
+ - Handle channel user modes 'a', 'h', and 'q' from remote servers.
+ These channel user modes aren't used for anything at the moment,
+ but ngIRCd knows that these three modes are "channel user modes"
+ and not "channel modes", that is that these modes take an "nick name"
+ argument. Like unknown user and channel modes, these modes are saved
+ and forwarded to other servers, but ignored otherwise.
+ - Correctly inform clients when other servers change their user modes.
+ This is required for some services to work correctly.
+ - Test suite: make getpid.sh work even when run as root.
+ - Spoofed prefixes: close connection on non-server links only.
+ On server-links, spoofed prefixes can happen because of the
+ asynchronous nature of the IRC protocol. So don't break server-
+ links, only log a message and ignore the command. (Closes #113)
+
+ngIRCd Release 18 (2011-07-10)
+
+ - Update timestamp of ngircd(8) manual page.
+ - Add preliminary ngIRCd protocol module for Anope 1.9 to contrib/Anope/.
+ - Don't register WHOWAS information when "MorePrivacy" option is in effect.
+
+ ngIRCd 18~rc2 (2011-06-29)
+ - Update documentation, fix some wording, and use a spellchecker :-)
+ - ngircd.conf.5: strip "SSL" prefix from variables in [SSL] section.
+ - ngircd.8: document debugging options.
+ - GnuTLS: use 1024 bits as minimum size of the DH prime. This enables
+ ngIRCd to accept incoming connections from other servers and clients
+ that "only" use at least 1024 bits again, like ngIRCd 17 did (and no
+ longer requires 2048 bits for incoming connections).
+
+ ngIRCd 18~rc1 (2011-06-27)
+ - PAM warning message: make clear which "Password" config option is ignored.
+ - New configuration option "MorePrivacy" to "censor" some user information.
+ When enabled, signon time and idle time is left out. Part and quit
+ messages are made to look the same. WHOWAS requests are silently dropped.
+ All of this is useful if one wish to conceal users that access the ngircd
+ servers from TOR or I2P.
+ - New configuration option "ScrubCTCP" to scrub incoming CTCP commands. If
+ activated, the server silently drops incoming CTCP requests from both
+ other servers and from users. The server that scrubs CTCP will not forward
+ the CTCP requests to other servers in the network either, which can spell
+ trouble if not every oper knows about the CTCP-scrubbing. Scrubbing CTCP
+ commands also means that it is not possible to send files between users.
+ There is one exception to the CTCP scrubbing performed: ACTION ("/me
+ commands") requests are not scrubbed.
+ - Display configuration errors more prominent on "--configtest".
+ - Restructure ngIRCd configuration file: introduce new [Limits], [Options],
+ and [SSL] sections. The intention of this restructuring is to make the
+ [Global] section much cleaner, so that it only contains variables that
+ most installations must adjust to the local requirements. All the optional
+ variables are moved to [Limits], for configurable limits and timers of
+ ngIRCd, and [Options], for optional features. All SSL-related variables
+ are moved to [SSL] and the "SSL"-prefix is stripped. The old variables in
+ the [Global] section are deprecated now, but are still recognized.
+ => Don't forget to check your configuration, use "ngircd --configtest"!
+ - New documentation "how to contribute": doc/Contributing.txt.
+ - Slightly fix error handling when connecting to remote servers.
+ - GnuTLS: bump DH-bitsize to 2048: this solves the problem that some clients
+ refuse to connect to severs that only offer 1024. For interoperability it
+ would be best to just use 4096 bits, but that takes minutes, even on
+ current hardware ...
+ - contrib/platformtest.sh: fix gcc version detection.
+ - Avoid needlessly scary 'buffer overflow' messages: When the write buffer
+ space grows too large, ngIRCd has to disconnect the client to avoid
+ wasting too much memory, which is logged with a scary 'write buffer
+ overflow' message. Change this to a more descriptive wording.
+ - Require server prefixes for most commands on RFC2812 links. RFC1459 links
+ (often used by services, for example) are not affected.
+ - Mac OS X: update installer functionality, texts, and add our logo :-)
+ - New configuration option "RequireAuthPing": PING-PONG on login. When
+ enabled, this configuration option lets ngIRCd send a PING with an numeric
+ "token" to clients logging in; and it will not become registered in the
+ network until the client responds with the correct PONG.
