2002-04-02 18:14:33 +00:00
|
|
|
.\"
|
2008-12-05 23:20:59 +00:00
|
|
|
.\" ngircd.conf(5) manual page template
|
2002-04-02 18:14:33 +00:00
|
|
|
.\"
|
2021-01-01 14:38:26 +00:00
|
|
|
.TH ngircd.conf 5 "Jan 2021" ngIRCd "ngIRCd Manual"
|
2002-04-02 18:14:33 +00:00
|
|
|
.SH NAME
|
2003-03-10 00:23:50 +00:00
|
|
|
ngircd.conf \- configuration file of ngIRCd
|
2002-04-02 18:14:33 +00:00
|
|
|
.SH SYNOPSIS
|
2006-12-25 16:13:26 +00:00
|
|
|
.B :ETCDIR:/ngircd.conf
|
2002-04-02 18:14:33 +00:00
|
|
|
.SH DESCRIPTION
|
2003-03-10 00:35:51 +00:00
|
|
|
.BR ngircd.conf
|
2005-08-12 13:20:54 +00:00
|
|
|
is the configuration file of the
|
2003-03-10 00:35:51 +00:00
|
|
|
.BR ngircd (8)
|
2011-06-25 12:58:12 +00:00
|
|
|
Internet Relay Chat (IRC) daemon, which must be customized to the local
|
2005-08-12 13:20:54 +00:00
|
|
|
preferences and needs.
|
2008-12-30 18:20:09 +00:00
|
|
|
.PP
|
|
|
|
Most variables can be modified while the ngIRCd daemon is already running:
|
2011-06-25 12:58:12 +00:00
|
|
|
It will reload its configuration file when a HUP signal or REHASH command
|
|
|
|
is received.
|
2003-03-10 00:58:06 +00:00
|
|
|
.SH "FILE FORMAT"
|
2003-03-10 00:23:50 +00:00
|
|
|
The file consists of sections and parameters. A section begins with the name
|
|
|
|
of the section in square brackets and continues until the next section
|
|
|
|
begins.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2003-03-10 00:23:50 +00:00
|
|
|
Sections contain parameters of the form
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2003-03-10 00:23:50 +00:00
|
|
|
.RS
|
|
|
|
.I name
|
|
|
|
=
|
|
|
|
.I value
|
|
|
|
.RE
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2005-08-12 13:20:54 +00:00
|
|
|
Empty lines and any line beginning with a semicolon (';') or a hash ('#')
|
2008-05-11 15:08:46 +00:00
|
|
|
character are treated as a comment and will be ignored. Leading and trailing
|
|
|
|
whitespaces are trimmed before any processing takes place.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2008-05-11 15:08:46 +00:00
|
|
|
The file format is line-based - that means, each non-empty newline-terminated
|
|
|
|
line represents either a comment, a section name, or a parameter.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2003-03-10 00:23:50 +00:00
|
|
|
Section and parameter names are not case sensitive.
|
2011-03-18 10:15:48 +00:00
|
|
|
.PP
|
|
|
|
There are three types of variables:
|
|
|
|
.I booleans,
|
|
|
|
.I text strings,
|
|
|
|
and
|
|
|
|
.I numbers.
|
|
|
|
Boolean values are
|
|
|
|
.I true
|
|
|
|
if they are "yes", "true", or any non-null integer. Text strings are used 1:1
|
2011-06-25 12:58:12 +00:00
|
|
|
without leading and following spaces; there is no way to quote strings. And
|
2011-03-18 10:15:48 +00:00
|
|
|
for numbers all decimal integer values are valid.
|
|
|
|
.PP
|
|
|
|
In addition, some string or numerical variables accept lists of values,
|
|
|
|
separated by commas (",").
|
2003-03-10 00:58:06 +00:00
|
|
|
.SH "SECTION OVERVIEW"
|
2011-06-25 22:09:36 +00:00
|
|
|
The file can contain blocks of seven types: [Global], [Limits], [Options],
|
|
|
|
[SSL], [Operator], [Server], and [Channel].
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2008-05-11 15:08:46 +00:00
|
|
|
The main configuration of the server is stored in the
|
2003-03-10 00:23:50 +00:00
|
|
|
.I [Global]
|
2011-06-25 12:58:12 +00:00
|
|
|
section, like the server name, administrative information and the ports on
|
|
|
|
which the server should be listening. The variables in this section have to be
|
|
|
|
adjusted to the local requirements most of the time, whereas all the variables
|
2014-01-19 14:32:20 +00:00
|
|
|
in the other sections can be left on their defaults very often.
|
2011-06-25 12:58:12 +00:00
|
|
|
.PP
|
|
|
|
Options in the
|
|
|
|
.I [Limits]
|
|
|
|
block are used to tweak different limits and timeouts of the daemon, like the
|
|
|
|
maximum number of clients allowed to connect to this server. Variables in the
|
|
|
|
.I [Options]
|
|
|
|
section can be used to enable or disable specific features of ngIRCd, like
|
2011-06-25 22:09:36 +00:00
|
|
|
support for IDENT, PAM, IPv6, and protocol and cloaking features. The
|
|
|
|
.I [SSL]
|
|
|
|
block contains all SSL-related configuration variables. These three sections
|
|
|
|
are all optional.
