Anope IRC Services

Anope Support => 1.8.x/1.7.x Support (Read Only) => Topic started by: weatherman on December 05, 2008, 10:27:20 PM

Title: BadPassLimit not working
Post by: weatherman on December 05, 2008, 10:27:20 PM

BadPassLimit    5

We had a script-kiddie, who was able to brute into one of our user's keyed chatrooms, not to mention users are being able to guess more then 5 consecutive passwords

fyi i was using anope-1.7.22, then updated to anope-1.8.0-rc1 to see if it would fix that, but to no avail.

i would appreciate any help or guidance pointing me into the right direction to resolve this issue

TIA

Title: Re: BadPassLimit not working
Post by: Jan Milants on December 05, 2008, 11:27:40 PM

BadPassLimit applies to services passwords such as nickserv and chanserv identify commands..  bruteforcing entry into a keyed channel is not covered by that.. it s beyond the scope of what services can do.. anope doesn't even know about failed join attempts, only the ircd does.