• Re: Password setting for

    From nelgin@VERT/EOTLBBS to Odusseus71 on Tuesday, July 16, 2024 12:29:00
    On Tue, 16 Jul 2024 09:48:56 -0700
    "Odusseus71" (VERT) <VERT![email protected]> wrote:
    Hello, a question from an (old) newbie to Synchronet BBS
    configuration: just a quick hint for configuring Chat Section Irc
    Client (irc.js) to access a private ircd-hybrid server: where to
    input the password required by the Ircd-Hybrid Server? The [chat_sec]
    section of modopt.ini does only allow to 1) set irc = on 2) override
    irc server/port and channel settings with custom ones. Exploring the
    module irc.js was not helpful to me.

    Thanks in advance for any support!

    ---
    � Synchronet � Vertrauen � Home of Synchronet �
    [vert/cvs/bbs].synchro.net
    I don't think that is supported. I've never had to login to an IRC
    server that requires a password in 30 years of IRCing.
    If it's possible to give an example, I can take a look. It shouldn't be
    too difficult.
    --
    End Of The Line BBS - Plano, TX
    telnet endofthelinebbs.com 23
    ---
    � Synchronet � End Of The Line BBS - endofthelinebbs.com
  • From Odusseus71@VERT to nelgin on Tuesday, July 16, 2024 12:06:00
    Thank you for answering me!

    I've just followed some guides for customizing Ircd Hybrid config (on Raspberry Pi), and usually they suggest to include an encrypted password authentication for any user, as per the related Ircd config section:

    auth {
    user = "*@*";
    class = "users";
    flags = need_password;
    encrypted = yes;
    password = "PASSWORD_FROM_mkpasswd";
    };

    Maybe I just have to consider to remove this if I want to allow joining from the BBS.

    Thanks!

    ---
    � Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net
  • From MRO@VERT/BBSESINF to nelgin on Tuesday, July 16, 2024 15:17:00
    Re: Re: Password setting for Irc Client accessing a private irc server
    By: nelgin to Odusseus71 on Tue Jul 16 2024 12:29 pm

    I don't think that is supported. I've never had to login to an IRC
    server that requires a password in 30 years of IRCing.

    Oh, it's not a rarity. The ability to login to irc servers using a password
    is in every irc client i've seen.

    also, you never used a znc/bnc? that's essentially like you are logging into a irc server that requires a password.

    He should be able to login with a client using the quote command.
    ---
    � Synchronet � ::: BBSES.info - free BBS services :::
  • From nelgin@VERT/EOTLBBS to All on Tuesday, July 16, 2024 21:27:00
    On Tue, 16 Jul 2024 12:06:31 -0700
    "Odusseus71" (VERT) <VERT![email protected]> wrote:
    Thank you for answering me!

    I've just followed some guides for customizing Ircd Hybrid config (on Raspberry Pi), and usually they suggest to include an encrypted
    password authentication for any user, as per the related Ircd config
    section:

    auth {
    user = "*@*";
    class = "users";
    flags = need_password;
    encrypted = yes;
    password = "PASSWORD_FROM_mkpasswd";
    };

    Maybe I just have to consider to remove this if I want to allow
    joining from the BBS.

    Thanks!

    ---
    � Synchronet � Vertrauen � Home of Synchronet �
    [vert/cvs/bbs].synchro.net
    How are people going to get on the IRC server, unless you only want it
    open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins?
    Or you have to give out a common password? Doesn't make sense.
    --
    End Of The Line BBS - Plano, TX
    telnet endofthelinebbs.com 23
    ---
    � Synchronet � End Of The Line BBS - endofthelinebbs.com
  • From Nightfox@VERT/DIGDIST to nelgin on Tuesday, July 16, 2024 19:48:00
    Re: Re: Password setting for Irc Client accessing a private irc server
    By: nelgin to All on Tue Jul 16 2024 09:27 pm

    How are people going to get on the IRC server, unless you only want it open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins? Or you have to give out a common password? Doesn't make sense.