|
2011-06-25 12:58:12 +00:00
|
|
|
.PP
|
|
|
|
IRC operators of this server are defined in
|
2003-03-10 00:23:50 +00:00
|
|
|
.I [Operator]
|
2011-06-25 12:58:12 +00:00
|
|
|
blocks. Links to remote servers are configured in
|
2003-03-10 00:23:50 +00:00
|
|
|
.I [Server]
|
2011-06-25 12:58:12 +00:00
|
|
|
sections. And
|
2003-03-10 00:23:50 +00:00
|
|
|
.I [Channel]
|
|
|
|
blocks are used to configure pre-defined ("persistent") IRC channels.
|
2005-06-04 13:39:20 +00:00
|
|
|
.PP
|
2011-06-25 12:58:12 +00:00
|
|
|
There can be more than one [Operator], [Server] and [Channel] section per
|
2014-01-19 14:32:20 +00:00
|
|
|
configuration file, one for each operator, server, and channel. [Global],
|
2017-01-07 14:50:58 +00:00
|
|
|
[Limits], [Options], and [SSL] sections can occur multiple times, too, but
|
2014-01-19 14:32:20 +00:00
|
|
|
each variable overwrites itself, only the last assignment is relevant.
|
2003-03-10 00:23:50 +00:00
|
|
|
.SH [GLOBAL]
|
|
|
|
The
|
|
|
|
.I [Global]
|
2014-01-19 14:32:20 +00:00
|
|
|
section is used to define the main configuration of the server,
|
2011-06-25 12:58:12 +00:00
|
|
|
like the server name and the ports on which the server should be listening.
|
|
|
|
These settings depend on your personal preferences, so you should make sure
|
|
|
|
that they correspond to your installation and setup!
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBName\fR (string; required)
|
2008-12-30 18:20:09 +00:00
|
|
|
Server name in the IRC network. This is an individual name of the IRC
|
|
|
|
server, it is not related to the DNS host name. It must be unique in the
|
|
|
|
IRC network and must contain at least one dot (".") character.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBAdminInfo1\fR, \fBAdminInfo2\fR, \fBAdminEMail\fR (string)
|
2003-03-10 00:23:50 +00:00
|
|
|
Information about the server and the administrator, used by the ADMIN
|
2011-06-25 12:58:12 +00:00
|
|
|
command. This information is not required by the server but by RFC!
|
2008-09-13 13:10:08 +00:00
|
|
|
.TP
|
2012-12-31 20:03:23 +00:00
|
|
|
\fBHelpFile\fR (string)
|
|
|
|
Text file which contains the ngIRCd help text. This file is required
|
|
|
|
to display help texts when using the "HELP <cmd>" command.
|
2013-01-01 14:35:49 +00:00
|
|
|
Please note: Changes made to this file take effect when ngircd starts up
|
|
|
|
or is instructed to re-read its configuration file.
|
2012-12-31 20:03:23 +00:00
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBInfo\fR (string)
|
|
|
|
Info text of the server. This will be shown by WHOIS and LINKS requests for
|
|
|
|
example.
|
2008-09-13 13:10:08 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBListen\fR (list of strings)
|
2008-12-30 18:20:09 +00:00
|
|
|
A comma separated list of IP address on which the server should listen.
|
2009-01-01 16:56:42 +00:00
|
|
|
If unset, the defaults value is "0.0.0.0" or, if ngIRCd was compiled
|
2008-12-30 18:20:09 +00:00
|
|
|
with IPv6 support, "::,0.0.0.0". So the server listens on all configured
|
2008-05-18 22:12:41 +00:00
|
|
|
IP addresses and interfaces by default.
|
2003-09-11 12:05:28 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMotdFile\fR (string)
|
2011-06-25 12:58:12 +00:00
|
|
|
Text file with the "message of the day" (MOTD). This message will be shown to
|
|
|
|
all users connecting to the server. Please note: Changes made to this file
|
|
|
|
take effect when ngircd starts up or is instructed to re-read its
|
|
|
|
configuration file.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMotdPhrase\fR (string)
|
2019-01-03 12:44:28 +00:00
|
|
|
A simple Phrase (<127 chars) if you don't want to use a MOTD file.
|
2004-05-07 11:19:20 +00:00
|
|
|
.TP
|
2013-12-27 22:16:11 +00:00
|
|
|
\fBNetwork\fR (string)
|
|
|
|
The name of the IRC network to which this server belongs. This name is
|
|
|
|
optional, should only contain ASCII characters, and can't contain spaces.
|
|
|
|
It is only used to inform clients. The default is empty, so no network
|
|
|
|
name is announced to clients.
