Page 1 of 1

AOL User password?

Posted: Thu Mar 23, 2006 3:42 pm
by SpaceDoG
I was wondering if there is a way to set it up for individual AOL users to have to send a password in order to connect and to monitor how many users are using that password? /me hates AOL users because they like to easily ban evade then I have to block the whole network including people who don't need to be banned. Was hoping someone out there had some type of solution for their crappy network...

Posted: Thu Mar 23, 2006 4:29 pm
by tdw

Posted: Thu Mar 23, 2006 5:06 pm
by Grunt
For a better control, you can also use the module userauth module.

Posted: Thu Mar 23, 2006 9:24 pm
by Jason
That was quite unnessecary. The allow block is not capable of the monitoring he has asked for, and it is a significant portion of the request.

Posted: Thu Mar 23, 2006 10:37 pm
by aquanight
On the contrary - setting a password is every bit part of the allow block.

Example:

Code: Select all

ban user {
    mask "*@*.aol.com";
    reason "AOL Users are required to contact an admin to connect.";
};
except ban {
    mask "username@*.aol.com";
};
allow {
    ip NOMATCHING;
    host username@*.aol.com;
    password "thepasswordhere" { hash-it-if-you-want; };
};
You might want to change the ban user to use AOL's IP ranges (if you want to find them). Repeat the except ban / allow bits for each AOL user in question. Note: this setup will still allow you to /gline, /zline, and /gzline AOL users, but not /kline them.

[edit]Note: I've heard that username matching in allow blocks only works if the user has a working identd server. You may have to educate your users in how to use mIRC's builtin identd server or if they don't use mIRC, how to set one up.[/edit]

Posted: Fri Mar 24, 2006 2:44 am
by Jason
Agreed, but the monitoring for sharing was an important part of the question, which is not covered by the allow block, or any module of which I am aware.

But if you do require a unique ident reply for each aol user, you can grep your connect logs for that.

Posted: Fri Mar 24, 2006 7:24 am
by aquanight
Well "how many users are using the password" is simple:

- If you require a password for anyone from AOL, /who +h *.aol.com and count! (There's no badpasscont so you can only use one pass atm.)
- If you require specific username/password combinations, /who +uh username *.aol.com ... and count!

[edit]oops: +u is for username...[/edit]

Posted: Sat Mar 25, 2006 5:02 pm
by Jason
You can use as many passes as you want, just badpasscont on all but the last. (or, first, since they are read backwards)

Posted: Sat Mar 25, 2006 7:28 pm
by aquanight
There is no badpasscont afaik.

Posted: Sat Mar 25, 2006 7:48 pm
by Jason
Oh. Right. But if each password gets its own ident required, then its not a problem, because if you dont have that ident, the password isnt checked.

Posted: Sat Mar 25, 2006 7:49 pm
by aquanight
Isn't that what I said earlier? :P

Posted: Sat Mar 25, 2006 8:37 pm
by Jason
*Scrolls up*

Yep. Sry

Posted: Wed Apr 05, 2006 4:38 pm
by SpaceDoG
This actually works perfectly... it unbans the specified AOL and requires them to have a pass and I can look to see what AOL users are on and if there is someone with multiple idents they get removed easily.

Posted: Thu Apr 06, 2006 3:28 pm
by R3M
aquanight wrote: allow {
ip NOMATCHING;
host username@*.aol.com;
password "thepasswordhere" { hash-it-if-you-want; };
};[/code]
How can use hash method.For example md5 hashing.

Posted: Thu Apr 06, 2006 4:12 pm
by aquanight
Same way you do in oper blocks...