OFTC's IRC Services
Home Page: https://www.oftc.net/CodingProjects/
License: GNU General Public License v2.0
Welcome to OFTC, the Open and Free Technology Community.
Our main web presence is at https://www.oftc.net/, including instructions how to connect to our IRC network at irc.oftc.net.
Stop by on #oftc or mail [email protected] if you have any questions regarding operation of the network.
Use this GitHub repository to report general issues with OFTC that are not specific to the other repositories here. Do not submit any passwords or other account data here, issues reported are publically visible.
You're good at what you do. While I could not for shit set this up, you have created something useful to your network and to many others (at least one last I checked).
<viemacsened> hello, when using /nickserv ajoin, it seems you're allowed to bypass channel modes - at least +i and +k
I've revoked INSERT and UPDATE on the account_autojoin table for now, but we need a proper fix for this.
When two nicknames are both on a groupserv ACL, nickserv LINK will report an error:
LINK failed to master <nickname>. This may have been an internal error
Removing the user from the groupserv ACL allows the link to continue.
Thanks
On services startup, we sometimes cloak tor users twice:
!coulomb Activating Cloak: 0BGAAAMXP.tor-irc.dnsbl.oftc.net -> 00012b9d.user.oftc.net for Fredzupy
!coulomb Activating Cloak: 00012b9d.user.oftc.net -> 0BGAAAMXP.tor-irc.dnsbl.oftc.net for Fredzupy
We should try to avoid that.
They probably should be, or else the password can be reset multiple times and if someone pastes their token after use the account can be taken over
I have just requested /msg nickserv SENDPASS, and got an email with a command to paste in IRC in order to change my password, in the form of "/msg NickServ SENDPASS mynick small-number:big-number "
After this, the nickserv had some trouble to recognize me, but eventually it did. Unfortunately, I pasted and sent the message with the big number into the #oftc room because I though this command expires after being used, but to my surprise, people on the channel were able to change my password!
This is very disturbing and I hope I dont lose my nick.
Please, update the system so that this big number becomes invalid after one-time use.
The code for this seems to be inside the file: oftc-ircservices/modules/nickserv.c
[2016-09-08 17:48:19] RUBY INFO: Loading ruby module: /home/oftc/ircservices/services/lib/oftc-ircservices//Bopm.rb
[2016-09-08 17:48:19] RUBY ERROR: ArgumentError: unknown encoding name: binary
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/openssl/buffering.rb:1
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/openssl/ssl.rb:17:in `require'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/openssl/ssl.rb:17:in `<top (required)>'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/openssl.rb:24:in `require'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/openssl.rb:24:in `<top (required)>'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/securerandom.rb:2:in `require'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/securerandom.rb:2:in `<top (required)>'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/resolv.rb:7:in `require'
[2016-09-08 17:48:19] RUBY BACKTRACE: /usr/lib/ruby/2.1.0/resolv.rb:7:in `<top (required)>'
[2016-09-08 17:48:19] RUBY BACKTRACE: /home/oftc/ircservices/services/lib/oftc-ircservices/Bopm.rb:2:in `require'
[2016-09-08 17:48:19] RUBY BACKTRACE: /home/oftc/ircservices/services/lib/oftc-ircservices/Bopm.rb:2:in `<class:Bopm>'
[2016-09-08 17:48:19] RUBY BACKTRACE: /home/oftc/ircservices/services/lib/oftc-ircservices/Bopm.rb:1:in `<top (required)>'
[2016-09-08 17:48:19] RUBY INFO: Failed to load file /home/oftc/ircservices/services/lib/oftc-ircservices//Bopm.rb
I could "fix" this by replacing the # coding: binary in the first line of /usr/lib/ruby/2.1.0/openssl/buffering.rb by # coding: UTF-8.
No idea if that's something to be fixed in ircservices, we just need to remember the fix for the next ruby update which will revert buffering.rb back to the original.
Hello,
I cannot start the server because I get the following error:
# /etc/init.d/oftcdns start Starting OFTCDNS daemon: oftcdnsUnhandled Error
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/twisted/application/app.py", line 642, in run
runApp(config)
File "/usr/lib/python2.7/dist-packages/twisted/scripts/twistd.py", line 23, in runApp
_SomeApplicationRunner(config).run()
File "/usr/lib/python2.7/dist-packages/twisted/application/app.py", line 376, in run
self.application = self.createOrGetApplication()
File "/usr/lib/python2.7/dist-packages/twisted/application/app.py", line 441, in createOrGetApplication
application = getApplication(self.config, passphrase)
--- <exception caught here> ---
File "/usr/lib/python2.7/dist-packages/twisted/application/app.py", line 452, in getApplication
application = service.loadApplication(filename, style, passphrase)
File "/usr/lib/python2.7/dist-packages/twisted/application/service.py", line 405, in loadApplication
application = sob.loadValueFromFile(filename, 'application', passphrase)
File "/usr/lib/python2.7/dist-packages/twisted/persisted/sob.py", line 210, in loadValueFromFile
exec fileObj in d, d
File "/usr/local/lib/oftcdns/oftcdns.tac", line 20, in <module>
from twistedsnmp import agent, agentprotocol, bisectoidstore
File "/usr/local/lib/python2.7/dist-packages/twistedsnmp/agent.py", line 4, in <module>
from twistedsnmp import datatypes
File "/usr/local/lib/python2.7/dist-packages/twistedsnmp/datatypes.py", line 9, in <module>
from twistedsnmp.pysnmpproto import v2c,v1,rfc1902
exceptions.ImportError: cannot import name v2c
Failed to load application: cannot import name v2c
I am using Ubuntu Server 14.04.1
Groupserv could allow renaming groups. The database is only storing IDs, so this would probably be a simple UPDATE on group.name.