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBPassword\fR (string)
|
|
|
|
Global password for all users needed to connect to the server. The default is
|
|
|
|
empty, so no password is required. Please note: This feature is not available
|
|
|
|
if ngIRCd is using PAM!
|
|
|
|
.TP
|
|
|
|
\fBPidFile\fR (string)
|
|
|
|
This tells ngIRCd to write its current process ID to a file. Note that the
|
2014-01-19 14:32:20 +00:00
|
|
|
"PID file" is written AFTER chroot and switching the user ID, therefore the
|
|
|
|
directory the file resides in must be writable by the ngIRCd user and exist
|
|
|
|
in the chroot directory (if configured, see above).
|
2011-06-25 12:58:12 +00:00
|
|
|
.TP
|
|
|
|
\fBPorts\fR (list of numbers)
|
2014-01-19 14:32:20 +00:00
|
|
|
Port number(s) on which the server should listen for unencrypted connections.
|
|
|
|
There may be more than one port, separated with commas (","). Default: 6667.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBServerGID\fR (string or number)
|
2014-01-19 14:32:20 +00:00
|
|
|
Group ID under which the ngIRCd daemon should run; you can use the name of the
|
2003-03-10 00:23:50 +00:00
|
|
|
group or the numerical ID.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
|
|
|
.RS
|
2003-03-10 00:23:50 +00:00
|
|
|
.B Attention:
|
2003-03-10 00:58:06 +00:00
|
|
|
.br
|
2011-06-25 12:58:12 +00:00
|
|
|
For this to work the server must have been started with root privileges!
|
2003-03-10 00:58:06 +00:00
|
|
|
.RE
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBServerUID\fR (string or number)
|
2014-01-19 14:32:20 +00:00
|
|
|
User ID under which the ngIRCd daemon should run; you can use the name of the
|
|
|
|
user or the numerical ID.
|
2004-05-07 11:19:20 +00:00
|
|
|
.PP
|
|
|
|
.RS
|
|
|
|
.B Attention:
|
|
|
|
.br
|
2011-06-25 12:58:12 +00:00
|
|
|
For this to work the server must have been started with root privileges! In
|
|
|
|
addition, the configuration and MOTD files must be readable by this user,
|
|
|
|
otherwise RESTART and REHASH won't work!
|
2005-02-14 00:42:41 +00:00
|
|
|
.RE
|
2011-06-25 12:58:12 +00:00
|
|
|
.SH [LIMITS]
|
2014-01-19 14:32:20 +00:00
|
|
|
This section is used to define some limits and timeouts for this ngIRCd
|
|
|
|
instance. Default values should be safe, but it is wise to double-check :-)
|
2003-05-02 20:51:42 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBConnectRetry\fR (number)
|
2003-03-10 00:23:50 +00:00
|
|
|
The server tries every <ConnectRetry> seconds to establish a link to not yet
|
|
|
|
(or no longer) connected servers. Default: 60.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2013-02-04 22:15:53 +00:00
|
|
|
\fBIdleTimeout\fR (number)
|
|
|
|
Number of seconds after which the whole daemon should shutdown when no
|
|
|
|
connections are left active after handling at least one client (0: never). This
|
|
|
|
can be useful for testing or when ngIRCd is started using "socket activation"
|
|
|
|
with systemd(8), for example. Default: 0.
|
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMaxConnections\fR (number)
|
2008-11-12 00:23:33 +00:00
|
|
|
Maximum number of simultaneous in- and outbound connections the server is
|
|
|
|
allowed to accept (0: unlimited). Default: 0.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMaxConnectionsIP\fR (number)
|
2003-11-05 21:41:01 +00:00
|
|
|
Maximum number of simultaneous connections from a single IP address that
|
2007-10-13 20:45:11 +00:00
|
|
|
the server will accept (0: unlimited). This configuration options lowers
|
2003-11-05 21:41:01 +00:00
|
|
|
the risk of denial of service attacks (DoS). Default: 5.
|
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMaxJoins\fR (number)
|
2007-10-13 20:45:11 +00:00
|
|
|
Maximum number of channels a user can be member of (0: no limit).
|
2003-03-10 00:23:50 +00:00
|
|
|
Default: 10.
|
2007-11-21 12:16:33 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMaxNickLength\fR (number)
|
2012-11-02 13:30:19 +00:00
|
|
|
Maximum length of an user nickname (Default: 9, as in RFC 2812). Please
|
|
|
|
note that all servers in an IRC network MUST use the same maximum nickname
|
2007-11-21 12:16:33 +00:00
|
|
|
length!
|
2011-03-16 22:44:00 +00:00
|
|
|
.TP
|
2018-11-28 13:13:09 +00:00
|
|
|
\fBMaxPenaltyTime\fR (number)
|
|
|
|
Maximum penalty time increase in seconds, per penalty event. Set to -1 for no
|
|
|
|
limit (the default), 0 to disable penalties altogether. ngIRCd doesn't use
|
|
|
|
penalty increases higher than 2 seconds during normal operation, so values
|
|
|
|
greater than 1 rarely make sense.
|
|
|
|
.TP
|
2012-10-28 19:36:58 +00:00
|
|
|
\fBMaxListSize\fR (number)
|
|
|
|
Maximum number of channels returned in response to a LIST command. Default: 100.
