1 ########################################################################
3 # ___ ___ ____ ____ _ #
4 # |_ _|_ __ ___ _ __|_ _| _ \ / ___|__| | #
5 # | || '_ \/ __| '_ \| || |_) | | / _` | #
6 # | || | | \__ \ |_) | || _ <| |__| (_| | #
7 # |___|_| |_|___/ .__/___|_| \_\\____\__,_| #
10 # / ___|___ _ __ / _(_) __ _ _ _ _ __ __ _| |_(_) ___ _ __ #
11 # | | / _ \| '_ \| |_| |/ _` | | | | '__/ _` | __| |/ _ \| '_ \ #
12 # | |__| (_) | | | | _| | (_| | |_| | | | (_| | |_| | (_) | | | | #
13 # \____\___/|_| |_|_| |_|\__, |\__,_|_| \__,_|\__|_|\___/|_| |_| #
16 ##################################||####################################
18 ##################################||####################################
20 # This is an example of the config file for InspIRCd. #
21 # Change the options to suit your network. #
24 # ____ _ _____ _ _ ____ _ _ _ #
25 # | _ \ ___ __ _ __| | |_ _| |__ (_)___ | __ )(_) |_| | #
26 # | |_) / _ \/ _` |/ _` | | | | '_ \| / __| | _ \| | __| | #
27 # | _ < __/ (_| | (_| | | | | | | | \__ \ | |_) | | |_|_| #
28 # |_| \_\___|\__,_|\__,_| |_| |_| |_|_|___/ |____/|_|\__(_) #
30 # Lines prefixed with READ THIS BIT, as shown above, are IMPORTANT #
31 # lines, and you REALLY SHOULD READ THEM. Yes, THIS MEANS YOU. Even #
32 # if you've configured InspIRCd before, these probably indicate #
33 # something new or different to this version and you SHOULD READ IT. #
35 ########################################################################
37 #-#-#-#-#-#-#-#-#-# CONFIGURATION FORMAT #-#-#-#-#-#-#-#-#-#-#-#-#-#-
39 # In order to maintain compatibility with older configuration files, #
40 # you can change the configuration parser to parse as it did in #
41 # previous releases. When using the "compat" format, you need to use #
42 # C++ escape sequences (e.g. \n) instead of XML ones (e.g. &nl;) and #
43 # can not use <define> to create macros. #
44 #<config format="compat">
46 #-#-#-#-#-#-#-#-#-# INCLUDE CONFIGURATION #-#-#-#-#-#-#-#-#-#-#-#-#-#
48 # This optional tag allows you to include another config file #
49 # allowing you to keep your configuration tidy. The configuration #
50 # file you include will be treated as part of the configuration file #
51 # which includes it, in simple terms the inclusion is transparent. #
53 # All paths to config files are relative to the config directory. #
55 # You may also include an executable file, in which case if you do so #
56 # the output of the executable on the standard output will be added #
57 # to your config at the point of the include tag. #
59 # Syntax is as follows: #
60 #<include file="file.conf"> #
61 #<include directory="modules"> #
62 #<include executable="/path/to/executable parameters"> #
64 # Executable include example: #
65 #<include executable="/usr/bin/wget -q -O - https://example.com/inspircd.conf">
69 #-#-#-#-#-#-#-#-#-#-#-# VARIABLE DEFINITIONS -#-#-#-#-#-#-#-#-#-#-#-#
71 # You can define variables that will be substituted later in the #
72 # configuration file. This can be useful to allow settings to be #
73 # easily changed, or to parameterize a remote includes. #
75 # Variables may be redefined and may reference other variables. #
76 # Value expansion happens at the time the tag is read. #
77 <define name="bindip" value="1.2.2.3">
78 <define name="localips" value="&bindip;/24">
80 #-#-#-#-#-#-#-#-#-#-#-#- SERVER DESCRIPTION -#-#-#-#-#-#-#-#-#-#-#-#-
82 # Here is where you enter the information about your server. #
86 # name: Hostname of your server. Does not need to resolve, but
87 # does need to be correct syntax (something.somethingelse.tld).
88 name="penguin.omega.example.org"
90 # description: Server description. Spaces are allowed.
91 description="Waddle World"
93 # id: The SID to use for this server. This should not be uncommented
94 # unless there is a SID conflict. This must be three characters long.
95 # The first character must be a digit [0-9], the remaining two chars
96 # may be letters [A-Z] or digits.
99 # network: Network name given on connect to clients.
100 # Should be the same on all servers on the network.
104 #-#-#-#-#-#-#-#-#-#-#-#- ADMIN INFORMATION -#-#-#-#-#-#-#-#-#-#-#-#
106 # Describes the Server Administrator's real name (optionally), #
107 # nick, and email address. #
112 name="Johnny English"
114 # nick: Nickname (preferably what you use on the network)
117 # email: email address. Does not have to be valid
118 # but should be for the users to be able to contact you.
