Request: Oper up port
Request: Oper up port
I was wondering if it was possible to create a module to add to the O:line block for ex.
oper testoper {
class clients;
from {
userhost [email protected]:7005
};
so that only a user connecting on 7005 can oper up with that host, If its possible can someone create it or help me create it?
oper testoper {
class clients;
from {
userhost [email protected]:7005
};
so that only a user connecting on 7005 can oper up with that host, If its possible can someone create it or help me create it?
I second that.
Additionally, it only makes sense to me to force admins to use a certain port if it would be something like forcing them to use SSL.. In that case, this module does exactly that.
Additionally, it only makes sense to me to force admins to use a certain port if it would be something like forcing them to use SSL.. In that case, this module does exactly that.
open a port that isnt open to the public that no one knows about ex. (7032)
if its a private network, or in my case i have a local network so i want to have a port that is open to my local network but is closed to the outside internet, so no one outside can connect on that port therefore they cannot oper up
if its a private network, or in my case i have a local network so i want to have a port that is open to my local network but is closed to the outside internet, so no one outside can connect on that port therefore they cannot oper up
Uh... security trough obscurity (and especially this example) is really a bad idea.pete212 wrote:open a port that isnt open to the public that no one knows about ex. (7032)
... but you could already have done that by just putting in proper oper::from::userhosts. Or if nobody on the internet should be allowed to connect, then proper listen/allow blocks.if its a private network, or in my case i have a local network so i want to have a port that is open to my local network but is closed to the outside internet, so no one outside can connect on that port therefore they cannot oper up :)
-
- Posts: 10
- Joined: Mon Mar 28, 2005 2:50 pm
Or, if you're behind a router, just listen on a port that you do NOT redirect the outside world to.
listen *:6666-6669 {};
listen *:7000 {};
router config redirects ports 6666-6669 but not 7000;
You connect to 7000 from localhost and do all of your oper stuff from there. Better yet, make 7000 ssl compliant and connect with ssl enabled if you want encrypted traffic (depending on your level of paranoia.) No need for special modules, just need a reworking of your plan.
listen *:6666-6669 {};
listen *:7000 {};
router config redirects ports 6666-6669 but not 7000;
You connect to 7000 from localhost and do all of your oper stuff from there. Better yet, make 7000 ssl compliant and connect with ssl enabled if you want encrypted traffic (depending on your level of paranoia.) No need for special modules, just need a reworking of your plan.
-
- Former UnrealIRCd head coder
- Posts: 811
- Joined: Sat Mar 06, 2004 8:47 pm
- Location: United States
- Contact:
And I would. I would connect to your server, type /module. It would inform me that "operport" (or whatever the module would be called) is loaded. I would then scan for ports open on the system in an attempt to find this port. Most likely, I'll only have about 10 ports to try. I can quickly create a script that will connect to the open ports and detect if the port is IRC. If it is, I can then have it send an /oper command.
-- codemastr