Search found 9 matches

by Alucard
Tue Mar 08, 2016 2:59 pm
Forum: Unreal 3.2 Support
Topic: Let's Encrypt support (free SSL certificates)
Replies: 3
Views: 10984

Re: Let's Encrypt support (free SSL certificates)

Updates: Unreal 4.0.1 brings ./unrealircd reloadtls, which means no more having to script an IRC connection and have it oper up just to reload the certs. On the topic of Let's Encrypt, one of the gotchas was that, if you wanted each leaf's hostname on the/a cert, you needed control over an HTTP serv...
by Alucard
Mon Dec 28, 2015 7:08 pm
Forum: Generic support
Topic: Disable selected SSL/TLS versions
Replies: 1
Views: 2002

Disable selected SSL/TLS versions

For Unreal 4, I see sslv3 was removed entirely, which is good.
Is there a way to control the allowed protocols (not just ciphers) (in either 3.2.x or 4.x)? For example if TLS 1.0 is broken tomorrow.

MOD EDIT: this post was moved to a new thread
by Alucard
Fri Dec 04, 2015 7:43 pm
Forum: Unreal 3.2 Support
Topic: Let's Encrypt support (free SSL certificates)
Replies: 3
Views: 10984

Re: Let's Encrypt support (free SSL certificates)

Thanks. I was able to automate this with the aforementioned acme_tiny.py and a script that connects, opers, and rehashes. Next question: what's the minimum required level/permission to do /rehash -ssl? For testing I tried an oper with just can_rehash (full flags rGHq) and got the following: << REHAS...
by Alucard
Thu Dec 03, 2015 8:44 pm
Forum: Unreal 3.2 Support
Topic: Let's Encrypt support (free SSL certificates)
Replies: 3
Views: 10984

Let's Encrypt support (free SSL certificates)

First, my question: I'm using Unreal 3.2.10.4. Is there a way I can run an equivalent of "/rehash -ssl" from the Linux command line? ./unreal rehash and ./unreal rehash -ssl do not appear to do that. As many of you have heard, Let's Encrypt is now in public beta and offering FREE SSL certi...
by Alucard
Tue Oct 21, 2014 2:10 pm
Forum: Unreal 3.2 Support
Topic: POODLE vulnerability
Replies: 1
Views: 2145

POODLE vulnerability

POODLE: http://googleonlinesecurity.blogspot.com.au/2014/10/this-poodle-bites-exploiting-ssl-30.html https://www.us-cert.gov/ncas/alerts/TA14-290A I believe Unreal IRCd is vulnerable because SSLv3 is supported. The fix is to disable SSLv3 and just use TLS 1+. Is this possible (3.2.10.4)? Test with -...
by Alucard
Tue Apr 08, 2014 6:30 pm
Forum: Unreal 3.2 Support
Topic: Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)
Replies: 2
Views: 2399

Re: Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)

Just received the email entitled "SSL Heartbleed security issue & UnrealIRCd" sent to unreal-notify list. Thanks!

Answer is you need to update OpenSSL then RESTART the ircd.
by Alucard
Tue Apr 08, 2014 2:39 pm
Forum: Unreal 3.2 Support
Topic: Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)
Replies: 2
Views: 2399

Unreal IRCd & the 7-Apr-2014 OpenSSL vuln (heartbleed)

http://heartbleed.com/

Unreal IRCd uses OpenSSL and uses TLS, but is it vulnerable to the heartbleed attack? Should we recompile, or is it good enough to update OpenSSL and restart Unreal?
by Alucard
Fri Mar 06, 2009 3:14 am
Forum: Unreal 3.2 Support
Topic: Alias Block Question
Replies: 4
Views: 1822

Re: Alias Block Question

Alias, noun. A name, usually short and easy to remember and type, that is translated into another name or string, usually long and difficult to remember or type. An alias lets you turn /msg nickserv into /ns for example. You define the alias, and people then just have to type "/ns".
by Alucard
Fri Mar 06, 2009 3:13 am
Forum: Unreal 3.2 Support
Topic: snotice
Replies: 5
Views: 3247

Re: snotice