mirror of
https://github.com/pragma-/pbot.git
synced 2024-11-23 12:29:27 +01:00
792 lines
35 KiB
Perl
792 lines
35 KiB
Perl
# File: AntiFlood.pm
|
|
# Author: pragma_
|
|
#
|
|
# Purpose: Keeps track of who has said what and when. Used in
|
|
# conjunction with ChanOps and Quotegrabs for kick/ban on flood
|
|
# and grabbing quotes, respectively.
|
|
#
|
|
# We should take out the message-tracking stuff and put it in its own
|
|
# MessageTracker class.
|
|
|
|
package PBot::AntiFlood;
|
|
|
|
use warnings;
|
|
use strict;
|
|
|
|
use feature 'switch';
|
|
|
|
use Storable;
|
|
|
|
use vars qw($VERSION);
|
|
$VERSION = $PBot::PBot::VERSION;
|
|
|
|
use PBot::DualIndexHashObject;
|
|
use PBot::LagChecker;
|
|
|
|
use Time::HiRes qw(gettimeofday tv_interval);
|
|
use Time::Duration;
|
|
use Carp ();
|
|
|
|
sub new {
|
|
if(ref($_[1]) eq 'HASH') {
|
|
Carp::croak("Options to AntiFlood should be key/value pairs, not hash reference");
|
|
}
|
|
|
|
my ($class, %conf) = @_;
|
|
|
|
my $self = bless {}, $class;
|
|
$self->initialize(%conf);
|
|
return $self;
|
|
}
|
|
|
|
sub initialize {
|
|
my ($self, %conf) = @_;
|
|
|
|
my $pbot = delete $conf{pbot};
|
|
if(not defined $pbot) {
|
|
Carp::croak("Missing pbot reference to AntiFlood");
|
|
}
|
|
|
|
$self->{pbot} = $pbot;
|
|
$self->{FLOOD_IGNORE} = -1;
|
|
$self->{FLOOD_CHAT} = 0;
|
|
$self->{FLOOD_JOIN} = 1;
|
|
|
|
$self->{ENTER_ABUSE_MAX_LINES} = 4;
|
|
$self->{ENTER_ABUSE_MAX_OFFENSES} = 3;
|
|
$self->{ENTER_ABUSE_MAX_SECONDS} = 20;
|
|
|
|
$self->load_message_history;
|
|
$self->{channels} = {}; # per-channel statistics, e.g. for optimized tracking of last spoken nick, etc
|
|
|
|
my $filename = delete $conf{filename} // $self->{pbot}->{data_dir} . '/ban_whitelist';
|
|
$self->{ban_whitelist} = PBot::DualIndexHashObject->new(name => 'BanWhitelist', filename => $filename);
|
|
$self->{ban_whitelist}->load;
|
|
|
|
$pbot->timer->register(sub { $self->prune_message_history }, 60 * 60 * 1);
|
|
|
|
$pbot->commands->register(sub { return $self->unbanme(@_) }, "unbanme", 0);
|
|
$pbot->commands->register(sub { return $self->whitelist(@_) }, "whitelist", 10);
|
|
$pbot->commands->register(sub { return $self->save_message_history_cmd(@_) }, "save_message_history", 60);
|
|
}
|
|
|
|
sub ban_whitelisted {
|
|
my ($self, $channel, $mask) = @_;
|
|
$channel = lc $channel;
|
|
$mask = lc $mask;
|
|
|
|
$self->{pbot}->logger->log("whitelist check: $channel, $mask\n");
|
|
return (exists $self->{ban_whitelist}->hash->{$channel}->{$mask} and defined $self->{ban_whitelist}->hash->{$channel}->{$mask}->{ban_whitelisted}) ? 1 : 0;
|
|
}
|
|
|
|
sub whitelist {
|
|
my ($self, $from, $nick, $user, $host, $arguments) = @_;
|
|
$arguments = lc $arguments;
|
|
|
|
my ($command, $args) = split / /, $arguments, 2;
|
|
|
|
return "Usage: whitelist <command>, where commands are: list/show, add, remove" if not defined $command;
|
|
|
|
given($command) {
|
|
when($_ eq "list" or $_ eq "show") {