+ - New configuration option "NoticeAuth": send NOTICE AUTH on connect. When
+ active, ngircd will send "NOTICE AUTH" messages on client connect time
+ like e.g. snircd (QuakeNet) does.
+ - Generate WALLOPS message on SQUIT from IRC operators; so SQUIT now behaves
+ like CONNECT and DISCONNECT commands, when called by an IRC operator.
+ - Allow servers to send more commands in the first 10 seconds ("burst"). This
+ helps to speed up server login and network synchronization.
+ - Add support for up to 3 targets in WHOIS queries, also allow up to one
+ wildcard query from local hosts. Follows ircd 2.10 implementation rather
+ than RFC 2812. At most 10 entries are returned per wildcard expansion.
+ - ngircd.conf(5) manual page: describe types of configuration variables
+ (booleans, text strings, integer numbers) and add type information to each
+ variable description.
+ - Don't use "the.net" in sample-ngircd.conf, use "example.net".
+ - Terminate incoming connections on HTTP commands "GET" and "POST".
+ - New configuration option "CloakHost": when set, this host name is used for
+ every client instead of the real DNS host name (or IP address).
+ - New configuration option "CloakUserToNick": when enabled, ngIRCd sets
+ every clients' user name to their nick name and hides the user name
+ supplied by the IRC client.
+ - doc/Protocol.txt: Update description of the CHANINFO and WEBIRC commands.
+ - Doxygen'ify (document) much more source files; code cleanup ...
+ - Make write buffers bigger, but flush early. Before this change, a client
+ got disconnected if the buffer flushing at 4k failed, now regular clients
+ can store up to 32k and servers up 64k even if flushing is not possible at
+ the moment. This enhances reliability on slow links.
+ - Don't access possibly free'd CLIENT structure. Ooops.
+ - Allow "Port = 0" in [Server] blocks. Port number 0 marks remote servers
+ that try to connect to this daemon, but where this daemon never tries to
+ establish a connection on its own: only incoming connections are allowed.
+ - Configuration: fix 'Value of "..." is not a number!' for negative values.
+ - Enable WHOIS command to return information about services.
+ - Implement channel mode 'O': "IRC operators only". This channel mode is
+ used on DALnet (bahamut), for example.
+ - Remove support for ZeroConf/Bonjour/Rendezvous service registration
+ including the "[No]ZeroConf" configuration option.
+ - TOPIC command: test for channel admin rights correctly: this enables other
+ servers, services and IRC operators to change channel topics, even when
+ the client is not joined to this channel.
+ - Deprecate NoXX-Options in ngircd.conf and move new variants into our new
+ [Options] section: 'NoDNS=no' => 'DNS=yes', 'NoIdent=no' => 'Ident=yes',
+ 'NoPAM=no' => 'PAM=yes', and 'NoZeroConf=no' => 'ZeroConf=yes' (and
+ vice-versa). The defaults are adjusted accordingly and the old variables
+ in [Global] are still accepted, so there is no functional change.
+ - Fix confusing "adding to invite list" debug messages: adding entries to
+ ban list produced 'invite list' debug output ...
+ - Don't throttle services and servers being registered.
+ - Xcode: correctly sort files :-)
+ - Don't assert() when searching a client for an invalid server token (this is
+ only relevant when a trusted server on a server-server link sends invalid
+ commands).
ngIRCd Release 17.1 (2010-12-19)
- Reset ID of outgoing server link on DNS error correctly
- Don't log critical (or worse) messages to stderr
- Manual page ngircd(8): add SIGNALS section
- - Manual pages: update and simplyfy AUTHORS section
+ - Manual pages: update and simplify AUTHORS section
- Remove "error file" when compiled with debug code enabled
- README: Updated list of implemented commands
- add doc/README-Interix.txt and doc/Bopm.txt to distribution tarball
- configure script: correctly indent IPv6 yes/no summary output.
- Don't reset My_Connections[Idx].lastping when reading data, so the
client lag debug-output is working again.
- - Implement user mode "x": hostname cloaking (closes: #102).
+ - Implement user mode "x": host name cloaking (closes: #102).
- Make configure switch "--docdir" work (closes: #108).
- Reformat and update FAQ.txt a little bit.