119 email="MI5@the.best.secret.agent">
122 #-#-#-#-#-#-#-#-#-#-#-#- PORT CONFIGURATION -#-#-#-#-#-#-#-#-#-#-#-
124 # Configure the port and address bindings here. #
127 # TLS (SSL) listener that binds on a TCP/IP endpoint:
129 # address: IP address to bind to if the box that you are hosting
130 # on has more than one IP, else the ircd will try to bind to all
131 # IP's on the box if this is not defined.
134 # port: Port for users or servers to be able to connect to.
135 # you can select multiple ports by separating them
136 # with a - character like the example below.
139 # type: Type of bind block this is. It can either be clients or
140 # servers. Whichever you select will be the only type able to connect
141 # to this bind section.
144 # ssl: If you want the port(s) in this bind tag to use TLS (SSL), set this
145 # to the name of a custom <sslprofile> tag that you have defined. See the
146 # docs page for the TLS (SSL) module you are using for more details:
148 # GnuTLS: https://docs.inspircd.org/3/modules/ssl_gnutls#sslprofile
149 # mbedTLS: https://docs.inspircd.org/3/modules/ssl_mbedtls#sslprofile
150 # OpenSSL: https://docs.inspircd.org/3/modules/ssl_openssl#sslprofile
152 # You will need to load the ssl_openssl module for OpenSSL, ssl_gnutls
153 # for GnuTLS and ssl_mbedtls for mbedTLS.
156 # defer: When this is non-zero, connections will not be handed over to
157 # the daemon from the operating system before data is ready.
158 # In Linux, the value indicates the time period we'll wait for a
159 # connection to come up with data. Don't set it too low!
160 # In BSD the value is ignored; only zero and non-zero is possible.
161 # Windows ignores this parameter completely.
162 # Note: This does not take effect on rehash.
163 # To change it on a running bind, you'll have to comment it out,
164 # rehash, comment it in and rehash again.
167 # free: When this is enabled the listener will be created regardless of
168 # whether the interface that provides the bind address is available. This
169 # is useful for if you are starting InspIRCd on boot when the server may
170 # not have brought the network interfaces up yet.
173 # Plaintext listener that binds on a TCP/IP endpoint:
174 <bind address="" port="6667" type="clients">
177 # Listener that binds on a UNIX endpoint (not supported on Windows):
180 # path: The location to store the UNIX socket
181 #path="/tmp/inspircd.sock"
183 # type: Type of bind block this is. It can either be clients or
184 # servers. Whichever you select will be the only type able to connect
185 # to this bind section.
188 # permissions: The octal permissions to set on the UNIX socket after it has
189 # been created. If you are not familiar with octal permissions you should
190 # not define this or refer to http://permissions-calculator.org for help.
191 # Note: This does not take effect on rehash.
192 # To change it on a running bind, you'll have to comment it out,
193 # rehash, comment it in and rehash again.
196 # replace: if the UNIX socket path already exists then remove it before
197 # attempting to create the new one. This is strongly recommended as it
198 # allows InspIRCd to create sockets in cases where it previously did not
199 # shut down cleanly and left a zombie socket behind.
203 # Listener accepting HTML5 WebSocket connections.
204 # Requires the websocket module and SHA-1 hashing support (provided by the sha1
206 #<bind address="" port="7002" type="clients" hook="websocket">
209 # You can define a custom <sslprofile> tag which defines the TLS (SSL) configuration
210 # for these listeners. See the docs page for the TLS (SSL) module you are using for
213 # Alternatively, you can use one of the default TLS (SSL) profiles which are created
214 # when you have not defined any:
215 # "openssl" (requires the ssl_openssl module)
216 # "gnutls" (requires the ssl_gnutls module)
217 # "mbedtls" (requires the ssl_mbedtls module)
219 # When linking servers, the OpenSSL, GnuTLS, and mbedTLS implementations are
220 # completely link-compatible and can be used alongside each other on each end
221 # of the link without any significant issues.
224 #-#-#-#-#-#-#-#-#-#- CONNECTIONS CONFIGURATION -#-#-#-#-#-#-#-#-#-#-#
226 # This is where you can configure which connections are allowed #
227 # and denied access onto your server. The password is optional. #
228 # You may have as many of these as you require. To allow/deny all #
229 # connections, use a '*' or 0.0.0.0/0. #
231 # -- It is important to note that connect tags are read from the -- #
232 # TOP DOWN. This means that you should have more specific deny #
233 # and allow tags at the top, progressively more general, followed #
234 # by a <connect allow="*"> (should you wish to have one). #
236 # Connect blocks are searched twice for each user - once when the TCP #
237 # connection is accepted, and once when the user completes their #
238 # registration. Most of the information (hostname, ident response, #
239 # password, TLS (SSL) when using STARTTLS, etc) is only available #
240 # during the second search. If you are trying to make a closed server #
241 # you will probably need a connect block just for user registration. #
242 # This can be done by using <connect registered="no"> #
244 # To enable IRCCloud on your network uncomment this:
245 #<include file="examples/providers/irccloud.conf.example">
247 # A connect class with <connect:deny> set denies connections from the specified host/IP range.
