RE: ircd+enge5 patch released

["Jeroen Massar" <jeroen@xxxxxxxxx>]

grega@xxxxxxxxxx wrote:
> fiction =f528764d.915e786e.0.1 * :neki
> looks quite good...
> but then you can do stats L and the whole md5 stuff becomes
> useless (notice that however by default stats L is disabled
> for non-opers) fiction[fiction@xxxxxxxxx] 0 23 1 8 0 :52
>
> 915e786e is part of the md5 hash of the servername - why is it good to
include such a thing?
>
> I would prefer some user flag - like +x to turn that option on and
off.
> Bans (and +e and +I) should work for both - the scrambeled
> host and for the real. And lets say a local oper can always
> see the real host if he is doing whois,
> userhost or something.

Actually something along the lines of this part of the patch are in use
by the Cyclone ircd derivative (see http://www.slashnet.org) as used on
the SlashNet irc network, yeps... the one related to Slashdot.org.

With Cyclone the user can "cloak" their hostname:
eg, I would join up as Fuzzel!jeroen@xxxxxxxxxxxxxxxxx where I would
actually be Fuzzel!jeroen@xxxxxxxxxxxxxxxxxxxx
They called this mode +z and the user can set mode -z and the cloaking
feature is automagically turned off. Opers will always see the users
real host when they do whois just like the user itself, it's just an
additional reply from the server.

It does "protect" the users/clients, channel ops can still ban them and
the most common practice is to ban the whole domain along with the ident
anyways (at least of what I've seen :)...

One small side effect one should consider is the fact that a malicious
user still is able to see the server hostname. And such nice persons
will then not attack the client but will simply flood the server...
cause they are 7331... or however they write that :)

Greets,
 Jeroen