Search found 9 matches
- Tue Mar 08, 2016 2:59 pm
- Forum: Unreal 3.2 Support
- Topic: Let's Encrypt support (free SSL certificates)
- Replies: 3
- Views: 11426
Re: Let's Encrypt support (free SSL certificates)
Updates: Unreal 4.0.1 brings ./unrealircd reloadtls, which means no more having to script an IRC connection and have it oper up just to reload the certs. On the topic of Let's Encrypt, one of the gotchas was that, if you wanted each leaf's hostname on the/a cert, you needed control over an HTTP serv...
- Mon Dec 28, 2015 7:08 pm
- Forum: Generic support
- Topic: Disable selected SSL/TLS versions
- Replies: 1
- Views: 2020
Disable selected SSL/TLS versions
For Unreal 4, I see sslv3 was removed entirely, which is good.
Is there a way to control the allowed protocols (not just ciphers) (in either 3.2.x or 4.x)? For example if TLS 1.0 is broken tomorrow.
MOD EDIT: this post was moved to a new thread
Is there a way to control the allowed protocols (not just ciphers) (in either 3.2.x or 4.x)? For example if TLS 1.0 is broken tomorrow.
MOD EDIT: this post was moved to a new thread
- Fri Dec 04, 2015 7:43 pm
- Forum: Unreal 3.2 Support
- Topic: Let's Encrypt support (free SSL certificates)
- Replies: 3
- Views: 11426
Re: Let's Encrypt support (free SSL certificates)
Thanks. I was able to automate this with the aforementioned acme_tiny.py and a script that connects, opers, and rehashes. Next question: what's the minimum required level/permission to do /rehash -ssl? For testing I tried an oper with just can_rehash (full flags rGHq) and got the following: << REHAS...
- Thu Dec 03, 2015 8:44 pm
- Forum: Unreal 3.2 Support
- Topic: Let's Encrypt support (free SSL certificates)
- Replies: 3
- Views: 11426
Let's Encrypt support (free SSL certificates)
First, my question: I'm using Unreal 3.2.10.4. Is there a way I can run an equivalent of "/rehash -ssl" from the Linux command line? ./unreal rehash and ./unreal rehash -ssl do not appear to do that. As many of you have heard, Let's Encrypt is now in public beta and offering FREE SSL certi...
- Tue Oct 21, 2014 2:10 pm
- Forum: Unreal 3.2 Support
- Topic: POODLE vulnerability
- Replies: 1
- Views: 2174
POODLE vulnerability
POODLE: http://googleonlinesecurity.blogspot.com.au/2014/10/this-poodle-bites-exploiting-ssl-30.html https://www.us-cert.gov/ncas/alerts/TA14-290A I believe Unreal IRCd is vulnerable because SSLv3 is supported. The fix is to disable SSLv3 and just use TLS 1+. Is this possible (3.2.10.4)? Test with -...
- Tue Apr 08, 2014 6:30 pm
- Forum: Unreal 3.2 Support
- Topic: Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)
- Replies: 2
- Views: 2428
Re: Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)
Just received the email entitled "SSL Heartbleed security issue & UnrealIRCd" sent to unreal-notify list. Thanks!
Answer is you need to update OpenSSL then RESTART the ircd.
Answer is you need to update OpenSSL then RESTART the ircd.
- Tue Apr 08, 2014 2:39 pm
- Forum: Unreal 3.2 Support
- Topic: Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)
- Replies: 2
- Views: 2428
Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)
http://heartbleed.com/
Unreal IRCd uses OpenSSL and uses TLS, but is it vulnerable to the heartbleed attack? Should we recompile, or is it good enough to update OpenSSL and restart Unreal?
Unreal IRCd uses OpenSSL and uses TLS, but is it vulnerable to the heartbleed attack? Should we recompile, or is it good enough to update OpenSSL and restart Unreal?
- Fri Mar 06, 2009 3:14 am
- Forum: Unreal 3.2 Support
- Topic: Alias Block Question
- Replies: 4
- Views: 1842
Re: Alias Block Question
Alias, noun. A name, usually short and easy to remember and type, that is translated into another name or string, usually long and difficult to remember or type. An alias lets you turn /msg nickserv into /ns for example. You define the alias, and people then just have to type "/ns".
- Fri Mar 06, 2009 3:13 am
- Forum: Unreal 3.2 Support
- Topic: snotice
- Replies: 5
- Views: 3283