Restrict allowed client connections / Additional whois info
Restrict allowed client connections / Additional whois info
Hey-
First off I want to thank everyone involved for the updates to allow win32 to use dll modules!
Now for the modules / general help requests
part 1:
I'm working on an intranet project using unreal on a windows(2k) platform and what I'm wanting to do is restrict clients joining to those who have gone through the hosted(on the same server) java client. Basically i'm wanting to restrict any third party IRC applications. Conference room(what im trying to replace) has some trickery used to authenticate the client and verify it was loaded from the same server.. and I need to replicate that if at all possible. I'm currently using PJIRC ( http://www.pjirc.com/main.php ) Which is a great applet and im sure i'm going to have to tinker with it quite a bit to get the authentication going.. im just not sure how involved the unreal server is going to get in the situtation.
part 2:
I sadly had to move from apache to IIS so that i could pull NT login information to match the webpage visitor to their corporate identity- but I'm hung as what would be a good method to integrate that information so that it is available from the irc server- possibly in a /whois or the like.
Any suggestions?
First off I want to thank everyone involved for the updates to allow win32 to use dll modules!
Now for the modules / general help requests
part 1:
I'm working on an intranet project using unreal on a windows(2k) platform and what I'm wanting to do is restrict clients joining to those who have gone through the hosted(on the same server) java client. Basically i'm wanting to restrict any third party IRC applications. Conference room(what im trying to replace) has some trickery used to authenticate the client and verify it was loaded from the same server.. and I need to replicate that if at all possible. I'm currently using PJIRC ( http://www.pjirc.com/main.php ) Which is a great applet and im sure i'm going to have to tinker with it quite a bit to get the authentication going.. im just not sure how involved the unreal server is going to get in the situtation.
part 2:
I sadly had to move from apache to IIS so that i could pull NT login information to match the webpage visitor to their corporate identity- but I'm hung as what would be a good method to integrate that information so that it is available from the irc server- possibly in a /whois or the like.
Any suggestions?
Even better
PJIRC is capable of logging in to passworded IRC servers. Configure a password in the ALLOW block. Then set PJIRC to use that password
*EDIT*
Anyone can of course, read the source code and retreive the password. But if you change often enough, it will be a nusance not to use your JavaChat
PJIRC is capable of logging in to passworded IRC servers. Configure a password in the ALLOW block. Then set PJIRC to use that password
*EDIT*
Anyone can of course, read the source code and retreive the password. But if you change often enough, it will be a nusance not to use your JavaChat
Why the hell can't my signature be empty?
"Your message contains too few characters."
"Your message contains too few characters."
The PASSWORD method is transparent to the user, in the PJIRC readme using a password is described. It is a configuration option in the HTML
There isnt, the connection will still come from the remote box. Maybe CGI-IRC is for you (the connection will then be from 127.0.0.1 or whatever the webserver IP is. However then you cant GLINE by IP. I suppose you could still do it by user though
AFTERTHOUGHT: A mod should move this to support, it isnt really a module question
There isnt, the connection will still come from the remote box. Maybe CGI-IRC is for you (the connection will then be from 127.0.0.1 or whatever the webserver IP is. However then you cant GLINE by IP. I suppose you could still do it by user though
AFTERTHOUGHT: A mod should move this to support, it isnt really a module question
Why the hell can't my signature be empty?
"Your message contains too few characters."
"Your message contains too few characters."
Using PHP on IIS now.(and missing apache )
I checked CGI-IRC out, it just doesnt have the flexibility i want of a java client. I will be sticking with PJIRC.
Also, ident is a bit too short for use as the nt login.. however, i think i might just stick it into a finger reply. I've got privdef running on the server, so regular users cant use any privmsg or commands, which would limit it to IRCops. Preferrably I would like to include "user login" into my /whois
I checked CGI-IRC out, it just doesnt have the flexibility i want of a java client. I will be sticking with PJIRC.
Also, ident is a bit too short for use as the nt login.. however, i think i might just stick it into a finger reply. I've got privdef running on the server, so regular users cant use any privmsg or commands, which would limit it to IRCops. Preferrably I would like to include "user login" into my /whois
I created a module to add a new chmode +j which would stop people joining the channel in under X seconds of connecting (read my thread). As an afterthought, i decided to add a umode +f to which was unsettable by any user including ircops, but could only be set by logging in with a new command which had to be sent within the first 15 seconds of being connected. This +f umode allows the user to bypass the +j chmode and also adds a new whois line stating the user 'is connecting from the website' using numeric 336 (not wanting to use the swhois line).
However, to complete my task i had to edit the source codes to (a) stop it being setable by anyone at all and (b) add a new whois line. This means its completely unsupported by the unreal team. What i want to know however, is, is it possible to inject a new line into the whois reply without having to edit the source code so i can add a supportable module or would it have to override the default whois code?
If this is possible, it will help with your request too Ian.
However, to complete my task i had to edit the source codes to (a) stop it being setable by anyone at all and (b) add a new whois line. This means its completely unsupported by the unreal team. What i want to know however, is, is it possible to inject a new line into the whois reply without having to edit the source code so i can add a supportable module or would it have to override the default whois code?
If this is possible, it will help with your request too Ian.
:: Don't let your mind wander -- It may never come back ::
Thanks for the reply Angrywolf. I'm against ugly methods, although the method i used was ugly too.
The problem with adding to the whois is that looking for a new umode means its looking for something that doesn't exist until the module is compiled, which will fail. This then means you have to add the umode to the initial source codes and change the whois, or duplicate the whois command in a module, overriding the whole thing with your addition in place. Both methods i didn't really want to do, but oh well, can't have everything i guess.
Maybe this could be looked at in the next module system -- a method of adding lines to the whois or other commands?
The problem with adding to the whois is that looking for a new umode means its looking for something that doesn't exist until the module is compiled, which will fail. This then means you have to add the umode to the initial source codes and change the whois, or duplicate the whois command in a module, overriding the whole thing with your addition in place. Both methods i didn't really want to do, but oh well, can't have everything i guess.
Maybe this could be looked at in the next module system -- a method of adding lines to the whois or other commands?
:: Don't let your mind wander -- It may never come back ::
I'm actually looking for exactly the same thing. We are moving from Conference Room to UnrealIRCd and i want to be able to forbid anyone not using my Java applet to be able to user the server.
I had planned on adding a version ban on * and then making a version ban except for my Javapplet, but i noticed there is no version ban except. The ban except itself also doesn't work for version except so thats not a way i can go i guess.
What your making now Theos, seems like something that could work, i'd love to be able to get that module, or possible a version except module. (Or the ban except to work with version bans)
I had planned on adding a version ban on * and then making a version ban except for my Javapplet, but i noticed there is no version ban except. The ban except itself also doesn't work for version except so thats not a way i can go i guess.
What your making now Theos, seems like something that could work, i'd love to be able to get that module, or possible a version except module. (Or the ban except to work with version bans)