X-Git-Url: https://git.netwichtig.de/gitweb/?a=blobdiff_plain;f=src%2Fmodules%2Fm_securelist.cpp;h=875e7fb75652641ac6364f9b5134692edb4b1e9b;hb=5c9427cde0a949a17a476311db0a2a275345337b;hp=92049497f2e4fd35c815dcc00eb8d0ad2353dce8;hpb=0ba3bb8ade1311bd21c2285dae7aab228a14c650;p=user%2Fhenk%2Fcode%2Finspircd.git diff --git a/src/modules/m_securelist.cpp b/src/modules/m_securelist.cpp index 92049497f..875e7fb75 100644 --- a/src/modules/m_securelist.cpp +++ b/src/modules/m_securelist.cpp @@ -1,112 +1,91 @@ -/* +------------------------------------+ - * | Inspire Internet Relay Chat Daemon | - * +------------------------------------+ +/* + * InspIRCd -- Internet Relay Chat Daemon * - * InspIRCd is copyright (C) 2002-2006 ChatSpike-Dev. - * E-mail: - * - * - * - * Written by Craig Edwards, Craig McLure, and others. - * This program is free but copyrighted software; see - * the file COPYING for details. + * Copyright (C) 2007 Dennis Friis + * Copyright (C) 2007 Robin Burchell + * Copyright (C) 2006-2007 Craig Edwards * - * --------------------------------------------------- + * This file is part of InspIRCd. InspIRCd is free software: you can + * redistribute it and/or modify it under the terms of the GNU General Public + * License as published by the Free Software Foundation, version 2. + * + * This program is distributed in the hope that it will be useful, but WITHOUT + * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS + * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more + * details. + * + * You should have received a copy of the GNU General Public License + * along with this program. If not, see . */ -using namespace std; - -#include "users.h" -#include "channels.h" -#include "modules.h" -#include "helperfuncs.h" -#include + #include "inspircd.h" -/* $ModDesc: A module overriding /list, and making it safe - stop those sendq problems. */ +/* $ModDesc: Disallows /LIST for recently connected clients to hinder spam bots */ class ModuleSecureList : public Module { - private: - + std::vector allowlist; + time_t WaitTime; + public: - ModuleSecureList(InspIRCd* Me) : Module::Module(Me) + void init() CXX11_OVERRIDE { - + OnRehash(NULL); + Implementation eventlist[] = { I_OnRehash, I_OnPreCommand, I_On005Numeric }; + ServerInstance->Modules->Attach(eventlist, this, sizeof(eventlist)/sizeof(Implementation)); } - - virtual ~ModuleSecureList() - { - } - - virtual Version GetVersion() + + Version GetVersion() CXX11_OVERRIDE { - return Version(1,0,0,0,VF_VENDOR); + return Version("Disallows /LIST for recently connected clients to hinder spam bots", VF_VENDOR); } - - void Implements(char* List) + + void OnRehash(User* user) CXX11_OVERRIDE { - List[I_OnPreCommand] = List[I_On005Numeric] = 1; + allowlist.clear(); + + ConfigTagList tags = ServerInstance->Config->ConfTags("securehost"); + for (ConfigIter i = tags.first; i != tags.second; ++i) + allowlist.push_back(i->second->getString("exception")); + + WaitTime = ServerInstance->Config->ConfValue("securelist")->getInt("waittime", 60); } + /* * OnPreCommand() * Intercept the LIST command. - */ - virtual int OnPreCommand(const std::string &command, const char** parameters, int pcnt, userrec *user, bool validated) + */ + ModResult OnPreCommand(std::string &command, std::vector ¶meters, LocalUser *user, bool validated, const std::string &original_line) CXX11_OVERRIDE { /* If the command doesnt appear to be valid, we dont want to mess with it. */ if (!validated) - return 0; - - if ((command == "LIST") && (ServerInstance->Time() < (user->signon+60)) && (!*user->oper)) + return MOD_RES_PASSTHRU; + + if ((command == "LIST") && (ServerInstance->Time() < (user->signon+WaitTime)) && (!user->IsOper())) { - user->WriteServ("NOTICE %s :*** You cannot list within the first minute of connecting. Please try again later.",user->nick); + /* Normally wouldnt be allowed here, are they exempt? */ + for (std::vector::iterator x = allowlist.begin(); x != allowlist.end(); x++) + if (InspIRCd::Match(user->MakeHost(), *x, ascii_case_insensitive_map)) + return MOD_RES_PASSTHRU; + + /* Not exempt, BOOK EM DANNO! */ + user->WriteNotice("*** You cannot list within the first " + ConvToStr(WaitTime) + " seconds of connecting. Please try again later."); /* Some crap clients (read: mIRC, various java chat applets) muck up if they don't * receive these numerics whenever they send LIST, so give them an empty LIST to mull over. */ - user->WriteServ("321 %s Channel :Users Name",user->nick); - user->WriteServ("323 %s :End of channel list.",user->nick); - return 1; + user->WriteNumeric(321, "%s Channel :Users Name",user->nick.c_str()); + user->WriteNumeric(323, "%s :End of channel list.",user->nick.c_str()); + return MOD_RES_DENY; } - return 0; - } - - virtual void On005Numeric(std::string &output) - { - output.append(" SECURELIST"); + return MOD_RES_PASSTHRU; } - virtual Priority Prioritize() - { - return (Priority)ServerInstance->PriorityBefore("m_safelist.so"); - } - -}; - - - -/******************************************************************************************************/ - -class ModuleSecureListFactory : public ModuleFactory -{ - public: - ModuleSecureListFactory() - { - } - - ~ModuleSecureListFactory() + void On005Numeric(std::map& tokens) CXX11_OVERRIDE { + tokens["SECURELIST"]; } - - virtual Module * CreateModule(InspIRCd* Me) - { - return new ModuleSecureList(Me); - } - }; - -extern "C" void * init_module( void ) -{ - return new ModuleSecureListFactory; -} + +MODULE_INIT(ModuleSecureList)