$Id: notes.for.admins,v 1.16 2010/01/12 23:00:39 avenj Exp avenj $ This file is somewhat of a work in progress. It amounts to a mostly unorganized collection of advice to blackcobalt server administrators. I'll be adding to it as I think of things. avenj (jdp@oppresses.us) ircd src: http://blackcobalt.net/ircd.html Installation for BC servers should be easy, defaults are already tuned: % ./configure --prefix=/home/user/irc/servername % make && make install If you want m_spoof/m_opme/m_ojoin: % cd contrib && make install etc/example.conf is an almost-reasonable example blackcobalt conf. However, it has lots of bugs and weirdnesses (and an open oline!) It is not what we have deployed live. Read it & example.conf.default, then consult with me (avenj) for an up-to-date configuration. Do not deploy example.conf. Accurate timekeeping is very important on TS servers (like hybrid). It is used to determine who "wins" after a network rejoin. (See ts3.txt, ts5.txt, ts6.txt in $srcdir/doc for details) Servers should be running ntpd to maintain an accurate system time. DIE/RESTART no longer require a passwd, only the die operator{} flag. (Syntax has changed; use /die servername) SET is extremely flexible on hybrid7. In particular, it offers a lot of flood control options (see ircd.conf also). /QUOTE HELP SET STATS offers a few admin-specific options (see /QUOTE HELP STATS): /STATS F - file descriptors /STATS E - event status /STATS A - dns servers /STATS h - callback stats Modules can be manipulated on-the-fly with MODLIST, MODLOAD, MODUNLOAD If running m_spoof.so, make sure to prepend ircd.conf with: .include "spoof.conf" // on-the-fly spoofs .include "local.spoof.conf" // optional, local hardcoded spoofs I-line (auth {}) spoofing can be done by either password auth or IP address. Note that I didn't say "hostmask"? Since I-lines are matched before name resolution takes place, it MUST be an IP address raider & eris run a common local.spoof.conf; any changes should be shared. On-the-fly spoofs can be created with /SPOOF, see /QUOTE HELP SPOOF (Use sparingly! See above regarding IP vs hostmask) Hybrid7 (TS6) servers must have a unique SID specified in ircd.conf. oppresses.us servers start sequentially at 1A1 blackcobalt.net servers start at 2A1 Check /MAP for currently-used SIDs If you want to use the fname_*log files specified in ircd.conf, they must first be created via `touch` All blackcobalt servers should accept remote klines (shared{}) from the rest of the network. We wish to stay away from using GLINE when possible. Accepting GLINES is optional. use_invex use_quiet and use_except must always be enabled in channel{} use_whois_actually should be disabled in general{} LINKS behavior is a little different. Links data is written to etc/links.txt at regular (configurable) intervals and returned via /LINKS to cut down on overhead (yes, I know, no big deal on a small network) /MAP is always current. ***** Specifically for the raider team ***** Everything is in irc/ and the layout is (finally) clean and self-explanatory. Config is split between ircd.conf/oper.conf/servers.conf & they're all in RCS We are using cryptlinks (key auth & encrypted server links) rather than password authentication for servers. This is a far superior linking mechanism and pretty self-explanatory but it requires valid RSA pubkeys (check keys/) ALL CONFIG CHANGES ON RAIDER GO IN RCS! Please read my little notes in the ircd & services configuration directories. It's important. I will definitely cut you.