    I seem to recall seeing one or two IRC servers with passwords in my time using IRC. And yes, one of the use cases is only having it be open to a certain group of users.

    Nightfox

    ---
    � Synchronet � Digital Distortion: digitaldistortionbbs.com
  • From MRO@VERT/BBSESINF to nelgin on Tuesday, July 16, 2024 22:15:00
    Re: Re: Password setting for Irc Client accessing a private irc server
    By: nelgin to All on Tue Jul 16 2024 09:27 pm

    How are people going to get on the IRC server, unless you only want it
    open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins?
    Or you have to give out a common password? Doesn't make sense.


    This is a common occurance. you can join the server with the server's password. it's not a separate password for each user.

    if the client does not support it, they can use a quote command.

    it makes total sense. It's to prevent attacks and unwanted users. IRC is known for these things.

    ---
    � Synchronet � ::: BBSES.info - free BBS services :::
  • From Jas Hud@VERT/EOTLBBS to nelgin on Tuesday, July 16, 2024 22:20:00
    Re: Re: Password setting for Irc Client accessing a private irc server
    By: nelgin to All on Tue Jul 16 2024 21:27:55

    flags = need_password;
    encrypted = yes;
    password = "PASSWORD_FROM_mkpasswd";
    };

    Maybe I just have to consider to remove this if I want to allow
    joining from the BBS.

    Thanks!

    ---
    � Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net
    How are people going to get on the IRC server, unless you only want it
    open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins?
    Or you have to give out a common password? Doesn't make sense.



    This is a common occurance. you can join the server with the server's password. it's not a separate password for each user.

    if the client does not support it, they can use a quote command.

    it makes total sense. It's to prevent attacks and unwanted users. IRC is known for these things.


    hi there nelgin!

    ---
    � Synchronet � End Of The Line BBS - endofthelinebbs.com
  • From nelgin@VERT/EOTLBBS to All on Wednesday, July 17, 2024 12:03:00
    On Tue, 16 Jul 2024 19:48:28 -0700
    "Nightfox" (VERT/DIGDIST) <VERT/DIGDIST![email protected]>
    wrote:
    Re: Re: Password setting for Irc Client accessing a private irc
    server By: nelgin to All on Tue Jul 16 2024 09:27 pm

    How are people going to get on the IRC server, unless you only
    want it open to BBS users and you can do that with I:line
    restrictions anyway, otherwise you have to make a password for
    every single user who joins? Or you have to give out a common
    password? Doesn't make sense.

    I seem to recall seeing one or two IRC servers with passwords in my
    time using IRC. And yes, one of the use cases is only having it be
    open to a certain group of users.

    Nightfox

    ---
    � Synchronet � Digital Distortion: digitaldistortionbbs.com
    Must have been some odd, off the radar IRC network then. EFnet, ircnet, undernet, DALnet never had password protected servers.
    --
    End Of The Line BBS - Plano, TX
    telnet endofthelinebbs.com 23
    ---
    � Synchronet � End Of The Line BBS - endofthelinebbs.com
  • From Odusseus71@VERT to nelgin on Wednesday, July 17, 2024 12:05:00
    Thank you very much to everyone answering my question.

    BR

    ---
    � Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net
  • From MRO@VERT/BBSESINF to nelgin on Wednesday, July 17, 2024 15:04:00
    Re: Re: Password setting for Irc Client accessing a private irc server
    By: nelgin to All on Wed Jul 17 2024 12:03 pm


    I seem to recall seeing one or two IRC servers with passwords in my
    time using IRC. And yes, one of the use cases is only having it be
    open to a certain group of users.

    Must have been some odd, off the radar IRC network then. EFnet, ircnet, undernet, DALnet never had password protected servers.

    you just named off the shittiest scrub ircservers that have always been that way.
    ---
    � Synchronet � ::: BBSES.info - free BBS services :::
  • From fusion@VERT/CFBBS to MRO on Thursday, July 18, 2024 08:10:00
    On 16 Jul 2024, MRO said the following...

