Differences

This shows you the differences between two versions of the page.

--- openbsd:irc:oidentd [2019/11/22 13:31]
jrmu
+++ openbsd:irc:oidentd [2020/03/18 16:18] (current)
jrmu
@@ Line 19: / Line 19: @@
 This ensures that oident starts at bootup and runs as the user and group _identd.
-You will want to ensure /etc/oidentd.conf
+Put this inside /etc/oidentd.conf to spoof ident replies:
+<code>
 user "znc" {
     default {
@@ Line 27: / Line 28: @@
     }
 }
+</code>
 Make sure [[openbsd:irc:znc|the identfile module]] is loaded on znc.
@@ Line 33: / Line 35: @@
 <code>
-$ touch /home/znc/.oidentd.conf
+$ doas touch /home/znc/home/znc/.oidentd.conf
-$ chmod 644 /home/znc/.oidentd.conf
+$ doas ln -s /home/znc/home/znc/.oidentd.conf /home/znc/.oidentd.conf
-$ ln -s /home/znc/.oidentd.conf /home/znc/home/znc/.oidentd.conf
+$ doas chmod 664 /home/znc/.oidentd.conf /home/znc/home/znc/.oidentd.conf
-$ chmod 644 /home/znc/home/znc/.oidentd.conf
+$ doas chmod 755 /home/znc/ /home/znc/home /home/znc/home/znc
+$ doas chown znc:znc /home/znc/.oidentd.conf /home/znc/home/znc/.oidentd.conf
+</code>
+ZNC's identfile module will help write to /home/znc/home/znc/.oidentd.conf, which in turn is symlinked to /home/znc/.oidentd.conf . This latter file is what oidentd reads from. We must make sure oidentd can read the .oidentd.conf file by ensuring the permissions on each of the directories leading up the file are at least rwx--x--x.
+While connected to znc using an account with admin rights, send this through your IRC client:
 <code>
+/msg *status loadmod identfile
+/msg *identfile setfile ~/.oidentd.conf
+/msg *identfile setformat global { reply "%user%" }
+</code>
+This sets the ident reply to be the username (which the user can't change), ensuring that ident replies can't be spoofed by the user.

IRCNow

Page Tools

Site Tools

User Tools

Differences