249 # deny: Will not let people connect if they have specified host/IP.
252 # reason: The message that users will see if they match a deny block.
253 reason="The 6bone address space is deprecated">
255 # A connect class with <connect:allow> set allows c from the specified host/IP range.
257 # name: Name to use for this connect block. Mainly used for
258 # connect class inheriting.
261 # parent: This setting is to specify if this connect class
262 # inherits settings from any other. Put the other class's name
263 # in here to use its settings as a template - for example, if
264 # you only want to adjust sendq and a password
267 # allow: The IP address or hostname of clients that can use this
268 # class. You can specify either an exact match, a glob match, or
272 # hash: the hash function this password is hashed with. Requires the
273 # module for the selected function (bcrypt, md5, sha1, or sha256) and
274 # the password hashing module (password_hash) to be loaded.
276 # You may also use any of the above other than bcrypt prefixed with
277 # either "hmac-" or "pbkdf2-hmac-" (requires the pbkdf2 module).
278 # Create hashed passwords with: /MKPASSWD <hashtype> <plaintext>
281 # password: Password to use for this block/user(s)
284 # maxchans: Maximum number of channels a user in this class
285 # can be in at one time.
288 # timeout: How long the server will wait before disconnecting
289 # a user if they do not do anything on connect.
290 # (Note, this is a client-side thing, if the client does not
291 # send /NICK, /USER or /PASS)
294 # localmax: Maximum local connections per IP (or CIDR mask, see below).
297 # globalmax: Maximum global (network-wide) connections per IP (or CIDR mask, see below).
300 # maxconnwarn: Enable warnings when localmax or globalmax are reached (defaults to yes)
303 # resolvehostnames: If disabled, no DNS lookups will be performed on connecting users
304 # in this class. This can save a lot of resources on very busy servers.
305 resolvehostnames="yes"
307 # useconnectban: Defines if users in this class should be exempt from connectban limits.
308 # This setting only has effect when the connectban module is loaded.
311 # usednsbl: Defines whether or not users in this class are subject to DNSBL. Default is yes.
312 # This setting only has effect when the dnsbl module is loaded.
315 # useident: Defines if users in this class MUST respond to a ident query or not.
318 # usests: Whether a STS policy should be advertised to users in this class.
319 # This setting only has effect when the ircv3_sts module is loaded.
322 # webirc: Restricts usage of this class to the specified WebIRC gateway.
323 # This setting only has effect when the cgiirc module is loaded.
326 # limit: How many users are allowed in this class
329 # modes: User modes that are set on users in this block on connect.
330 # Enabling this option requires that the conn_umodes module be loaded.
331 # This entry is highly recommended to use for/with IP cloaking/masking.
332 # For the example to work, this also requires that the cloaking
333 # module be loaded as well.
336 # requireident: Require that users of this block have a valid ident response.
337 # Requires the ident module to be loaded.
340 # requiressl: Require that users of this block use a TLS (SSL) connection.
341 # This can also be set to "trusted", as to only accept client certificates
342 # issued by a certificate authority that you can configure in the
343 # settings of the TLS (SSL) module that you're using.
344 # Requires the sslinfo module to be loaded.
347 # requireaccount: Require that users of this block have authenticated to a
349 # NOTE: You must complete the signon prior to full connection. Currently,
350 # this is only possible by using SASL authentication; passforward
351 # and PRIVMSG NickServ happen after your final connect block has been found.
352 # Requires the services_account module to be loaded.
353 #requireaccount="yes"
355 # Alternate MOTD file for this connect class. The contents of this file are
356 # specified using <files secretmotd="filename"> or <execfiles ...>
358 # NOTE: the following escape sequences for IRC formatting characters can be
361 # Color: \c<fg>[,<bg>]
363 # Monospace: \m (not widely supported)
366 # Strikethrough: \s (not widely supported)
368 # See https://defs.ircdocs.horse/info/formatting.html for more information
369 # on client support for formatting characters.
372 # port: What port range this user is allowed to connect on. (optional)
373 # The ports MUST be set to listen in the bind blocks above.
377 # name: Name to use for this connect block. Mainly used for
378 # connect class inheriting.
381 # allow: The IP address or hostname of clients that can use this
382 # class. You can specify either an exact match, a glob match, or
386 # maxchans: Maximum number of channels a user in this class
387 # can be in at one time.
390 # timeout: How long the server will wait before disconnecting
391 # a user if they do not do anything on connect.
392 # (Note, this is a client-side thing, if the client does not
393 # send /NICK, /USER or /PASS)
396 # pingfreq: How often the server tries to ping connecting clients.
399 # hardsendq: maximum amount of data allowed in a client's send queue
400 # before they are dropped. Keep this value higher than the length of
401 # your network's /LIST or /WHO output, or you will have lots of
402 # disconnects from sendq overruns!