- INSTALL: mention SSL, IPv6, and changed handling of MotdFile.
- Allow ping timeout quit messages to show the timeout value.
- Fix error handling on compressed links.
- Fix server list announcement.
- - Do not remove hostnames from info text.
+ - Do not remove host names from info text.
ngIRCd Release 14 (2009-04-20)
- RPL_WHOREPLY messages generated by IRC_WHO didn't include flags (*,@,+).
(Dana Dahlstrom)
- IRC_WHO now supports search patterns and will test this against user
- nickname/servername/hostname, etc. as required by RFC 2812, Section 3.6.1.
+ nickname/server name/host name, etc. as required by RFC 2812, Section 3.6.1.
(reported by Dana Dahlstrom)
- Add test cases for "WHO" command. (Dana Dahlstrom)
- Implement RFC 2812 handling of "0" argument to 'JOIN': must be treated
ngircd to crash [from HEAD]. (CVE-2008-0285)
ngIRCd 0.11.0-pre1 (2008-01-02)
- - Use dotted-decimal IP address if hostname is >= 64.
+ - Use dotted-decimal IP address if host name is >= 64.
- Add support for /STAT u (server uptime) command.
- New [Server] configuration Option "Bind" allows to specify
the source IP address to use when connecting to remote server.
original ircd exactly: the unnecessary but missing ":" before the last
parameter has been added.
- Fixed TRACE: don't output "Serv" lines for ourself; display more info.
- - Results of the resolver (hostnames and IDENT names) are discarded after
+ - Results of the resolver (host names and IDENT names) are discarded after
the client is successfully registered with the server.
- Better logging while establishing and shutting down connections.
- The type of service (TOS) of all sockets is set to "interactive" now.
werden (beide Server versuchen sich dann gegenseitig zu connectieren).
- Test-Suite und Dokumentation an A/UX angepasst.
- unter HP-UX definiert das configure-Script nun _XOPEN_SOURCE_EXTENDED.
- - Server identifizieren sich nun mit asyncronen Passwoertern, d.h. das
+ - Server identifizieren sich nun mit asynchronen Passwoertern, d.h. das
Passwort, welches A an B schickt, kann ein anderes sein als das, welches
B als Antwort an A sendet. In der Konfig.-Datei, Abschnitt "Server",
wurde "Password" dazu durch "MyPassword" und "PeerPassword" ersetzt.
- Protokoll- und Server-ID bei PASS-Befehlen auf neues Format umgestellt;
bei empfangenen PASS-Befehlen werden diese zudem nun auch ausgewertet.
Die unterstuetzten Flags sind in doc/Protocol.txt beschrieben.
- - mit dem neuen Befehl CHANINFO syncronisieren Server, die das IRC+-
+ - mit dem neuen Befehl CHANINFO synchronisieren Server, die das IRC+-
Protokoll unterstuetzen, Channel-Modes und Topics.
- neue Option "--disable-ircplus" fuer das configure-Script, um das
IRC+-Protokoll abzuschalten (per Default ist es aktiviert).
- PRIVMSG beachtet nun die Channel-Modes "n" und "m".
- AWAY implementiert. PRIVMSG, MODE, USERHOST und WHOIS angepasst.
- der ngIRCd unterstuetzt nun Channel-Topics (TOPIC-Befehl).
- - ausgehende Server-Verbindungen werden nun asyncron connectiert und
+ - ausgehende Server-Verbindungen werden nun asynchron connectiert und
blockieren nicht mehr den ganzen Server, wenn die Gegenseite nicht
erreicht werden kann (bis zum Timeout konnten Minuten vergehen!).
- Wert der Konfigurations-Variable "ConnectRetry" wird besser beachtet.
- NICK kann nun die Gross- und Kleinschreibung eines Nicks aendern.
- ein Server-Passwort ist nun konfigurierbar.
- neue Befehle: ERROR, SERVER, NJOIN (nur als "Fake"), SQUIT.
- - Asyncroner Resolver Hostname->IP implementiert.
+ - Asynchroner Resolver Hostname->IP implementiert.
- Server-Links teilweise implementiert: bisher kann der ngIRCd jedoch
nur "leafed server" sein, d.h. keine "Client-Server" haben. Einige
Befehle sind auch noch nicht (optimal) angepasst: PRIVMSG funktioniert