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBPingTimeout\fR (number)
|
|
|
|
After <PingTimeout> seconds of inactivity the server will send a PING to
|
|
|
|
the peer to test whether it is alive or not. Default: 120.
|
2011-03-27 18:40:28 +00:00
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBPongTimeout\fR (number)
|
|
|
|
If a client fails to answer a PING with a PONG within <PongTimeout>
|
|
|
|
seconds, it will be disconnected by the server. Default: 20.
|
|
|
|
.SH [OPTIONS]
|
|
|
|
Optional features and configuration options to further tweak the behavior of
|
2014-01-19 14:32:20 +00:00
|
|
|
ngIRCd are configured in this section. If you want to get started quickly, you
|
|
|
|
most probably don't have to make changes here -- they are all optional.
|
2011-06-25 12:58:12 +00:00
|
|
|
.TP
|
2013-08-04 01:06:53 +00:00
|
|
|
\fBAllowedChannelTypes\fR (string)
|
|
|
|
List of allowed channel types (channel prefixes) for newly created channels
|
|
|
|
on the local server. By default, all supported channel types are allowed.
|
|
|
|
Set this variable to the empty string to disallow creation of new channels
|
|
|
|
by local clients at all. Default: #&+
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBAllowRemoteOper\fR (boolean)
|
2014-01-19 14:32:20 +00:00
|
|
|
If this option is active, IRC operators connected to remote servers are allowed
|
|
|
|
to control this local server using administrative commands, for example like
|
|
|
|
CONNECT, DIE, SQUIT etc. Default: no.
|
2011-06-25 12:58:12 +00:00
|
|
|
.TP
|
|
|
|
\fBChrootDir\fR (string)
|
|
|
|
A directory to chroot in when everything is initialized. It doesn't need
|
|
|
|
to be populated if ngIRCd is compiled as a static binary. By default ngIRCd
|
|
|
|
won't use the chroot() feature.
|
|
|
|
.PP
|
|
|
|
.RS
|
|
|
|
.B Attention:
|
|
|
|
.br
|
|
|
|
For this to work the server must have been started with root privileges!
|
|
|
|
.RE
|
2011-03-27 18:34:44 +00:00
|
|
|
.TP
|
2011-03-27 18:45:29 +00:00
|
|
|
\fBCloakHost\fR (string)
|
2011-03-16 22:44:00 +00:00
|
|
|
Set this hostname for every client instead of the real one. Default: empty,
|
2012-08-02 17:44:40 +00:00
|
|
|
don't change. Use %x to add the hashed value of the original hostname.
|
2011-03-16 22:44:00 +00:00
|
|
|
.TP
|
2012-06-09 00:04:50 +00:00
|
|
|
\fBCloakHostModeX\fR (string)
|
|
|
|
Use this hostname for hostname cloaking on clients that have the user mode
|
|
|
|
"+x" set, instead of the name of the server. Default: empty, use the name
|
2012-08-02 11:53:46 +00:00
|
|
|
of the server. Use %x to add the hashed value of the original hostname
|
|
|
|
.TP
|
2012-08-02 17:44:40 +00:00
|
|
|
\fBCloakHostSalt\fR (string)
|
|
|
|
The Salt for cloaked hostname hashing. When undefined a random hash is
|
|
|
|
generated after each server start.
|
2012-06-09 00:04:50 +00:00
|
|
|
.TP
|
2011-03-27 18:45:29 +00:00
|
|
|
\fBCloakUserToNick\fR (boolean)
|
2015-05-15 21:15:09 +00:00
|
|
|
Set every clients' user name and real name to their nickname and hide the one
|
|
|
|
supplied by the IRC client. Default: no.
|
2011-06-25 12:58:12 +00:00
|
|
|
.TP
|
|
|
|
\fBConnectIPv4\fR (boolean)
|
|
|
|
Set this to no if you do not want ngIRCd to connect to other IRC servers using
|
|
|
|
the IPv4 protocol. This allows the usage of ngIRCd in IPv6-only setups.
|
|
|
|
Default: yes.
|
|
|
|
.TP
|
|
|
|
\fBConnectIPv6\fR (boolean)
|
|
|
|
Set this to no if you do not want ngIRCd to connect to other IRC servers using
|
|
|
|
the IPv6 protocol.
|
|
|
|
Default: yes.
|
|
|
|
.TP
|
2013-08-26 19:17:10 +00:00
|
|
|
\fBDefaultUserModes\fR (string)
|
|
|
|
Default user mode(s) to set on new local clients. Please note that only modes
|
2014-03-18 15:43:21 +00:00
|
|
|
can be set that the client could set using regular MODE commands, you can't
|
|
|
|
set "a" (away) for example!
|
2013-08-26 19:17:10 +00:00
|
|
|
Default: none.