403 # Setting this to "1M" is equivalent to "1048576", "8K" is 8192, etc.
406 # softsendq: amount of data in a client's send queue before the server
407 # begins delaying their commands in order to allow the sendq to drain
410 # recvq: amount of data allowed in a client's queue before they are dropped.
411 # Entering "10K" is equivalent to "10240", see above.
414 # threshold: This specifies the amount of command penalty a user is allowed to have
415 # before being quit or fakelagged due to flood. Normal commands have a penalty of 1,
416 # ones such as /OPER have penalties up to 10.
418 # If you are not using fakelag, this should be at least 20 to avoid excess flood kills
419 # from processing some commands.
422 # commandrate: This specifies the maximum rate that commands can be processed.
423 # If commands are sent more rapidly, the user's penalty will increase and they will
424 # either be fakelagged or killed when they reach the threshold
426 # Units are millicommands per second, so 1000 means one line per second.
429 # fakelag: Use fakelag instead of killing users for excessive flood
431 # Fake lag stops command processing for a user when a flood is detected rather than
432 # immediately killing them; their commands are held in the recvq and processed later
433 # as the user's command penalty drops. Note that if this is enabled, flooders will
434 # quit with "RecvQ exceeded" rather than "Excess Flood".
437 # localmax: Maximum local connections per IP.
440 # globalmax: Maximum global (network-wide) connections per IP.
443 # resolvehostnames: If disabled, no DNS lookups will be performed on connecting users
444 # in this class. This can save a lot of resources on very busy servers.
445 resolvehostnames="yes"
447 # useident: Defines if users in this class must respond to a ident query or not.
450 # usests: Whether a STS policy should be advertised to users in this class.
451 # This setting only has effect when the ircv3_sts module is loaded.
454 # limit: How many users are allowed in this class
457 # modes: User modes that are set on users in this block on connect.
458 # Enabling this option requires that the conn_umodes module be loaded.
459 # This entry is highly recommended to use for/with IP cloaking/masking.
460 # For the example to work, this also requires that the cloaking
461 # module be loaded as well.
466 #-#-#-#-#-#-#-#-#-#-#-#- CIDR CONFIGURATION -#-#-#-#-#-#-#-#-#-#-#-
468 # CIDR configuration allows detection of clones and applying of #
469 # throttle limits across a CIDR range. (A CIDR range is a group of #
470 # IPs, for example, the CIDR range 192.168.1.0-192.168.1.255 may be #
471 # represented as 192.168.1.0/24). This means that abuse across an ISP #
472 # is detected and curtailed much easier. Here is a good chart that #
473 # shows how many IPs the different CIDRs correspond to: #
474 # https://en.wikipedia.org/wiki/IPv4_subnetting_reference #
475 # https://en.wikipedia.org/wiki/IPv6_subnetting_reference #
479 # ipv4clone: specifies how many bits of an IP address should be
480 # looked at for clones. The default only looks for clones on a
481 # single IP address of a user. You do not want to set this
482 # extremely low. (Values are 0-32).
485 # ipv6clone: specifies how many bits of an IP address should be
486 # looked at for clones. The default only looks for clones on a
487 # single IP address of a user. You do not want to set this
488 # extremely low. (Values are 0-128).
491 # This file has all the information about oper classes, types and o:lines.
492 # You *MUST* edit it.
493 #<include file="examples/opers.conf.example">
495 # This file has all the information about server links and ulined servers.
496 # You *MUST* edit it if you intend to link servers.
497 #<include file="examples/links.conf.example">
499 #-#-#-#-#-#-#-#-#-#- MISCELLANEOUS CONFIGURATION -#-#-#-#-#-#-#-#-#-#
502 # Files block - contains files whose contents are used by the ircd
504 # motd - displayed on connect and when a user executes /MOTD
505 # Modules can also define their own files
506 <files motd="examples/motd.txt.example">
508 # Example of an executable file include. Note this will be read on rehash,
509 # not when the command is run.
510 #<execfiles motd="wget -O - https://www.example.com/motd.txt">
512 #-#-#-#-#-#-#-#-#-#-#-#-#-#-# DNS SERVER -#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
513 # If these values are not defined, InspIRCd uses the default DNS resolver
517 # server: DNS server to use to attempt to resolve IP's to hostnames.
518 # in most cases, you won't need to change this, as inspircd will
519 # automatically detect the nameserver depending on /etc/resolv.conf
520 # (or, on Windows, your set nameservers in the registry.)
521 # Note that this must be an IP address and not a hostname, because
522 # there is no resolver to resolve the name until this is defined!
526 # timeout: time to wait to try to resolve DNS/hostname.