/usr/bin/ld: ruby_module/libruby_module.a(libruby_module_a-nickname.o):/build/oftc-ircservices/src/ruby_module/nickname.c:4: multiple definition of `cNickname'; ruby_module/libruby_module.a(libruby_module_a-client.o):/build/oftc-ircservices/src/ruby_module/client.c:7: first defined here
/usr/bin/ld: ruby_module/libruby_module.a(libruby_module_a-servicemodule.o):/build/oftc-ircservices/src/ruby_module/servicemodule.c:11: multiple definition of `cClient'; ruby_module/libruby_module.a(libruby_module_a-client.o):/build/oftc-ircservices/src/ruby_module/client.c:6: first defined here
One can work around this with -fcommon, but it should be fixed properly.
The last_used info for almost all channels is pretty outdated, it doesn't seem do be updated during normal operation.
could you add a section to https://www.oftc.net/Tor/ to say tor users can't get support
in #oftc from anyone else but staff, unless they get a cloak, and link to the cloaks page.
I spent a day waiting for others to reply to what I was sending :-)
I am sorry for asking here but could not find a better place.
I tried to connect via https://www.oftc.net/Services webfront end.
It does not work but also does not give me any error message.
It just looks like this.
I tried Firefox ESR and MS Edge legacy. On the current machine I have no IRC client available and I am not allowed to install it.
Bopm was issuing a lot of these akills.
Question 1: Why was score 1? (Efnetrbl was screwed up at that time, but why didn't that result in score 0?)
Question 2: Why was the list of matched dnsbls empty ([]) ?
Sun Jan 8 18:10:40 2017 services.oftc.net {Bopm} KILLING [email protected] with score: 1 [] [#l, #c]
Sun Jan 8 18:10:40 2017 services.oftc.net Bopm Added akill on *@1.1.1.7 because This host may be infected. Mail [email protected] with questions. BOPM for 1209600 seconds
Sun Jan 8 18:10:40 2017 helix.oftc.net *** Notice -- [email protected]{services.oftc.net} added temporary 20160 min. K-Line for [*@1.1.1.7] [autokilled: This host may be infected. Mail [email protected] with questions. BOPM (2017-01-08 18:10:40)]
Dropping the non-master nick Lepton:
15 23:01 [testnet] !services Dropping channel #myon because its access list would
be left empty by drop of nickname Myon
15 23:01 [testnet] !services [email protected] dropped nick Lepton
15 23:01 [testnet] !services [email protected] registered nick Lepton
There seems to be no upper limit; I tried over 1000 entries and they caused some significant lag when re-creating the empty channel on rejoin. Adding over 100,000 or even multiple million entries will take some time but might really cause a DoS affecting the whole network. Once the list is set up, to cause disruption, all needed is to /part and /join again. And again. And again. And again. :/
d56402c fixes loading of ruby modules, but unfortunately rb_require doesn't reload the file from disk when called again. The web says to use "load" instead, but my attempts to do that from C failed, so I went with the require version. We should fix that eventually, though.
UNLINK fails because it can't create a new account for the unlinked nick:
2018-05-30 11:37:38 GMT [5464-2373855] ircservices@ircservices ERROR: duplicate key value violates unique constraint "account_primary_nick_idx"
2018-05-30 11:37:38 GMT [5464-2373856] ircservices@ircservices DETAIL: Key (primary_nick)=(193637) already exists.
2018-05-30 11:37:38 GMT [5464-2373857] ircservices@ircservices STATEMENT: INSERT INTO account (primary_nick, password, salt, url, email, cloak, flag_enforce, flag_secure, flag_verified, flag_cloak_enabled, flag_admin, flag_email_verified, flag_private, language, last_host, last_realname, last_quit_msg, last_quit_time, reg_time) SELECT primary_nick, password, salt, url, email, cloak, flag_enforce, flag_secure, flag_verified, flag_cloak_enabled, flag_admin, flag_email_verified, flag_private, language, last_host, last_realname, last_quit_msg, last_quit_time, reg_time FROM account WHERE id=$1
At the moment it reports "$masternick is now unlinked" when unlinking $nick, but that might be a follow-up error from the above.