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBDNS\fR (boolean)
|
|
|
|
If set to false, ngIRCd will not make any DNS lookups when clients connect.
|
|
|
|
If you configure the daemon to connect to other servers, ngIRCd may still
|
|
|
|
perform a DNS lookup if required.
|
|
|
|
Default: yes.
|
|
|
|
.TP
|
|
|
|
\fBIdent\fR (boolean)
|
|
|
|
If ngIRCd is compiled with IDENT support this can be used to disable IDENT
|
|
|
|
lookups at run time.
|
2012-01-01 16:12:36 +00:00
|
|
|
Users identified using IDENT are registered without the "~" character
|
|
|
|
prepended to their user name.
|
2011-06-25 12:58:12 +00:00
|
|
|
Default: yes.
|
|
|
|
.TP
|
2013-05-24 20:29:41 +00:00
|
|
|
\fBIncludeDir\fR (string)
|
|
|
|
Directory containing configuration snippets (*.conf), that should be read in
|
|
|
|
after parsing the current configuration file.
|
|
|
|
Default: none.
|
2014-01-19 14:32:20 +00:00
|
|
|
.TP
|
2011-06-19 04:08:33 +00:00
|
|
|
\fBMorePrivacy\fR (boolean)
|
|
|
|
This will cause ngIRCd to censor user idle time, logon time as well as the
|
2015-05-13 20:42:51 +00:00
|
|
|
PART/QUIT messages (that are sometimes used to inform everyone about which
|
|
|
|
client software is being used). WHOWAS requests are also silently ignored,
|
|
|
|
and NAMES output doesn't list any clients for non-members.
|
2011-06-19 04:08:33 +00:00
|
|
|
This option is most useful when ngIRCd is being used together with
|
|
|
|
anonymizing software such as TOR or I2P and one does not wish to make it
|
|
|
|
too easy to collect statistics on the users.
|
|
|
|
Default: no.
|
|
|
|
.TP
|
2015-07-14 13:43:19 +00:00
|
|
|
\fBNoticeBeforeRegistration\fR (boolean)
|
2011-06-25 12:58:12 +00:00
|
|
|
Normally ngIRCd doesn't send any messages to a client until it is registered.
|
2015-07-14 13:37:42 +00:00
|
|
|
Enable this option to let the daemon send "NOTICE *" messages to clients
|
2011-06-25 12:58:12 +00:00
|
|
|
while connecting. Default: no.
|
|
|
|
.TP
|
|
|
|
\fBOperCanUseMode\fR (boolean)
|
|
|
|
Should IRC Operators be allowed to use the MODE command even if they are
|
|
|
|
not(!) channel-operators? Default: no.
|
|
|
|
.TP
|
2012-09-25 11:08:39 +00:00
|
|
|
\fBOperChanPAutoOp\fR (boolean)
|
|
|
|
Should IRC Operators get AutoOp (+o) in persistent (+P) channels?
|
|
|
|
Default: yes.
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBOperServerMode\fR (boolean)
|
|
|
|
If \fBOperCanUseMode\fR is enabled, this may lead the compatibility problems
|
|
|
|
with Servers that run the ircd-irc2 Software. This Option "masks" mode
|
|
|
|
requests by non-chanops as if they were coming from the server. Default: no;
|
|
|
|
only enable it if you have ircd-irc2 servers in your IRC network.
|
|
|
|
.TP
|
|
|
|
\fBPAM\fR (boolean)
|
|
|
|
If ngIRCd is compiled with PAM support this can be used to disable all calls
|
|
|
|
to the PAM library at runtime; all users connecting without password are
|
|
|
|
allowed to connect, all passwords given will fail.
|
2012-01-01 16:12:36 +00:00
|
|
|
Users identified using PAM are registered without the "~" character
|
|
|
|
prepended to their user name.
|
2011-06-25 12:58:12 +00:00
|
|
|
Default: yes.
|
|
|
|
.TP
|
2012-01-01 16:12:36 +00:00
|
|
|
\fBPAMIsOptional\fR (boolean)
|
|
|
|
When PAM is enabled, all clients are required to be authenticated using PAM;
|
|
|
|
connecting to the server without successful PAM authentication isn't possible.
|
|
|
|
If this option is set, clients not sending a password are still allowed to
|
|
|
|
connect: they won't become "identified" and keep the "~" character prepended
|
|
|
|
to their supplied user name.
|
|
|
|
Please note:
|
|
|
|
To make some use of this behavior, it most probably isn't useful to enable
|
|
|
|
"Ident", "PAM" and "PAMIsOptional" at the same time, because you wouldn't be
|
|
|
|
able to distinguish between Ident'ified and PAM-authenticated users: both
|
|
|
|
don't have a "~" character prepended to their respective user names!
|
|
|
|
Default: no.