529 # An example of using an IPv6 nameserver
530 #<dns server="::1" timeout="5">
532 #-#-#-#-#-#-#-#-#-#-#-#-#-#-# PID FILE -#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
534 # Define the path to the PID file here. The PID file can be used to #
535 # rehash the ircd from the shell or to terminate the ircd from the #
536 # shell using shell scripts, perl scripts, etc... and to monitor the #
537 # ircd's state via cron jobs. If this is a relative path, it will be #
538 # relative to the runtime directory, and if it is not defined, the #
539 # default of 'inspircd.pid' is used. #
542 #<pid file="/path/to/inspircd.pid">
544 #-#-#-#-#-#-#-#-#-#-#-#-#- LIST MODE LIMITS #-#-#-#-#-#-#-#-#-#-#-#-#-#
546 # The <maxlist> tag is used customise the maximum number of each list #
547 # mode that can be set on a channel. #
548 # The tags are read from top to bottom and the list mode limit from #
549 # the first tag found which matches the channel name and mode type is #
550 # applied to that channel. #
551 # It is advisable to put an entry with the channel as '*' at the #
552 # bottom of the list. If none are specified or no maxlist tag is #
553 # matched, the banlist size defaults to 100 entries. #
556 # Allows #largechan to have up to 200 ban entries.
557 #<maxlist mode="ban" chan="#largechan" limit="200">
559 # Allows #largechan to have up to 200 ban exception entries.
560 #<maxlist mode="e" chan="#largechan" limit="200">
562 # Allows all channels and list modes not previously matched to have
564 <maxlist chan="*" limit="100">
566 #-#-#-#-#-#-#-#-#-#-#-#-#- SERVER OPTIONS -#-#-#-#-#-#-#-#-#-#-#-#-#
568 # Settings to define which features are usable on your server. #
572 # prefixquit: What (if anything) users' quit messages
573 # should be prefixed with.
576 # suffixquit: What (if anything) users' quit messages
577 # should be suffixed with.
580 # prefixpart: What (if anything) users' part messages
581 # should be prefixed with.
583 # NOTE: Use "\"" instead of """ if not using <config format="xml">
585 # suffixpart: What (if anything) users' part message
586 # should be suffixed with.
589 # fixedquit: Set all users' quit messages to this value.
592 # fixedpart: Set all users' part messages in all channels
596 # syntaxhints: If enabled, if a user fails to send the correct parameters
597 # for a command, the ircd will give back some help text of what
598 # the correct parameters are.
601 # casemapping: This sets the case mapping method to be used by the
602 # server. This MUST be the same on all servers. Possible values are:
603 # "ascii" (recommended)
604 # "rfc1459" (default, required for linking to 2.0 servers)
605 # NOTE: if you are using the nationalchars module this setting will be
606 # ignored. You should use <nationalchars:casemapping> instead.
609 # cyclehostsfromuser: If enabled, the source of the mode change for
610 # cyclehosts will be the user who cycled. This can look nicer, but
611 # triggers anti-takeover mechanisms of some obsolete bots.
612 cyclehostsfromuser="no"
614 # announcets: If set to yes, when the timestamp on a channel changes, all users
615 # in the channel will be sent a NOTICE about it.
618 # allowmismatch: Setting this option to yes will allow servers to link even
619 # if they don't have the same "optionally common" modules loaded. Setting this to
620 # yes may introduce some desyncs and unwanted behaviour.
623 # defaultbind: Sets the default for <bind> tags without an address. Choices are
624 # ipv4 or ipv6; if not specified, IPv6 will be used if your system has support,
625 # falling back to IPv4 otherwise.
628 # hostintopic: If enabled, channels will show the host of the topic setter
629 # in the topic. If set to no, it will only show the nick of the topic setter.
632 # pingwarning: If a server does not respond to a ping within this period,
633 # it will send a notice to opers with snomask +l informing that the server
634 # is about to ping timeout.
637 # serverpingfreq: How often pings are sent between servers.
640 # splitwhois: Whether to split private/secret channels from normal channels
641 # in WHOIS responses. Possible values for this are:
642 # 'no' - list all channels together in the WHOIS response regardless of type.
643 # 'split' - split private/secret channels to a separate WHOIS response numeric.
644 # 'splitmsg' - the same as split but also send a message explaining the split.
647 # defaultmodes: What modes are set on a empty channel when a user
648 # joins it and it is unregistered.
651 # xlinemessage: This is the text that is sent to a user when they are
652 # banned from the server.
653 xlinemessage="You're banned! Email irc@example.com with the ERROR line below for help."
655 # allowzerolimit: If enabled then allow a limit of 0 to be set on channels.
656 # This is non-standard behaviour and should only be enabled if you need to
657 # link with servers running 2.0. Defaults to yes.
660 # modesinlist: If enabled then the current channel modes will be shown
661 # in the /LIST response. Defaults to yes.
664 # exemptchanops: Allows users with with a status mode to be exempt
665 # from various channel restrictions. Possible restrictions are:
666 # - anticaps Channel mode +B - blocks messages with too many capital
667 # letters (requires the anticaps module).
668 # - auditorium-see Permission required to see the full user list of
669 # a +u channel (requires the auditorium module).
