X-Git-Url: https://git.netwichtig.de/gitweb/?a=blobdiff_plain;f=src%2Fmodules%2Fm_securelist.cpp;h=f4042b8f6299cbdfec0d51a9773b6e43a0c3b84d;hb=3323226c38c959392e61f406ec62f9d5f24fce15;hp=264090311581240366c0f855382a42a3a5be72cd;hpb=bab14f0dd2345c9d7dcbc47c918563709e1ac094;p=user%2Fhenk%2Fcode%2Finspircd.git diff --git a/src/modules/m_securelist.cpp b/src/modules/m_securelist.cpp index 264090311..f4042b8f6 100644 --- a/src/modules/m_securelist.cpp +++ b/src/modules/m_securelist.cpp @@ -1 +1,82 @@ -/* +------------------------------------+ * | Inspire Internet Relay Chat Daemon | * +------------------------------------+ * * InspIRCd: (C) 2002-2007 InspIRCd Development Team * See: http://www.inspircd.org/wiki/index.php/Credits * * This program is free but copyrighted software; see * the file COPYING for details. * * --------------------------------------------------- */ #include "inspircd.h" #include "users.h" #include "channels.h" #include "modules.h" /* $ModDesc: A module overriding /list, and making it safe - stop those sendq problems. */ class ModuleSecureList : public Module { private: std::vector allowlist; time_t WaitTime; public: ModuleSecureList(InspIRCd* Me) : Module(Me) { OnRehash(NULL,""); } virtual ~ModuleSecureList() { } virtual Version GetVersion() { return Version(1,1,0,0,VF_VENDOR,API_VERSION); } void OnRehash(userrec* user, const std::string ¶meter) { ConfigReader* MyConf = new ConfigReader(ServerInstance); allowlist.clear(); for (int i = 0; i < MyConf->Enumerate("securehost"); i++) allowlist.push_back(MyConf->ReadValue("securehost", "exception", i)); WaitTime = MyConf->ReadInteger("securelist", "waittime", "60", 0, true); DELETE(MyConf); } void Implements(char* List) { List[I_OnRehash] = List[I_OnPreCommand] = List[I_On005Numeric] = 1; } /* * OnPreCommand() * Intercept the LIST command. */ virtual int OnPreCommand(const std::string &command, const char** parameters, int pcnt, userrec *user, bool validated, const std::string &original_line) { /* If the command doesnt appear to be valid, we dont want to mess with it. */ if (!validated) return 0; if ((command == "LIST") && (ServerInstance->Time() < (user->signon+WaitTime)) && (!IS_OPER(user))) { /* Normally wouldnt be allowed here, are they exempt? */ for (std::vector::iterator x = allowlist.begin(); x != allowlist.end(); x++) if (ServerInstance->MatchText(user->MakeHost(), *x)) return 0; /* Not exempt, BOOK EM DANNO! */ user->WriteServ("NOTICE %s :*** You cannot list within the first %d seconds of connecting. Please try again later.",user->nick, WaitTime); /* Some crap clients (read: mIRC, various java chat applets) muck up if they don't * receive these numerics whenever they send LIST, so give them an empty LIST to mull over. */ user->WriteServ("321 %s Channel :Users Name",user->nick); user->WriteServ("323 %s :End of channel list.",user->nick); return 1; } return 0; } virtual void On005Numeric(std::string &output) { output.append(" SECURELIST"); } virtual Priority Prioritize() { return (Priority)ServerInstance->PriorityBefore("m_safelist.so"); } }; MODULE_INIT(ModuleSecureList) \ No newline at end of file +/* + * InspIRCd -- Internet Relay Chat Daemon + * + * Copyright (C) 2007 Dennis Friis + * Copyright (C) 2007 Robin Burchell + * Copyright (C) 2006-2007 Craig Edwards + * + * This file is part of InspIRCd. InspIRCd is free software: you can + * redistribute it and/or modify it under the terms of the GNU General Public + * License as published by the Free Software Foundation, version 2. + * + * This program is distributed in the hope that it will be useful, but WITHOUT + * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS + * FOR A PARTICULAR PURPOSE. See the GNU General Public License for more + * details. + * + * You should have received a copy of the GNU General Public License + * along with this program. If not, see . + */ + + +#include "inspircd.h" + +class ModuleSecureList : public Module +{ + std::vector allowlist; + time_t WaitTime; + + public: + Version GetVersion() CXX11_OVERRIDE + { + return Version("Disallows /LIST for recently connected clients to hinder spam bots", VF_VENDOR); + } + + void ReadConfig(ConfigStatus& status) CXX11_OVERRIDE + { + allowlist.clear(); + + ConfigTagList tags = ServerInstance->Config->ConfTags("securehost"); + for (ConfigIter i = tags.first; i != tags.second; ++i) + allowlist.push_back(i->second->getString("exception")); + + WaitTime = ServerInstance->Config->ConfValue("securelist")->getInt("waittime", 60); + } + + + /* + * OnPreCommand() + * Intercept the LIST command. + */ + ModResult OnPreCommand(std::string &command, std::vector ¶meters, LocalUser *user, bool validated, const std::string &original_line) CXX11_OVERRIDE + { + /* If the command doesnt appear to be valid, we dont want to mess with it. */ + if (!validated) + return MOD_RES_PASSTHRU; + + if ((command == "LIST") && (ServerInstance->Time() < (user->signon+WaitTime)) && (!user->IsOper())) + { + /* Normally wouldnt be allowed here, are they exempt? */ + for (std::vector::iterator x = allowlist.begin(); x != allowlist.end(); x++) + if (InspIRCd::Match(user->MakeHost(), *x, ascii_case_insensitive_map)) + return MOD_RES_PASSTHRU; + + /* Not exempt, BOOK EM DANNO! */ + user->WriteNotice("*** You cannot list within the first " + ConvToStr(WaitTime) + " seconds of connecting. Please try again later."); + /* Some crap clients (read: mIRC, various java chat applets) muck up if they don't + * receive these numerics whenever they send LIST, so give them an empty LIST to mull over. + */ + user->WriteNumeric(RPL_LISTSTART, "Channel :Users Name"); + user->WriteNumeric(RPL_LISTEND, ":End of channel list."); + return MOD_RES_DENY; + } + return MOD_RES_PASSTHRU; + } + + void On005Numeric(std::map& tokens) CXX11_OVERRIDE + { + tokens["SECURELIST"]; + } +}; + +MODULE_INIT(ModuleSecureList)