|
|
|
|
.TP
|
2016-06-05 10:46:56 +00:00
|
|
|
\fBPAMServiceName\fR (string)
|
|
|
|
When PAM is enabled, this value determines the used PAM configuration.
|
2019-01-28 09:45:53 +00:00
|
|
|
This setting allows running multiple ngIRCd instances with different
|
2016-06-05 10:46:56 +00:00
|
|
|
PAM configurations on each instance. If you set it to "ngircd-foo",
|
|
|
|
PAM will use /etc/pam.d/ngircd-foo instead of the default
|
|
|
|
/etc/pam.d/ngircd.
|
|
|
|
Default: ngircd.
|
|
|
|
.TP
|
2011-06-25 12:58:12 +00:00
|
|
|
\fBRequireAuthPing\fR (boolean)
|
|
|
|
Let ngIRCd send an "authentication PING" when a new client connects, and
|
|
|
|
register this client only after receiving the corresponding "PONG" reply.
|
|
|
|
Default: no.
|
|
|
|
.TP
|
2010-06-19 04:08:33 +00:00
|
|
|
\fBScrubCTCP\fR (boolean)
|
|
|
|
If set to true, ngIRCd will silently drop all CTCP requests sent to it from
|
|
|
|
both clients and servers. It will also not forward CTCP requests to any
|
|
|
|
other servers. CTCP requests can be used to query user clients about which
|
2011-06-28 11:12:06 +00:00
|
|
|
software they are using and which versions said software is. CTCP can also be
|
2010-06-19 04:08:33 +00:00
|
|
|
used to reveal clients IP numbers. ACTION CTCP requests are not blocked,
|
|
|
|
this means that /me commands will not be dropped, but please note that
|
|
|
|
blocking CTCP will disable file sharing between users!
|
|
|
|
Default: no.
|
|
|
|
.TP
|
2011-06-25 22:09:36 +00:00
|
|
|
\fBSyslogFacility\fR (string)
|
|
|
|
Syslog "facility" to which ngIRCd should send log messages. Possible
|
|
|
|
values are system dependent, but most probably "auth", "daemon", "user"
|
|
|
|
and "local1" through "local7" are possible values; see syslog(3).
|
|
|
|
Default is "local5" for historical reasons, you probably want to
|
|
|
|
change this to "daemon", for example.
|
|
|
|
.TP
|
|
|
|
\fBWebircPassword\fR (string)
|
|
|
|
Password required for using the WEBIRC command used by some Web-to-IRC
|
|
|
|
gateways. If not set or empty, the WEBIRC command can't be used.
|
|
|
|
Default: not set.
|
|
|
|
.SH [SSL]
|
|
|
|
All SSL-related configuration variables are located in the
|
|
|
|
.I [SSL]
|
|
|
|
section. Please note that this whole section is only recognized by ngIRCd
|
|
|
|
when it is compiled with support for SSL using OpenSSL or GnuTLS!
|
|
|
|
.TP
|
2011-06-28 11:21:38 +00:00
|
|
|
\fBCertFile\fR (string)
|
2011-06-25 12:58:12 +00:00
|
|
|
SSL Certificate file of the private server key.
|
|
|
|
.TP
|
2013-09-15 13:09:36 +00:00
|
|
|
\fBCipherList\fR (string)
|
2013-09-17 15:16:51 +00:00
|
|
|
Select cipher suites allowed for SSL/TLS connections. This defaults to
|
2014-10-16 11:42:24 +00:00
|
|
|
"HIGH:!aNULL:@STRENGTH:!SSLv3" (OpenSSL) or "SECURE128:-VERS-SSL3.0" (GnuTLS).
|
2013-09-15 15:57:41 +00:00
|
|
|
Please see 'man 1ssl ciphers' (OpenSSL) and 'man 3 gnutls_priority_init'
|
|
|
|
(GnuTLS) for details.
|
2013-09-15 13:09:36 +00:00
|
|
|
.TP
|
2011-06-28 11:21:38 +00:00
|
|
|
\fBDHFile\fR (string)
|
2011-06-25 12:58:12 +00:00
|
|
|
Name of the Diffie-Hellman Parameter file. Can be created with GnuTLS
|
|
|
|
"certtool \-\-generate-dh-params" or "openssl dhparam". If this file is not
|
|
|
|
present, it will be generated on startup when ngIRCd was compiled with GnuTLS
|
|
|
|
support (this may take some time). If ngIRCd was compiled with OpenSSL, then
|
|
|
|
(Ephemeral)-Diffie-Hellman Key Exchanges and several Cipher Suites will not be
|
|
|
|
available.
|
|
|
|
.TP
|
2011-06-28 11:21:38 +00:00
|
|
|
\fBKeyFile\fR (string)
|
2011-06-25 12:58:12 +00:00
|
|
|
Filename of SSL Server Key to be used for SSL connections. This is required
|
|
|
|
for SSL/TLS support.