[2016-09-06 21:57:07] Dying: got SIGTERM
Core was generated by `/home/oftc/ircservices/services/bin/services -foreground'.
Program terminated with signal SIGABRT, Aborted.
#0 0x00007f3ee4814067 in raise () from /lib/x86_64-linux-gnu/libc.so.6
#1 0x00007f3ee4815448 in abort () from /lib/x86_64-linux-gnu/libc.so.6
#2 0x00007f3ee48521b4 in ?? () from /lib/x86_64-linux-gnu/libc.so.6
#3 0x00007f3ee485798e in ?? () from /lib/x86_64-linux-gnu/libc.so.6
#4 0x000000000042810d in MyFree (x=<optimized out>) at ../mem/memory.h:63
#5 unregister_callback (cb=0x140be80) at hook.c:84
#6 0x00000000004187b0 in cleanup_interface () at interface.c:192
#7 0x000000000042189b in services_die (msg=msg@entry=0x444152 "got SIGTERM",
rboot=rboot@entry=0) at services.c:365
#8 0x000000000042192c in signal_handler (signum=15) at services.c:389
#9 <signal handler called>
#10 0x00007f3ee48bed3d in poll () from /lib/x86_64-linux-gnu/libc.so.6
#11 0x0000000000427425 in comm_select () at poll.c:176
#12 0x000000000040f8a5 in main (argc=0, argv=0x7ffed12e4408) at services.c:291
I was using the permanent ChanServ "QUIET" list in conjunction with the "expirebans" setting. I expected the quiet list to override the "expirebans" setting, so that I could add some permanent quiets which would stay permanently. This also seems to be the intended behavior, as the QUIET list still contains the quiet I've added... but the +q on the channel has automatically been removed by ChanServ after the time specified in "expirebans".
My workaround for this issue is to disable the "expirebans" setting for now.
Some user had "off" set as email. There should be an official way to go without an email address.
Currently chanserv simply says a channel isn't registered when it's in fact in the forbidden_channel list. It should tell opers/admins about that.
Steps to reproduce:
Expected behavior:
ChanServ removes the limit from the channel (/mode #channel -l)
Actual behavior:
ChanServ does not remove anything but simply stops automatically adjusting the now static limit.
On Debian unstable:
checking openssl/sha.h usability... yes
checking openssl/sha.h presence... yes
checking for openssl/sha.h... yes
checking for SSL_library_init in -lssl... no
configure: error: openssl library not found
"make install" installs the Ruby modules in share/oftc-ircservices, but at runtime the loader tries to load them from lib/oftc-ircservices.
<weasel> set @foo DESC tor channel operators
-GroupServ([email protected])- Too many parameters. Expected no more than 2. Got 4.
<weasel> set @foo DESC :tor channel operators
Apparently our Bopm.rb accepts dnsbl A answers even if the returned value is not in the list of configured "codes". We should ignore these results, and maybe even filter out all non-127 IPs.
On OFTC, I set NickServ's ajoin list to join a bunch of channels, some of which are +R.
When connecting, the ajoins all get processed before I'm actually capable of joining +R channels, so some of the joins fail, defeating most of the reason to use ajoin in the first place.
Snippet from my client looks like (channel names edited):
07:25:48 [OFTC2] -!- - Thanks and enjoy your stay! The OFTC team.
07:25:48 [OFTC2] -!- End of /MOTD command.
07:25:48 [OFTC2] -!- Mode change [+i] for user Peng__
07:25:48 [OFTC2] -!- Mode change [+w] for user Peng__
07:25:48 [OFTC2] !larich.oftc.net Activating Cloak: 00012c51.user.oftc.net
07:25:48 [OFTC2] -!- #foo Cannot join channel (Need to be identified and verified to join this channel, '/msg NickServ help' to learn how to register and verify.)
07:25:48 [OFTC2] -!- Cannot join to channel #bar (You must be invited)
07:25:48 [OFTC2] -!- #baz Cannot join channel (Need to be identified and verified to join this channel, '/msg NickServ help' to learn how to register and verify.)
07:25:48 [OFTC2] -!- Mode change [+R] for user Peng__
07:25:48 [OFTC2] -NickServ([email protected])- You are connected using SSL and have provided a matching client certificate
07:25:48 [OFTC2] -NickServ([email protected])- for nickname Peng__. You have been automatically identified.
07:25:50 [OFTC2] -!- Irssi: Your nick is owned by Matt Nordhoff [[email protected]]
(The +Ri channel failed for two reasons!)
(:
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
Django
The Web framework for perfectionists with deadlines.
Laravel
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft
Open source projects and samples from Microsoft.
Google
Google ❤️ Open Source for everyone.
Alibaba
Alibaba Open Source for everyone
D3
Data-Driven Documents codes.
Tencent
China tencent open source team.