On Tue, 16 Jul 2024 09:48:56 -0700
"Odusseus71" (VERT) <VERT![email protected]> wrote:

Hello, a question from an (old) newbie to Synchronet BBS
configuration: just a quick hint for configuring Chat Section Irc
Client (irc.js) to access a private ircd-hybrid server: where to
input the password required by the Ircd-Hybrid Server? The [chat_sec]
section of modopt.ini does only allow to 1) set irc = on 2) override
irc server/port and channel settings with custom ones. Exploring the
module irc.js was not helpful to me.

Thanks in advance for any support!

---
� Synchronet � Vertrauen � Home of Synchronet �
[vert/cvs/bbs].synchro.net

I don't think that is supported. I've never had to login to an IRC
server that requires a password in 30 years of IRCing.
If it's possible to give an example, I can take a look. It shouldn't be
too difficult.
--
End Of The Line BBS - Plano, TX
telnet endofthelinebbs.com 23
---
� Synchronet � End Of The Line BBS - endofthelinebbs.com

Thank you for answering me!

I've just followed some guides for customizing Ircd Hybrid config (on Raspberry Pi), and usually they suggest to include an encrypted password authentication for any user, as per the related Ircd config section:

auth {
user = "*@*";
class = "users";
flags = need_password;
encrypted = yes;
password = "PASSWORD_FROM_mkpasswd";
};

Maybe I just have to consider to remove this if I want to allow joining from the BBS.

Thanks!

---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Re: Re: Password setting for Irc Client accessing a private irc server
By: nelgin to Odusseus71 on Tue Jul 16 2024 12:29 pm

I don't think that is supported. I've never had to login to an IRC
server that requires a password in 30 years of IRCing.

Oh, it's not a rarity. The ability to login to irc servers using a password
is in every irc client i've seen.

also, you never used a znc/bnc? that's essentially like you are logging into a irc server that requires a password.

He should be able to login with a client using the quote command.
---
� Synchronet � ::: BBSES.info - free BBS services :::

On Tue, 16 Jul 2024 12:06:31 -0700
"Odusseus71" (VERT) <VERT![email protected]> wrote:

Thank you for answering me!

I've just followed some guides for customizing Ircd Hybrid config (on Raspberry Pi), and usually they suggest to include an encrypted
password authentication for any user, as per the related Ircd config
section:

auth {
user = "*@*";
class = "users";
flags = need_password;
encrypted = yes;
password = "PASSWORD_FROM_mkpasswd";
};

Maybe I just have to consider to remove this if I want to allow
joining from the BBS.

Thanks!

---
� Synchronet � Vertrauen � Home of Synchronet �
[vert/cvs/bbs].synchro.net

How are people going to get on the IRC server, unless you only want it
open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins?
Or you have to give out a common password? Doesn't make sense.
--
End Of The Line BBS - Plano, TX
telnet endofthelinebbs.com 23
---
� Synchronet � End Of The Line BBS - endofthelinebbs.com

Re: Re: Password setting for Irc Client accessing a private irc server
By: nelgin to All on Tue Jul 16 2024 09:27 pm

How are people going to get on the IRC server, unless you only want it open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins? Or you have to give out a common password? Doesn't make sense.

I seem to recall seeing one or two IRC servers with passwords in my time using IRC. And yes, one of the use cases is only having it be open to a certain group of users.

Nightfox

---
� Synchronet � Digital Distortion: digitaldistortionbbs.com

Re: Re: Password setting for Irc Client accessing a private irc server
By: nelgin to All on Tue Jul 16 2024 09:27 pm

How are people going to get on the IRC server, unless you only want it
open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins?
Or you have to give out a common password? Doesn't make sense.

This is a common occurance. you can join the server with the server's password. it's not a separate password for each user.

if the client does not support it, they can use a quote command.

it makes total sense. It's to prevent attacks and unwanted users. IRC is known for these things.

---
� Synchronet � ::: BBSES.info - free BBS services :::

Re: Re: Password setting for Irc Client accessing a private irc server
By: nelgin to All on Tue Jul 16 2024 21:27:55

flags = need_password;
encrypted = yes;
password = "PASSWORD_FROM_mkpasswd";
};

Maybe I just have to consider to remove this if I want to allow
joining from the BBS.

Thanks!

---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

How are people going to get on the IRC server, unless you only want it
open to BBS users and you can do that with I:line restrictions anyway, otherwise you have to make a password for every single user who joins?
Or you have to give out a common password? Doesn't make sense.

This is a common occurance. you can join the server with the server's password. it's not a separate password for each user.

if the client does not support it, they can use a quote command.

it makes total sense. It's to prevent attacks and unwanted users. IRC is known for these things.


hi there nelgin!