|
|
|
|
.TP
|
2011-06-28 11:21:38 +00:00
|
|
|
\fBKeyFilePassword\fR (string)
|
2011-06-25 12:58:12 +00:00
|
|
|
OpenSSL only: Password to decrypt the private key file.
|
|
|
|
.TP
|
2011-06-28 11:21:38 +00:00
|
|
|
\fBPorts\fR (list of numbers)
|
2011-06-25 12:58:12 +00:00
|
|
|
Same as \fBPorts\fR , except that ngIRCd will expect incoming connections
|
|
|
|
to be SSL/TLS encrypted. Common port numbers for SSL-encrypted IRC are 6669
|
|
|
|
and 6697. Default: none.
|
2003-03-10 00:23:50 +00:00
|
|
|
.SH [OPERATOR]
|
|
|
|
.I [Operator]
|
|
|
|
sections are used to define IRC Operators. There may be more than one
|
|
|
|
.I [Operator]
|
|
|
|
block, one for each local operator.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBName\fR (string)
|
2012-11-02 13:30:19 +00:00
|
|
|
ID of the operator (may be different of the nickname).
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBPassword\fR (string)
|
2003-03-10 00:23:50 +00:00
|
|
|
Password of the IRC operator.
|
2005-03-02 16:07:30 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMask\fR (string)
|
2005-03-02 16:07:30 +00:00
|
|
|
Mask that is to be checked before an /OPER for this account is accepted.
|
|
|
|
Example: nick!ident@*.example.com
|
2003-03-10 00:23:50 +00:00
|
|
|
.SH [SERVER]
|
|
|
|
Other servers are configured in
|
|
|
|
.I [Server]
|
2003-03-10 00:35:51 +00:00
|
|
|
sections. If you configure a port for the connection, then this ngIRCd
|
2019-07-21 14:23:07 +00:00
|
|
|
tries to connect to the other server on the given port (active);
|
2008-05-11 15:08:46 +00:00
|
|
|
if not, it waits for the other server to connect (passive).
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2008-05-11 15:08:46 +00:00
|
|
|
ngIRCd supports "server groups": You can assign an "ID" to every server
|
|
|
|
with which you want this ngIRCd to link, and the daemon ensures that at
|
|
|
|
any given time only one direct link exists to servers with the same ID.
|
|
|
|
So if a server of a group won't answer, ngIRCd tries to connect to the next
|
|
|
|
server in the given group (="with the same ID"), but never tries to connect
|
|
|
|
to more than one server of this group simultaneously.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2003-03-10 00:35:51 +00:00
|
|
|
There may be more than one
|
|
|
|
.I [Server]
|
|
|
|
block.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBName\fR (string)
|
2008-05-11 15:08:46 +00:00
|
|
|
IRC name of the remote server.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBHost\fR (string)
|
2008-05-11 15:08:46 +00:00
|
|
|
Internet host name (or IP address) of the peer.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBBind\fR (string)
|
2008-12-30 18:20:09 +00:00
|
|
|
IP address to use as source IP for the outgoing connection. Default is
|
2007-11-23 16:26:03 +00:00
|
|
|
to let the operating system decide.
|
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBPort\fR (number)
|
2008-05-11 15:08:46 +00:00
|
|
|
Port of the remote server to which ngIRCd should connect (active).
|
|
|
|
If no port is assigned to a configured server, the daemon only waits for
|
2008-12-30 18:20:09 +00:00
|
|
|
incoming connections (passive, default).
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBMyPassword\fR (string)
|
2003-03-10 00:23:50 +00:00
|
|
|
Own password for this connection. This password has to be configured as
|
2008-12-30 18:20:09 +00:00
|
|
|
\fBPeerPassword\fR on the other server. Must not have ':' as first character.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBPeerPassword\fR (string)
|
2003-03-10 00:23:50 +00:00
|
|
|
Foreign password for this connection. This password has to be configured as
|
2008-12-30 18:20:09 +00:00
|
|
|
\fBMyPassword\fR on the other server.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBGroup\fR (number)
|
2003-03-10 00:23:50 +00:00
|
|
|
Group of this server (optional).
|
2008-05-11 15:08:46 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBPassive\fR (boolean)
|
2007-06-28 05:15:12 +00:00
|
|
|
Disable automatic connection even if port value is specified. Default: false.
|
|
|
|
You can use the IRC Operator command CONNECT later on to create the link.
|
2008-08-16 00:56:21 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBSSLConnect\fR (boolean)
|
2009-05-16 23:22:18 +00:00
|
|
|
Connect to the remote server using TLS/SSL. Default: false.
|
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBServiceMask\fR (string)
|
2012-11-02 13:30:19 +00:00
|
|
|
Define a (case insensitive) list of masks matching nicknames that should be
|
2012-08-26 11:24:54 +00:00
|
|
|
treated as IRC services when introduced via this remote server, separated
|
|
|
|
by commas (","). REGULAR SERVERS DON'T NEED this parameter, so leave it empty
|
|
|
|
(which is the default).