    Re: Re: Password setting for Irc Client accessing a private irc server
    By: nelgin to Odusseus71 on Tue Jul 16 2024 12:29 pm
    I don't think that is supported. I've never had to login to an IRC server that requires a password in 30 years of IRCing.

    Oh, it's not a rarity. The ability to login to irc servers using a password is in every irc client i've seen.

    japanese ircnet servers have allowed connections outside of *.jp hosts for at least 20 years with the same password. i guess it was sufficient enough that it's not something the l33t hackers would think to search. and you'd have to translate the text to get the password (which might not have been easy until around 2006 without actual books or someone that can read it)

    --- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
    * Origin: cold fusion - cfbbs.net - grand rapids, mi
  • From Rixter@VERT/RICKSBBS to fusion on Thursday, July 18, 2024 09:56:00
    I have 6 IRC connections that have been connected for a couple of weeks now. What are they doing? 4 of them show the same IP. I cannot see what they are doing. Is this good or bad? I just ignore them but should I be concerned?

    ---
    � Synchronet � Ricks BBS - RICKSBBS.SYNCHRO.NET
  • From Digital Man@VERT to Rixter on Thursday, July 18, 2024 10:25:00
    Re: Re: Password setting for Irc Client accessing a private irc server
    By: Rixter to fusion on Thu Jul 18 2024 09:56 am

    I have 6 IRC connections that have been connected for a couple of weeks now. What are they doing? 4 of them show the same IP. I cannot see what they are doing. Is this good or bad? I just ignore them but should I be concerned?

    If your IRC server is connect to vert and is up for a while, it'll become part of the rotating irc.synchro.net resolution. When that happens, any client that connects to irc.synchro.net might connect to *your* server.

    Or, some one found your irc server by port-scanning or maybe a BBS listing.

    Enabling debug-level logging will give you better insight into what that client is doing, but no, I wouldn't be concerned.
    --
    digital man (rob)

    This Is Spinal Tap quote #41:
    Ian Faith: It says "Memphis show cancelled due to lack of advertising funds." Norco, CA WX: 80.7�F, 59.0% humidity, 2 mph SSW wind, 0.00 inches rain/24hrs ---
    � Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net
  • From fusion@VERT/CFBBS to Rixter on Thursday, July 18, 2024 15:40:00
    On 18 Jul 2024, Rixter said the following...

    I have 6 IRC connections that have been connected for a couple of weeks now. What are they doing? 4 of them show the same IP. I cannot see what they are doing. Is this good or bad? I just ignore them but should I be concerned? ---

    people stay connected to irc a lot and just idle when they're not at the computer.. for example on one server i'm on i logged on June 7th and if i get disconnected it just gets right back on.

    if it were a problem somebody would notice an extra 100+ users (or whatever) on the network and probably look into it..

    --- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
    * Origin: cold fusion - cfbbs.net - grand rapids, mi
  • From nelgin@VERT/EOTLBBS to All on Thursday, July 18, 2024 15:28:00
    On Thu, 18 Jul 2024 09:56:42 -0400
    "Rixter" (VERT/RICKSBBS) <VERT/RICKSBBS![email protected]>
    wrote:
    I have 6 IRC connections that have been connected for a couple of
    weeks now. What are they doing? 4 of them show the same IP. I cannot
    see what they are doing. Is this good or bad? I just ignore them but
    should I be concerned?

    ---
    � Synchronet � Ricks BBS - RICKSBBS.SYNCHRO.NET
    Maybe.
    You could see if you can turn debugging on and log what's being sent.
    You could use tcpdump (linux) or some other tool for windows to snoop
    their connection if they're not on via a secure channel.
    You could connect to your server and find out who they are and ask
    them, or check their idle time.
    It's most likely stuck or forgotten clients but it could also be some
    of those spambots.
    --
    End Of The Line BBS - Plano, TX
    telnet endofthelinebbs.com 23
    ---
    � Synchronet � End Of The Line BBS - endofthelinebbs.com