670 # - auditorium-vis Permission required to be visible in a +u channel
671 # (requires the auditorium module).
672 # - blockcaps Channel mode +B - blocks messages with too many capital
673 # letters (requires the blockcaps module).
674 # - blockcolor Channel mode +c - blocks messages with formatting codes
675 # (requires the blockcolor module).
676 # - censor Channel mode +G - censors messages based on the network
677 # configuration (requires the censor module).
678 # - filter Channel mode +g - blocks messages containing the given
679 # glob mask (requires the chanfilter module).
680 # - flood Channel mode +f - kicks (and bans) on text flood of a
681 # specified rate (requires the messageflood module).
682 # - nickflood Channel mode +F - blocks nick changes after a specified
683 # rate (requires the nickflood module).
684 # - noctcp Channel mode +C - blocks any CTCPs to the channel
685 # (requires the noctcp module).
686 # - nonick Channel mode +N - prevents users on the channel from
687 # changing nicks (requires the nonicks module).
688 # - nonotice Channel mode +T - blocks /NOTICEs to the channel
689 # (requires the nonotice module).
690 # - regmoderated Channel mode +M - blocks unregistered users from
691 # speaking (requires the services account module).
692 # - stripcolor Channel mode +S - strips formatting codes from
693 # messages (requires the stripcolor module).
694 # - topiclock Channel mode +t - limits changing the topic to (half)ops
695 # You can also configure this on a per-channel basis with a channel mode and
696 # even negate the configured exemptions below.
697 # See exemptchanops in modules.conf.example for more details.
698 exemptchanops="censor:o filter:o nickflood:o nonick:v regmoderated:o"
700 # invitebypassmodes: This allows /INVITE to bypass other channel modes.
701 # (Such as +k, +j, +l, etc.)
702 invitebypassmodes="yes"
704 # nosnoticestack: This prevents snotices from 'stacking' and giving you
705 # the message saying '(last message repeated X times)'. Defaults to no.
709 #-#-#-#-#-#-#-#-#-#-#-# PERFORMANCE CONFIGURATION #-#-#-#-#-#-#-#-#-#-#
713 # netbuffersize: Size of the buffer used to receive data from clients.
714 # The ircd may only read this amount of text in 1 go at any time.
715 netbuffersize="10240"
717 # somaxconn: The maximum number of connections that may be waiting
718 # in the accept queue. This is *NOT* the total maximum number of
719 # connections per server. Some systems may only allow this to be up
720 # to 5, while others (such as Linux and *BSD) default to 128.
721 # Setting this above the limit imposed by your OS can have undesired
725 # softlimit: This optional feature allows a defined softlimit for
726 # connections. If defined, it sets a soft max connections value.
729 # clonesonconnect: If this is set to no, we won't check for clones
730 # on initial connection, but only after the DNS check is done.
731 # This can be useful where your main class is more restrictive
732 # than some other class a user can be assigned after DNS lookup is complete.
733 # Turning this option off will make the server spend more time on users we may
734 # potentially not want. Normally this should be negligible, though.
735 # Default value is yes
736 clonesonconnect="yes"
738 # timeskipwarn: The time period that a server clock can jump by before
739 # operators will be warned that the server is having performance issues.
742 # quietbursts: When syncing or splitting from a network, a server
743 # can generate a lot of connect and quit messages to opers with
744 # +C and +Q snomasks. Setting this to yes squelches those messages,
745 # which makes it easier for opers, but degrades the functionality of
746 # bots like BOPM during netsplits.
749 #-#-#-#-#-#-#-#-#-#-#-# SECURITY CONFIGURATION #-#-#-#-#-#-#-#-#-#-#-#
753 # allowcoreunload: If this value is set to yes, Opers will be able to
754 # unload core modules (e.g. core_privmsg).
757 # announceinvites: This option controls which members of the channel
758 # receive an announcement when someone is INVITEd. Available values:
759 # 'none' - don't send invite announcements
760 # 'all' - send invite announcements to all members
761 # 'ops' - send invite announcements to ops and higher ranked users
762 # 'dynamic' - send invite announcements to halfops (if available) and
763 # higher ranked users. This is the recommended setting.
764 announceinvites="dynamic"
766 # hideulines: If this value is set to yes, U-lined servers will
767 # be hidden from non-opers in /LINKS and /MAP.
770 # flatlinks: If this value is set to yes, /MAP and /LINKS will
771 # be flattened when shown to non-opers.
774 # hideserver: When defined, the given text will be used in place
775 # of the server name in public messages. As with <server:name> this
776 # does not need to resolve but does need to be a valid hostname.
778 # NOTE: enabling this will cause users' idle times to only be shown
779 # when a remote whois (/WHOIS <nick> <nick>) is used.
780 #hideserver="*.example.com"
782 # hidebans: If this value is set to yes, when a user is banned ([KGZ]-lined)
783 # only opers will see the ban message when the user is removed
787 # hidekills: If defined, replaces who executed a /KILL with a custom string.
