# cd /usr/local/src/
# wget 'https://www.miraclelinux.com/update/files/u1/AX/IRCAX3/ircd-hybrid-7_2_3-1_1AX_x86_64.rpm'
# rpm -ivh ircd-hybrid-7_2_3-1_1AX_x86_64.rpm
# cd /etc/ircd/
# cp ircd.conf ircd.conf.org
# vi ircd.conf
serverinfo {
name = "professor"; 任意のサーバ名
sid = "001"; 001に変更
description = "PROFESSOR-IRC"; 任意のサーバ説明
network_name = "MyNet"; 任意のネットワーク名
network_desc = "This is My Network"; 任意のネットワーク説明
hub = no;
#vhost = "192.169.0.1";
#vhost6 = "3ffe:80e8:546::2";
max_clients = 512; 最大接続ユーザー数
#rsa_private_key_file = "/usr/local/ircd/etc/rsa.key";
#ssl_certificate_file = "/usr/local/ircd/etc/cert.pem";
};
admin {
name = "sss"; 任意の管理者名
description = "Administrator"; 任意の管理者の説明
email = ""; 任意の管理者のメールアドレス
};
log {
use_logging = yes;
fname_userlog = "logs/userlog";
fname_operlog = "logs/operlog";
fname_killlog = "logs/kill";
fname_klinelog = "logs/kline";
fname_glinelog = "logs/gline";
log_level = L_INFO; {L_CRIT|L_ERROR|L_WARN|L_NOTICE|L_TRACE|L_INFO or L_DEBUG}
};
class {
name = "users";
ping_time = 90 seconds;
number_per_ip = 2;
max_local = 2;
max_global = 10;
max_number = 100;
cidr_bitlen_ipv4 = 24;
cidr_bitlen_ipv6 = 120;
number_per_cidr = 16;
sendq = 100 kbytes;
};
class {
name = "opers";
ping_time = 90 seconds;
number_per_ip = 10;
max_number = 100;
sendq = 100kbytes;
};
class {
name = "server";
ping_time = 90 seconds;
ping_warning = 15 seconds;
connectfreq = 5 minutes;
max_number = 1;
sendq = 2 megabytes;
};
listen {
port = 6665 .. 6669;
flags = hidden, ssl;
host = "192.168.0.1";
port = 6697;
host = "1.2.3.4";
port = 7000, 7001;
host = "3ffe:1234:a:b:c::d";
port = 7002;
};
auth {
user = "*@*";
#user = "*test@123D:B567:*";
password = "professional";
encrypted = yes;
spoof = "I.still.hate.packets";
#class = "opers";
class = "users";
flags = need_password, spoof_notice, exceed_limit, kline_exempt,
gline_exempt, resv_exempt, no_tilde, can_flood, can_idle;
};
auth {
redirserv = "this.is.not.a.real.server";
redirport = 6667;
user = "*.server";
class = "users";
};
auth {
user = "*@*";
class = "users";
flags = need_ident;
};
operator {
name = "god";
user = "*god@*";
user = "*@127.0.0.1";
password = "etcnjl8juSU1E";
encrypted = yes;
# rsa_public_key_file = "/usr/local/ircd/etc/oper.pub";
class = "opers";
# umodes = locops, servnotice, operwall, wallop;
flags = global_kill, remote, kline, unkline, xline,
die, rehash, nick_changes, admin, operwall;
};
connect {
name = "irc.uplink.com";
host = "192.168.0.1";
vhost = "192.168.0.2";
send_password = "password";
accept_password = "anotherpassword";
encrypted = no;
port = 6666;
hub_mask = "*";
# leaf_mask = "*.uk";
# fakename = "*.arpa";
class = "server";
# flags = autoconn, lazylink, compressed, cryptlink, burst_away, topicburst;
};
connect {
name = "encrypted.auth.example";
host = "some.host.somewhere";
port = 6667;
flags = cryptlink;
rsa_public_key_file = "etc/remote.server.keyfile";
# cipher_preference = "BF/168";
};
connect "ipv6.some.server" {
host = "3ffd:dead:beef::1";
send_password = "password";
accept_password = "password";
port = 6666;
aftype = ipv6;
class = "server";
};
cluster {
name = "*.arpa";
type = kline, unkline, locops, xline, resv;
};
shared {
name = "irc2.some.server";
user = "oper@my.host.is.spoofed";
type = kline, unkline, resv;
};
kill {
user = "bad@*.hacked.edu";
reason = "Obviously hacked account";
};
kill {
user = "^O[[:alpha:]]?[[:digit:]]+(x\.o|\.xo)$@^[[:alnum:]]{4}\.evilnet.org$";
