| Commit message (Collapse) | Author | Age | Files | Lines |
| | |
|
| |
|
|
| |
This makes debugging issues easier.
|
| | |
|
| | |
|
| |
|
|
|
| |
This stops users from accidentally killing their IRC server if they
forget to load the sslrehashsignal module.
|
| | |
|
| | |
|
| |\ |
|
| | | |
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
MaxMind have EOL'd the library that the geoip module uses and have
replaced it with libmaxminddb.
The geoip module has been split into geo_maxmind which provides
geolocation data, geoban which provides location-based channel
bans, and geoclass which is used to filter a user into a connect
class based on location.
|
| | | |
|
| | |
| |
| |
| | |
GNUTLS_DIG_SHA256 was added in version 1.7.4 and we require 2.0.0+
|
| | | |
|
| | | |
|
| | |
| |
| |
| | |
This fixes a regression introduced in 97a1d642.
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
This is not exploitable as far as I know but it is probably best
that we use the newer function just in case.
Closes #649 (although the attack mentioned in that issue was not
feasible).
|
| |\| |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
Since CGI:IRC calls it's 'ChangeIP()' either from 'OnCheckReady()'
or 'OnUserRegister()', both of which are called after the user has
sent NICK/USER, we can safely skip re-setting the ExtItem prior to
this point.
This skips the first 'OnSetUserIP()' from 'User::AddUser()' as
the 'OnSetConnectClass()' catch handles the initial setting.
|
| | |
| |
| |
| | |
Backported from 2afc1af4639ae2bbef397f4f6acc834950017d91.
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| | |
Some core code still exists in the XLine system but this will be
replaced when the XLine system is replaced later.
|
| | |
| |
| |
| |
| |
| |
| | |
- Add the G: extban to the EXTBAN 005 token.
- Use CXX11_OVERRIDE with ReadConfig and OnCheckBan.
Thanks to @genius3000 for pointing these out.
|
| | | |
|
| | | |
|
| | | |
|
| | |
| |
| |
| |
| | |
This module uses platform-specific behaviour that does not work on
Windows.
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
- Move everything into the SQL namespace and drop the SQL prefix.
- Move SQLProvider::PopulateUserInfo to SQL::PopulateUserInfo.
- Rename SQLEntry to SQL::Field and clean up.
- Rename SQLEntries to SQL::Row.
- Rename SQLerror to SQL::Error and clean up.
- Rename SQLerrorNum to SQL::ErrorCode and drop the SQL_ prefix.
- Rename ParamL to SQL::ParamList.
- Rename ParamM to SQL::ParamMap;
- Make implementing SQLQuery::OnError mandatory.
- Redo most of the documentation in the sql header.
|
| |\ \
| | |
| | | |
Add OpenSSL CRLs.
|
| | | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The 'crlfile' argument can point to a file that contains valid CRLs.
The 'crlpath' argument can point to a directory which contains CRLs,
albeit in OpenSSL's special hashed/symlink format. The 'crlmode' option
'chain' checks all certificates in the chain while the option 'leaf'
checks only the leaf certificate in a chain.
|
| |/ /
| |
| |
| | |
Closes #1440.
|
| | |
| |
| |
| | |
Old TLS libraries should not be used anymore due to security risks.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
- Always disable SSLv3. Unreal has already done this so clients
will have to upgrade anyway.
- Disable TLSv1.0 by default. Various security standards (e.g.
PCI DSS) are already planning on sunsetting this so we should
too.
|
| | | |
|
| | |
| |
| |
| | |
GCCs warnings for this are much better than Clangs.
|
| | | |
|
| |\| |
|
| | |
| |
| |
| |
| | |
When we release 3.0 these links will break as they will point to
the pages for 3.0 rather than 2.0.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This has never worked because it never prepended attribute= to the
search string. It also would prefer matching nick/ident over the user
string provided which is inconsistent, since your ability to
authenticate using PASS would depend on a ldap entry not existing with
your current nick/ident.
Instead, use username provided in PASS and then fallback to nick/ident.
|
| | |
| |
| |
| |
| | |
- Use the same dhparams name in m_ssl_openssl as in other modules.
- Fix building m_ssl_mbedtls.
|
| | | |
|
| | | |
|