===================================================================
RCS file: /home/cmunk/ircsystems/cvsroot/unreal/Changes,v
retrieving revision 1.1.1.1.2.1.2.1.2.2349
diff -u -r1.1.1.1.2.1.2.1.2.2349 Changes
--- Changes 15 Apr 2007 22:42:35 -0000 1.1.1.1.2.1.2.1.2.2349
+++ Changes 16 Apr 2007 06:36:23 -0000
@@ -1574,3 +1574,5 @@
- Fixed#0003171 reported by danieldg (typo)
- #0003118 reported by vonitsanet (typo in ADDOMOTD), fixed by WolfSage
- #0003272 reported and fixed by WolfSage (addmotd, addomotd in help.conf)
+- #0003274 reported by Stealth regarding using actual nick and not given
+ nick in SAPART
===================================================================
RCS file: /home/cmunk/ircsystems/cvsroot/unreal/Changes,v
retrieving revision 1.1.1.1.2.1.2.1.2.2346
diff -u -r1.1.1.1.2.1.2.1.2.2346 Changes
--- Changes 15 Apr 2007 15:34:42 -0000 1.1.1.1.2.1.2.1.2.2346
+++ Changes 15 Apr 2007 21:29:27 -0000
@@ -1568,4 +1568,7 @@
- Patch to remove lusers.c and change from bzero to memset in ircd.c
by w00t
- Patch to remove curses leftover (I am going to assume SIGWINCH isn't a
- problem) by w00t
\ No newline at end of file
+ problem) by w00t
+- Fixed#0003002 reported by DelGurth, fixed by WolfSage regarding trailing \'s in
+MOTDs
+- Fixed#0003171 reported by danieldg (typo)
===================================================================
RCS file: /home/cmunk/ircsystems/cvsroot/unreal/Changes,v
retrieving revision 1.1.1.1.2.1.2.1.2.2343
diff -u -r1.1.1.1.2.1.2.1.2.2343 Changes
--- Changes 6 Apr 2007 22:17:27 -0000 1.1.1.1.2.1.2.1.2.2343
+++ Changes 15 Apr 2007 09:44:58 -0000
@@ -1546,3 +1546,23 @@
- Added include::bind-ip to bind an ip to download in case of having defined LIBCURL, suggested by djGrrr (#00003185).
- oper::from::userhost now accepts a CIDR address (eg *me@1.2.3.0/24), requested by djGrrr (#0003234).
- Corrected a couple of grammar errors in WebTV whois (/msg IRC WHOIS nick) output, reported by CuLpA (#0003244).
+- Implemented #0003254 - Auth type 'sslcertfingerprint-sha1', suggested by
+ djGrr. There are reservations regarding the security of this, but for most
+ purposes it should be okay. Cryptographically minded people may comment.
+ This may also be used to allow remote included opers with SSL certificate
+ fingerprints as we cannot as of yet remote include client certificates
+ (#0002832, suggested by Stealth)
+ Example use:
+ $ openssl x509 -in cert.pem -noout -sha1 -fingerprint
+ (where cert.pem is the oper's/server's/etc SSL client certificate)
+ SHA1 Fingerprint=FA:A6:A3:42:95:34:15:68:26:35:40:18:8D:50:68:D4:15:C8:12:9E
+
+ translating into this auth block:
+ password "FA:A6:A3:42:95:34:15:68:26:35:40:18:8D:50:68:D4:15:C8:12:9E" { sslcertfingerprint-sha1; };
+ (the auth code is case sensitive).
+
+ If anyone is interested in making a module for SSL client certificate
+ authentication for services, you can probably use the code in here to do it
+ quite simple.
+ .. please mind any errors, it's been years since I (Stskeeps) last committed to here :)
+
file descriptors being leaked upon every /REHASH.
So if you, for example, had 3 modules loaded and rehashed 30 times, it would cause
the ircd to consume 60 useless file descriptors (which often means 60 less file
descriptors being available to clients).
new commands SVSNOLAG/SVS2NOLAG (syntax: SVSNOLAG [+|-] NickName). Obviously, care
should be taken when giving such access to a user since he/she will be able to flood
at full speed and could possibly take down the entire IRCd (well, everyone on it).
Suggested by avb, coded by djGrrr.
instead of always "*" in the 'is connecting from' line. Suggested and patch provided
by djGrrr (#0002888).
NOTE: This needs checking, this patch changed the 'unknown' stuff to ~.. doublecheck
the allow block and everything.. didn't we use unknown@ there sometimes? I'll leave this
to someone else...
- DOMAINNAME is removed from ./Config reported by satmd (#0003063).
- THROTTLING and FAST_BADWORD_REPLACE cannot be configured in config.h reported by raymondvrolijk (#0002937).
- /sqline supports sqlining for channels. #*ble* will forbid channels and *ble* will forbid only nicks (not channels).
Forbid message showed by numeric ERR_FORBIDDENCHANNEL (448) reported by aragon and Jase (#0000935, #0003012).
- conf_deny NOTICE message is replace by ERR_FORBIDDENCHANNEL.
- Fixed bug where omitting class::connfreq would result in a huge connection attempt
flood when autoconnect was enabled. We now set class::connfreq to 60 if it's not
specified. Reported by Milliways (#0003018).
(#0003113).
- Made SAPART work for mulitple channels, just like SAJOIN. Patch provided by Bock
(#0003064). This also fixes SAPART now being announced to all opers globally, just
like SAJOIN.
- Finally fixed /RESTART issue on windows for good, should now always restart correctly.
Patch provided by BuHHunyx and Bock (#0002734).
- Fixed set::dns::bind-ip directive seen as duplicate, reported by aegis (#0003074).
- set::dns::* block is now no longer mandatory. All info has always been read from
/etc/resolv.conf (*NIX) or the registry (Win32), and the set::dns block is ignored
(except for set::dns::bind-ip, but that's a special case). Suggested by many including
djGrrr to make things slightly more logical (#0003019).
- As a consequence of the above, set::dns blocks were removed from doc/example*conf.
- Added two more characters to Catalan charset, reported by rmh (#0002995).
- Added set::pingpong-warning [yes|no] which decides whether to send the "** If you are
having problems connecting due to ping timeouts, please type /quote pong .." message
to each client when NOSPOOF is enabled (usually on Win32). The default is NO.
Previously this message was always sent if NOSPOOF was on, which often caused
confusion among users. The message was intended for non-confirming clients, but these
should be fixed by now, and those that were not fixed (self-made bots/etc) did often
not understand the message anyway. Anyway, you can still turn it on ;). (#2680).