type = regex;
};
deny {
ip = "10.0.1.0/24";
reason = "Reconnecting vhosted bots";
};
exempt {
ip = "192.168.0.0/16";
};
resv {
reason = "There are no services on this network";
nick = "nickserv";
nick = "chanserv";
channel = "#services";
reason = "Clone bots";
nick = "clone*";
};
gecos {
name = "*sex*";
reason = "Possible spambot";
};
gecos {
name = "sub7server";
reason = "Trojan drone";
};
gecos {
name = "*http*";
reason = "Spambot";
};
gecos {
name = "^\[J[0o]hn Do[3e]\]-[0-9]{2,5}$";
type = regex;
};
channel {
disable_fake_channels = yes;
restrict_channels = no;
disable_local_channels = no;
use_invex = yes;
use_except = yes;
use_knock = yes;
knock_delay = 1 minutes;
knock_delay_channel = 1 minute;
burst_topicwho = yes;
max_chans_per_user = 25;
quiet_on_ban = yes;
max_bans = 25;
join_flood_count = 16;
join_flood_time = 8 seconds;
default_split_user_count = 0;
default_split_server_count = 0;
no_create_on_split = yes;
no_join_on_split = no;
};
serverhide {
flatten_links = no;
links_delay = 5 minutes;
hidden = no;
disable_hidden = no;
hide_servers = no;
hidden_name = "*.hidden.com";
hide_server_ips = no;
};
general {
gline_min_cidr = 16;
gline_min_cidr6 = 48;
invisible_on_connect = yes;
burst_away = no;
use_whois_actually = yes;
kill_chase_time_limit = 90;
hide_spoof_ips = yes;
ignore_bogus_ts = no;
disable_auth = no;
disable_remote_commands = no;
tkline_expire_notices = no;
default_floodcount = 10;
failed_oper_notice = yes;
dots_in_ident = 2;
dot_in_ip6_addr = no;
min_nonwildcard = 4;
min_nonwildcard_simple = 3;
max_accept = 20;
anti_nick_flood = yes;
max_nick_time = 20 seconds;
max_nick_changes = 5;
anti_spam_exit_message_time = 5 minutes;
ts_warn_delta = 30 seconds;
ts_max_delta = 5 minutes;
kline_with_reason = yes;
kline_reason = "Connection closed";
reject_hold_time = 0;
warn_no_nline = yes;
stats_e_disabled = no;
stats_o_oper_only = yes;
stats_P_oper_only = yes;
stats_i_oper_only = yes;
stats_k_oper_only = yes;
caller_id_wait = 1 minute;
opers_bypass_callerid = no;
pace_wait_simple = 1 second;
pace_wait = 10 seconds;
short_motd = no;
ping_cookie = no;
no_oper_flood = yes;
true_no_oper_flood = yes;
oper_pass_resv = yes;
idletime = 0;
havent_read_conf = 1;
max_targets = 4;
client_flood = 2560 bytes;
message_locale = "standard";
oper_only_umodes = bots, cconn, cconn_full, debug, full, skill,
nchange, rej, spy, external, operwall,
locops, unauth;
oper_umodes = bots, locops, servnotice, operwall, wallop;
#servlink_path = "/usr/local/ircd/bin/servlink";
#default_cipher_preference = "BF/168";
# use_egd = yes;
# egdpool_path = "/var/run/egd-pool";
# compression_level = 6;
throttle_time = 10;
};
glines {
enable = yes;
duration = 1 day;
logging = reject, block;
user = "god@I.still.hate.packets";
name = "hades.arpa";
action = reject, block;
user = "god@*";
name = "*";
action = block;
};
modules {
path = "/usr/local/ircd/modules";
path = "/usr/local/ircd/modules/autoload";
#module = "some_module.so";
};
# vi /etc/sysconfig/iptables
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 6669 -j ACCEPT
# vi /etc/ircd/ircd.motd
# chkconfig --add ircd
irssi yum install glib2-devel openssl-devel # wget http://irssi.org/files/irssi-0.8.13.tar.gz # ./configure --enable-ssl --with-bot # make # make install http://d.hatena.ne.jp/papa-to-juju/20101119/1290138154 http://webtech-walker.com/archive/2010/02/01090136.html