790 # hideulinekills: Hide kills from clients of ulined servers from server notices.
793 # hidesplits: If enabled, non-opers will not be able to see which
794 # servers split in a netsplit, they will only be able to see that one
795 # occurred (If their client has netsplit detection).
798 # maxtargets: Maximum number of targets per command.
799 # (Commands like /NOTICE, /PRIVMSG, /KICK, etc)
802 # customversion: A custom message to be displayed in the comments field
803 # of the VERSION command response. This does not hide the InspIRCd version.
806 # runasuser: If this is set, InspIRCd will attempt to switch
807 # to run as this user, which allows binding of ports under 1024.
808 # You should NOT set this unless you are starting as root.
809 # NOT SUPPORTED/NEEDED UNDER WINDOWS.
812 # runasgroup: If this is set, InspIRCd will attempt to switch
813 # to run as this group, which allows binding of ports under 1024.
814 # You should NOT set this unless you are starting as root.
815 # NOT SUPPORTED/NEEDED UNDER WINDOWS.
818 # restrictbannedusers: If this is set to yes, InspIRCd will not allow users
819 # banned on a channel to change nickname or message channels they are
820 # banned on. This can also be set to silent to restrict the user but not
822 restrictbannedusers="yes"
824 # genericoper: Setting this value to yes makes all opers on this server
825 # appear as 'is a server operator' in their WHOIS, regardless of their
826 # oper type, however oper types are still used internally. This only
827 # affects the display in WHOIS.
830 # userstats: /STATS commands that users can run (opers can run all).
833 #-#-#-#-#-#-#-#-#-#-#-#-# LIMITS CONFIGURATION #-#-#-#-#-#-#-#-#-#-#-#
835 # This configuration tag defines the maximum sizes of various types #
836 # on IRC, such as the maximum length of a channel name, and the #
837 # maximum length of a channel. These values should match network-wide #
838 # otherwise issues will occur. #
840 # The highest safe value you can set any of these options to is 500, #
841 # but it is recommended that you keep them somewhat #
842 # near their defaults (or lower). #
845 # maxnick: Maximum length of a nickname.
848 # maxchan: Maximum length of a channel name.
851 # maxmodes: Maximum number of mode changes per line.
854 # maxident: Maximum length of a ident/username.
857 # maxhost: Maximum length of a hostname.
860 # maxquit: Maximum length of a quit message.
863 # maxtopic: Maximum length of a channel topic.
866 # maxkick: Maximum length of a kick message.
869 # maxreal: Maximum length of a real name.
872 # maxaway: Maximum length of an away message.
875 #-#-#-#-#-#-#-#-#-#-#-#-# PATHS CONFIGURATION #-#-#-#-#-#-#-#-#-#-#-#-#
877 # This configuration tag defines the location that InspIRCd stores #
878 # various types of files such as configuration files, log files and #
879 # modules. You will probably not need to change these from the values #
880 # set when InspIRCd was built unless you are using a binary package #
881 # where you do not have the ability to set build time configuration. #
882 #<path configdir="conf" datadir="data" logdir="logs" moduledir="modules">
884 #-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
888 # Logging is covered with the <log> tag, which you may use to change
889 # the behaviour of the logging of the IRCd.
891 # An example log tag would be:
892 # <log method="file" type="OPER" level="default" target="opers.log">
893 # which would log all information on /OPER (failed and successful) to
894 # a file called opers.log.
896 # There are many different types which may be used, and modules may
897 # generate their own. A list of useful types:
898 # - USERS - information relating to user connection and disconnection
899 # - OPER - successful and failed oper attempts
900 # - KILL - kill related messages
901 # - FILTER - messages related to filter matches (filter module)
902 # - CONFIG - configuration related messages
903 # - COMMAND - die and restart messages, and messages related to unknown user types
904 # - SOCKET - socket engine informational/error messages
905 # - MODULE - module related messages
906 # - STARTUP - messages related to starting up the server
908 # You may also log *everything* by using a type of *, and subtract things out
909 # of that by using -TYPE - for example "* -USERINPUT -USEROUTPUT".
912 # - default (general messages, including errors)
913 # - sparse (misc error messages)
914 # - debug (debug messages)
916 # Some types only produce output in the debug level, those are:
917 # - BANCACHE - ban cache debug messages
918 # - CHANNELS - information relating to joining/creating channels
919 # - CULLLIST - debug messages related to issues with removing users
920 # - RESOLVER - DNS related debug messages
921 # - CONNECTCLASS - Connection class debug messages
925 # If your server is producing a high levels of log messages you can also set the
926 # flush="[positive number]" attribute to specify how many log messages should be
927 # buffered before flushing to disk. You should probably not specify this unless
928 # you are having problems.
930 # The following log tag is highly default and uncustomised. It is recommended you
931 # sort out your own log tags. This is just here so you get some output.