|
|
my $text = "Ban whitelist:\n";
|
|
my $entries = 0;
|
|
foreach my $channel (keys %{ $self->{ban_whitelist}->hash }) {
|
|
$text .= " $channel:\n";
|
|
foreach my $mask (keys %{ $self->{ban_whitelist}->hash->{$channel} }) {
|
|
$text .= " $mask,\n";
|
|
$entries++;
|
|
}
|
|
}
|
|
$text .= "none" if $entries == 0;
|
|
return $text;
|
|
}
|
|
when("add") {
|
|
my ($channel, $mask) = split / /, $args, 2;
|
|
return "Usage: whitelist add <channel> <mask>" if not defined $channel or not defined $mask;
|
|
|
|
$self->{ban_whitelist}->hash->{$channel}->{$mask}->{ban_whitelisted} = 1;
|
|
$self->{ban_whitelist}->hash->{$channel}->{$mask}->{owner} = "$nick!$user\@$host";
|
|
$self->{ban_whitelist}->hash->{$channel}->{$mask}->{created_on} = gettimeofday;
|
|
|
|
$self->{ban_whitelist}->save;
|
|
return "$mask whitelisted in channel $channel";
|
|
}
|
|
when("remove") {
|
|
my ($channel, $mask) = split / /, $args, 2;
|
|
return "Usage: whitelist remove <channel> <mask>" if not defined $channel or not defined $mask;
|
|
|
|
if(not defined $self->{ban_whitelist}->hash->{$channel}) {
|
|
return "No whitelists for channel $channel";
|
|
}
|
|
|
|
if(not defined $self->{ban_whitelist}->hash->{$channel}->{$mask}) {
|
|
return "No such whitelist $mask for channel $channel";
|
|
}
|
|
|
|
delete $self->{ban_whitelist}->hash->{$channel}->{$mask};
|
|
delete $self->{ban_whitelist}->hash->{$channel} if keys %{ $self->{ban_whitelist}->hash->{$channel} } == 0;
|
|
$self->{ban_whitelist}->save;
|
|
return "$mask whitelist removed from channel $channel";
|
|
}
|
|
default {
|
|
return "Unknown command '$command'; commands are: list/show, add, remove";
|
|
}
|
|
}
|
|
}
|
|
|
|
sub get_flood_account {
|
|
my ($self, $nick, $user, $host) = @_;
|
|
|
|
return "$nick!$user\@$host" if exists $self->message_history->{"$nick!$user\@$host"};
|
|
|
|
my $found_link;
|
|
foreach my $mask (keys %{ $self->message_history }) {
|
|
# check if foo!bar@baz matches foo!*@*; e.g., same nick, but possibly different user@host
|
|
# (usually logging into nickserv or a dynamic ip address, but could possibly be attempted nick hijacking)
|
|
if($mask =~ m/^\Q$nick\E!.*/i) {
|
|
#$self->{pbot}->logger->log("anti-flood: [get-account] $nick!$user\@$host seen previously as $mask\n");
|
|
$found_link = 1;
|
|
}
|
|
|
|
# check if foo!bar@baz matches *!bar@baz; e.g., same user@host, but different nick
|
|
# (usually alternate-nicks due to rejoining)
|
|
if($mask =~ m/!\Q$user\E@\Q$host\E$/i) {
|
|
$found_link = 1;
|
|
}
|
|
|
|
if($found_link) {
|
|
$self->{pbot}->logger->log("anti-flood: [get-account] $nick!$user\@$host linked to $mask\n");
|
|
$self->{message_history}->{"$nick!$user\@$host"} = $self->{message_history}->{$mask};
|
|
|
|
foreach my $channel (keys %{ $self->{message_history}->{$mask}->{channels} }) {
|
|
$self->{message_history}->{$mask}->{channels}->{$channel}{validated} = 0;
|
|
}
|
|
|
|
if(exists $self->{message_history}->{$mask}->{nickserv_accounts}) {