---
� Synchronet � End Of The Line BBS - endofthelinebbs.com

On Tue, 16 Jul 2024 19:48:28 -0700
"Nightfox" (VERT/DIGDIST) <VERT/DIGDIST![email protected]>
wrote:

Re: Re: Password setting for Irc Client accessing a private irc
server By: nelgin to All on Tue Jul 16 2024 09:27 pm

How are people going to get on the IRC server, unless you only
want it open to BBS users and you can do that with I:line
restrictions anyway, otherwise you have to make a password for
every single user who joins? Or you have to give out a common
password? Doesn't make sense.

I seem to recall seeing one or two IRC servers with passwords in my
time using IRC. And yes, one of the use cases is only having it be
open to a certain group of users.

Nightfox

---
� Synchronet � Digital Distortion: digitaldistortionbbs.com

Must have been some odd, off the radar IRC network then. EFnet, ircnet, undernet, DALnet never had password protected servers.
--
End Of The Line BBS - Plano, TX
telnet endofthelinebbs.com 23
---
� Synchronet � End Of The Line BBS - endofthelinebbs.com

Thank you very much to everyone answering my question.

BR

---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Re: Re: Password setting for Irc Client accessing a private irc server
By: nelgin to All on Wed Jul 17 2024 12:03 pm

I seem to recall seeing one or two IRC servers with passwords in my
time using IRC. And yes, one of the use cases is only having it be
open to a certain group of users.

Must have been some odd, off the radar IRC network then. EFnet, ircnet, undernet, DALnet never had password protected servers.

you just named off the shittiest scrub ircservers that have always been that way.
---
� Synchronet � ::: BBSES.info - free BBS services :::

On 16 Jul 2024, MRO said the following...

Re: Re: Password setting for Irc Client accessing a private irc server
By: nelgin to Odusseus71 on Tue Jul 16 2024 12:29 pm

I don't think that is supported. I've never had to login to an IRC server that requires a password in 30 years of IRCing.

Oh, it's not a rarity. The ability to login to irc servers using a password is in every irc client i've seen.

japanese ircnet servers have allowed connections outside of *.jp hosts for at least 20 years with the same password. i guess it was sufficient enough that it's not something the l33t hackers would think to search. and you'd have to translate the text to get the password (which might not have been easy until around 2006 without actual books or someone that can read it)

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: cold fusion - cfbbs.net - grand rapids, mi

I have 6 IRC connections that have been connected for a couple of weeks now. What are they doing? 4 of them show the same IP. I cannot see what they are doing. Is this good or bad? I just ignore them but should I be concerned?

---
� Synchronet � Ricks BBS - RICKSBBS.SYNCHRO.NET

Re: Re: Password setting for Irc Client accessing a private irc server
By: Rixter to fusion on Thu Jul 18 2024 09:56 am

I have 6 IRC connections that have been connected for a couple of weeks now. What are they doing? 4 of them show the same IP. I cannot see what they are doing. Is this good or bad? I just ignore them but should I be concerned?

If your IRC server is connect to vert and is up for a while, it'll become part of the rotating irc.synchro.net resolution. When that happens, any client that connects to irc.synchro.net might connect to *your* server.

Or, some one found your irc server by port-scanning or maybe a BBS listing.

Enabling debug-level logging will give you better insight into what that client is doing, but no, I wouldn't be concerned.
--
digital man (rob)

This Is Spinal Tap quote #41:
Ian Faith: It says "Memphis show cancelled due to lack of advertising funds." Norco, CA WX: 80.7�F, 59.0% humidity, 2 mph SSW wind, 0.00 inches rain/24hrs ---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

On 18 Jul 2024, Rixter said the following...

I have 6 IRC connections that have been connected for a couple of weeks now. What are they doing? 4 of them show the same IP. I cannot see what they are doing. Is this good or bad? I just ignore them but should I be concerned? ---

people stay connected to irc a lot and just idle when they're not at the computer.. for example on one server i'm on i logged on June 7th and if i get disconnected it just gets right back on.

if it were a problem somebody would notice an extra 100+ users (or whatever) on the network and probably look into it..

--- Mystic BBS v1.12 A47 2021/12/25 (Windows/32)
* Origin: cold fusion - cfbbs.net - grand rapids, mi

On Thu, 18 Jul 2024 09:56:42 -0400
"Rixter" (VERT/RICKSBBS) <VERT/RICKSBBS![email protected]>
wrote:

I have 6 IRC connections that have been connected for a couple of
weeks now. What are they doing? 4 of them show the same IP. I cannot
see what they are doing. Is this good or bad? I just ignore them but
should I be concerned?

---
� Synchronet � Ricks BBS - RICKSBBS.SYNCHRO.NET

Maybe.
You could see if you can turn debugging on and log what's being sent.
You could use tcpdump (linux) or some other tool for windows to snoop
their connection if they're not on via a secure channel.
You could connect to your server and find out who they are and ask
them, or check their idle time.
It's most likely stuck or forgotten clients but it could also be some
of those spambots.
--
End Of The Line BBS - Plano, TX
telnet endofthelinebbs.com 23
---
� Synchronet � End Of The Line BBS - endofthelinebbs.com