933 <log method="file" type="* -USERINPUT -USEROUTPUT" level="default" target="ircd.log">
935 #-#-#-#-#-#-#-#-#-#-#-#-#- WHOWAS OPTIONS -#-#-#-#-#-#-#-#-#-#-#-#-#
937 # This tag lets you define the behaviour of the /WHOWAS command of #
942 # groupsize: Maximum entries per nick shown when performing
946 # maxgroups: Maximum number of nickgroups that can be added to
947 # the list so that /WHOWAS does not use a lot of resources on
951 # maxkeep: Maximum time a nick is kept in the whowas list
952 # before being pruned. Time may be specified in seconds,
953 # or in the following format: 1y2w3d4h5m6s. Minimum is
957 #-#-#-#-#-#-#-#-#-#-#-#-#-#- BAN OPTIONS -#-#-#-#-#-#-#-#-#-#-#-#-#-#
959 # The ban tags define nick masks, host masks and ip ranges which are #
960 # banned from your server. All details in these tags are local to #
965 # ipmask: IP range to ban. Wildcards and CIDR can be used.
968 # reason: Reason to display when user is disconnected.
969 reason="No porn here thanks.">
972 # nick: Nick to disallow. Wildcards are supported.
975 # reason: Reason to display on /NICK.
976 reason="Don't use this nick.">
979 # host: ident@hostname to ban.
980 # Wildcards and CIDR (if you specify an IP) can be used.
981 host="*@banneduser.example.net"
983 # reason: Reason to display when user is disconnected
984 reason="Evading Bans">
986 <badhost host="root@*" reason="Don't IRC as root!">
987 <badhost host="*@198.51.100.0/24" reason="This subnet is bad.">
989 # exception: Hosts that are exempt from [KGZ]-lines.
991 # host: ident@hostname to exempt.
992 # Wildcards and CIDR (if you specify an IP) can be used.
993 host="*@serverop.example.com"
995 # reason: Reason for exception. Only shown in /STATS e.
996 reason="Oper's hostname">
998 #-#-#-#-#-#-#-#-#-#-#- INSANE BAN OPTIONS -#-#-#-#-#-#-#-#-#-#-#-#-#-#
1000 # This optional tag allows you to specify how wide a G-line, E-line, #
1001 # K-line, Z-line or Q-line can be before it is forbidden from being #
1002 # set. By setting hostmasks="yes", you can allow all G-, K-, E-lines, #
1003 # no matter how many users the ban would cover. This is not #
1004 # recommended! By setting ipmasks="yes", you can allow all Z-lines, #
1005 # no matter how many users these cover too. Needless to say we #
1006 # don't recommend you do this, or, set nickmasks="yes", which will #
1007 # allow any Q-line. #
1011 # hostmasks: Allow bans with insane hostmasks. (over-reaching bans)
1014 # ipmasks: Allow bans with insane ipmasks. (over-reaching bans)
1017 # nickmasks: Allow bans with insane nickmasks. (over-reaching bans)
1020 # trigger: What percentage of users on the network to trigger
1021 # specifying an insane ban as. The default is 95.5%, which means
1022 # if you have a 1000 user network, a ban will not be allowed if it
1023 # will be banning 955 or more users.
1026 #-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-# MODULES #-#-#-#-#-#-#-#-#-#-#-#-#-#-#
1027 # ____ _ _____ _ _ ____ _ _ _ #
1028 # | _ \ ___ __ _ __| | |_ _| |__ (_)___ | __ )(_) |_| | #
1029 # | |_) / _ \/ _` |/ _` | | | | '_ \| / __| | _ \| | __| | #
1030 # | _ < __/ (_| | (_| | | | | | | | \__ \ | |_) | | |_|_| #
1031 # |_| \_\___|\__,_|\__,_| |_| |_| |_|_|___/ |____/|_|\__(_) #
1033 # Well done, you've reached the end of the basic configuration, your #
1034 # ircd should now start if you want to try it out! (./inspircd start) #
1036 # We now suggest you read and edit modules.conf, as modules are what #
1037 # provide almost all the features of InspIRCd. :) #
1039 # The default does nothing -- we include it for simplicity for you. #
1040 #<include file="examples/modules.conf.example">
1042 #-#-#-#-#-#-#-#-#-#-#-# SERVICES CONFIGURATION #-#-#-#-#-#-#-#-#-#-#-#
1044 # If you use services you will probably want to include one of the #
1045 # following files which set up aliases, nick reservations and filter #
1046 # exemptions for services pseudoclients: #
1048 # Anope users should uncomment this:
1049 #<include file="examples/services/anope.conf.example">
1051 # Atheme users should uncomment this:
1052 #<include file="examples/services/atheme.conf.example">
1054 # Users of other services should uncomment this:
1055 #<include file="examples/services/generic.conf.example">
1057 #########################################################################
1059 # - InspIRCd Development Team - #
1060 # https://www.inspircd.org #
1062 #########################################################################