-/* +------------------------------------+\r * | Inspire Internet Relay Chat Daemon |\r * +------------------------------------+\r *\r * InspIRCd: (C) 2002-2007 InspIRCd Development Team\r * See: http://www.inspircd.org/wiki/index.php/Credits\r *\r * This program is free but copyrighted software; see\r * the file COPYING for details.\r *\r * ---------------------------------------------------\r */\r\r#include "inspircd.h" \r#include "users.h"\r#include "channels.h"\r#include "modules.h"\r\r/* $ModDesc: A module overriding /list, and making it safe - stop those sendq problems. */\r\rclass ModuleSecureList : public Module\r{\r private:\r std::vector<std::string> allowlist;\r time_t WaitTime;\r public:\r ModuleSecureList(InspIRCd* Me) : Module(Me)\r {\r OnRehash(NULL,"");\r }\r \r virtual ~ModuleSecureList()\r {\r }\r \r virtual Version GetVersion()\r {\r return Version(1,1,0,0,VF_VENDOR,API_VERSION);\r }\r\r void OnRehash(userrec* user, const std::string ¶meter)\r {\r ConfigReader* MyConf = new ConfigReader(ServerInstance);\r allowlist.clear();\r for (int i = 0; i < MyConf->Enumerate("securehost"); i++)\r allowlist.push_back(MyConf->ReadValue("securehost", "exception", i));\r WaitTime = MyConf->ReadInteger("securelist", "waittime", "60", 0, true);\r DELETE(MyConf);\r }\r \r void Implements(char* List)\r {\r List[I_OnRehash] = List[I_OnPreCommand] = List[I_On005Numeric] = 1;\r }\r\r /*\r * OnPreCommand()\r * Intercept the LIST command.\r */ \r virtual int OnPreCommand(const std::string &command, const char** parameters, int pcnt, userrec *user, bool validated, const std::string &original_line)\r {\r /* If the command doesnt appear to be valid, we dont want to mess with it. */\r if (!validated)\r return 0;\r \r if ((command == "LIST") && (ServerInstance->Time() < (user->signon+WaitTime)) && (!IS_OPER(user)))\r {\r /* Normally wouldnt be allowed here, are they exempt? */\r for (std::vector<std::string>::iterator x = allowlist.begin(); x != allowlist.end(); x++)\r if (ServerInstance->MatchText(user->MakeHost(), *x))\r return 0;\r\r /* Not exempt, BOOK EM DANNO! */\r user->WriteServ("NOTICE %s :*** You cannot list within the first %d seconds of connecting. Please try again later.",user->nick, WaitTime);\r /* Some crap clients (read: mIRC, various java chat applets) muck up if they don't\r * receive these numerics whenever they send LIST, so give them an empty LIST to mull over.\r */\r user->WriteServ("321 %s Channel :Users Name",user->nick);\r user->WriteServ("323 %s :End of channel list.",user->nick);\r return 1;\r }\r return 0;\r }\r\r virtual void On005Numeric(std::string &output)\r {\r output.append(" SECURELIST");\r }\r\r virtual Priority Prioritize()\r {\r return (Priority)ServerInstance->PriorityBefore("m_safelist.so");\r }\r\r};\r \rMODULE_INIT(ModuleSecureList)\r
\ No newline at end of file
+/*
+ * InspIRCd -- Internet Relay Chat Daemon
+ *
+ * Copyright (C) 2007 Dennis Friis <peavey@inspircd.org>
+ * Copyright (C) 2007 Robin Burchell <robin+git@viroteck.net>
+ * Copyright (C) 2006-2007 Craig Edwards <craigedwards@brainbox.cc>
+ *
+ * This file is part of InspIRCd. InspIRCd is free software: you can
+ * redistribute it and/or modify it under the terms of the GNU General Public
+ * License as published by the Free Software Foundation, version 2.
+ *
+ * This program is distributed in the hope that it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
+ * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
+ * details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <http://www.gnu.org/licenses/>.
+ */
+
+
+#include "inspircd.h"
+#include "modules/account.h"
+
+typedef std::vector<std::string> AllowList;
+
+class ModuleSecureList : public Module
+{
+ AllowList allowlist;
+ bool exemptregistered;
+ unsigned int WaitTime;
+
+ public:
+ Version GetVersion() CXX11_OVERRIDE
+ {
+ return Version("Disallows the LIST command for recently connected clients to hinder spam bots", VF_VENDOR);
+ }
+
+ void ReadConfig(ConfigStatus& status) CXX11_OVERRIDE
+ {
+ AllowList newallows;
+
+ ConfigTagList tags = ServerInstance->Config->ConfTags("securehost");
+ for (ConfigIter i = tags.first; i != tags.second; ++i)
+ {
+ std::string host = i->second->getString("exception");
+ if (host.empty())
+ throw ModuleException("<securehost:exception> is a required field at " + i->second->getTagLocation());
+ newallows.push_back(host);
+ }
+
+ ConfigTag* tag = ServerInstance->Config->ConfValue("securelist");
+
+ exemptregistered = tag->getBool("exemptregistered");
+ WaitTime = tag->getDuration("waittime", 60, 1);
+ allowlist.swap(newallows);
+ }
+
+
+ /*
+ * OnPreCommand()
+ * Intercept the LIST command.
+ */
+ ModResult OnPreCommand(std::string& command, CommandBase::Params& parameters, LocalUser* user, bool validated) CXX11_OVERRIDE
+ {
+ /* If the command doesnt appear to be valid, we dont want to mess with it. */
+ if (!validated)
+ return MOD_RES_PASSTHRU;
+
+ if ((command == "LIST") && (ServerInstance->Time() < (user->signon+WaitTime)) && (!user->IsOper()))
+ {
+ /* Normally wouldnt be allowed here, are they exempt? */
+ for (std::vector<std::string>::iterator x = allowlist.begin(); x != allowlist.end(); x++)
+ if (InspIRCd::Match(user->MakeHost(), *x, ascii_case_insensitive_map))
+ return MOD_RES_PASSTHRU;
+
+ const AccountExtItem* ext = GetAccountExtItem();
+ if (exemptregistered && ext && ext->get(user))
+ return MOD_RES_PASSTHRU;
+
+ /* Not exempt, BOOK EM DANNO! */
+ user->WriteNotice("*** You cannot list within the first " + ConvToStr(WaitTime) + " seconds of connecting. Please try again later.");
+ /* Some clients (e.g. mIRC, various java chat applets) muck up if they don't
+ * receive these numerics whenever they send LIST, so give them an empty LIST to mull over.
+ */
+ user->WriteNumeric(RPL_LISTSTART, "Channel", "Users Name");
+ user->WriteNumeric(RPL_LISTEND, "End of channel list.");
+ return MOD_RES_DENY;
+ }
+ return MOD_RES_PASSTHRU;
+ }
+
+ void On005Numeric(std::map<std::string, std::string>& tokens) CXX11_OVERRIDE
+ {
+ tokens["SECURELIST"];
+ }
+};
+
+MODULE_INIT(ModuleSecureList)
projects / user / henk / code / inspircd.git / blobdiff