|
2008-08-16 00:56:21 +00:00
|
|
|
.PP
|
|
|
|
.RS
|
|
|
|
When you are connecting IRC services which mask as a IRC server and which use
|
2008-12-30 18:20:09 +00:00
|
|
|
"virtual users" to communicate with, for example "NickServ" and "ChanServ",
|
2012-08-26 11:24:54 +00:00
|
|
|
you should set this parameter to something like "*Serv", "*Serv,OtherNick",
|
|
|
|
or "NickServ,ChanServ,XyzServ".
|
2003-03-10 00:35:51 +00:00
|
|
|
.SH [CHANNEL]
|
|
|
|
Pre-defined channels can be configured in
|
|
|
|
.I [Channel]
|
|
|
|
sections. Such channels are created by the server when starting up and even
|
|
|
|
persist when there are no more members left.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2003-03-10 00:23:50 +00:00
|
|
|
Persistent channels are marked with the mode 'P', which can be set and unset
|
|
|
|
by IRC operators like other modes on the fly.
|
2003-03-10 00:58:06 +00:00
|
|
|
.PP
|
2003-03-10 00:35:51 +00:00
|
|
|
There may be more than one
|
|
|
|
.I [Channel]
|
|
|
|
block.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBName\fR (string)
|
2008-12-30 18:20:09 +00:00
|
|
|
Name of the channel, including channel prefix ("#" or "&").
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBTopic\fR (string)
|
2008-05-11 15:08:46 +00:00
|
|
|
Topic for this channel.
|
2003-03-10 00:58:06 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBModes\fR (string)
|
2020-03-29 21:17:21 +00:00
|
|
|
Initial channel modes, as used in "MODE" commands. Modifying lists (ban list,
|
|
|
|
invite list, exception list) is supported.
|
|
|
|
.PP
|
|
|
|
.RS
|
|
|
|
This option can be specified multiple times, evaluated top to bottom.
|
|
|
|
.RE
|
2009-01-01 21:26:13 +00:00
|
|
|
.TP
|
2011-03-18 10:15:48 +00:00
|
|
|
\fBKeyFile\fR (string)
|
2009-01-01 21:26:13 +00:00
|
|
|
Path and file name of a "key file" containing individual channel keys for
|
|
|
|
different users. The file consists of plain text lines with the following
|
|
|
|
syntax (without spaces!):
|
|
|
|
.PP
|
|
|
|
.RS
|
|
|
|
.RS
|
|
|
|
.I user
|
|
|
|
:
|
|
|
|
.I nick
|
|
|
|
:
|
|
|
|
.I key
|
|
|
|
.RE
|
|
|
|
.PP
|
|
|
|
.I user
|
|
|
|
and
|
|
|
|
.I nick
|
|
|
|
can contain the wildcard character "*".
|
|
|
|
.br
|
|
|
|
.I key
|
|
|
|
is an arbitrary password.
|
|
|
|
.PP
|
|
|
|
Valid examples are:
|
|
|
|
.PP
|
|
|
|
.RS
|
|
|
|
*:*:KeY
|
|
|
|
.br
|
|
|
|
*:nick:123
|
|
|
|
.br
|
|
|
|
~user:*:xyz
|
|
|
|
.RE
|
|
|
|
.PP
|
|
|
|
The key file is read on each JOIN command when this channel has a key
|
|
|
|
(channel mode +k). Access is granted, if a) the channel key set using the
|
|
|
|
MODE +k command or b) one of the lines in the key file match.
|
|
|
|
.PP
|
|
|
|
.B Please note:
|
|
|
|
.br
|
|
|
|
The file is not reopened on each access, so you can modify and overwrite it
|
|
|
|
without problems, but moving or deleting the file will have not effect until
|
|
|
|
the daemon re-reads its configuration!
|
|
|
|
.RE
|
2003-03-10 00:35:51 +00:00
|
|
|
.SH HINTS
|
2008-11-21 20:31:29 +00:00
|
|
|
It's wise to use "ngircd \-\-configtest" to validate the configuration file
|
2003-03-10 00:35:51 +00:00
|
|
|
after changing it. See
|
|
|
|
.BR ngircd (8)
|
|
|
|
for details.
|
2002-04-02 18:14:33 +00:00
|
|
|
.SH AUTHOR
|
2010-12-01 21:04:01 +00:00
|
|
|
Alexander Barton, <alex@barton.de>
|
2002-04-02 20:44:27 +00:00
|
|
|
.br
|
2010-12-01 21:04:01 +00:00
|
|
|
Florian Westphal, <fw@strlen.de>
|
|
|
|
.PP
|
|
|
|
Homepage: http://ngircd.barton.de/
|
2002-04-02 18:14:33 +00:00
|
|
|
.SH "SEE ALSO"
|
|
|
|
.BR ngircd (8)
|
2002-04-02 20:19:22 +00:00
|
|
|
.\"
|
2002-04-02 18:14:33 +00:00
|
|
|
.\" -eof-
|