|
|
foreach my $nickserv_account (keys $self->{message_history}->{$mask}->{nickserv_accounts}) {
|
|
$self->check_nickserv_accounts($nick, $nickserv_account, "$nick!$user\@$host");
|
|
}
|
|
}
|
|
|
|
return "$nick!$user\@$host";
|
|
}
|
|
}
|
|
|
|
return undef;
|
|
}
|
|
|
|
sub add_message {
|
|
my ($self, $account, $channel, $text, $mode) = @_;
|
|
my $now = gettimeofday;
|
|
|
|
return undef if $channel =~ /[@!]/; # ignore QUIT messages from nick!user@host channels
|
|
|
|
$text =~ s/^$self->{pbot}->{trigger}login\s+\S+/$self->{pbot}->{trigger}login <redacted>/; # redact login passwords (e.g., from `recall` command, etc)
|
|
|
|
if(not exists $self->message_history->{$account}->{channels}->{$channel}) {
|
|
#$self->{pbot}->logger->log("adding new channel for existing nick\n");
|
|
$self->message_history->{$account}->{channels}->{$channel}{offenses} = 0;
|
|
$self->message_history->{$account}->{channels}->{$channel}{last_offense_timestamp} = 0;
|
|
$self->message_history->{$account}->{channels}->{$channel}{join_watch} = 0;
|
|
$self->message_history->{$account}->{channels}->{$channel}{messages} = [];
|
|
}
|
|
|
|
#$self->{pbot}->logger->log("appending new message\n");
|
|
push(@{ $self->message_history->{$account}->{channels}->{$channel}{messages} }, { timestamp => $now, msg => $text, mode => $mode });
|
|
$self->message_history->{$account}->{channels}->{$channel}{last_spoken} = $now;
|
|
|
|
my $length = $#{ $self->message_history->{$account}->{channels}->{$channel}{messages} } + 1;
|
|
|
|
if($mode == $self->{FLOOD_JOIN}) {
|
|
if($text =~ /^JOIN/) {
|
|
$self->message_history->{$account}->{channels}->{$channel}{join_watch}++;
|
|
} else {
|
|
# PART or QUIT
|
|
# check QUIT message for netsplits, and decrement joinwatch if found
|
|
if($text =~ /^QUIT .*\.net .*\.split/) {
|
|
$self->message_history->{$account}->{channels}->{$channel}{join_watch}--;
|
|
$self->message_history->{$account}->{channels}->{$channel}{join_watch} = 0 if $self->message_history->{$account}->{channels}->{$channel}{join_watch} < 0;
|
|
$self->message_history->{$account}->{channels}->{$channel}{messages}->[$length - 1]{mode} = $self->{FLOOD_IGNORE};
|
|
}
|
|
# check QUIT message for Ping timeout or Excess Flood
|
|
elsif($text =~ /^QUIT Ping timeout/ or $text =~ /^QUIT Excess Flood/) {
|
|
# ignore these (used to treat aggressively)
|
|
$self->message_history->{$account}->{channels}->{$channel}{messages}->[$length - 1]{mode} = $self->{FLOOD_IGNORE};
|
|
} else {
|
|
# some other type of QUIT or PART
|
|
$self->message_history->{$account}->{channels}->{$channel}{messages}->[$length - 1]{mode} = $self->{FLOOD_IGNORE};
|
|
}
|
|
}
|
|
} elsif($mode == $self->{FLOOD_CHAT}) {
|
|
# reset joinwatch if they send a message
|
|
$self->message_history->{$account}->{channels}->{$channel}{join_watch} = 0;
|
|
}
|
|
|
|
# keep only MAX_NICK_MESSAGES message history per channel
|
|
if($length >= $self->{pbot}->{MAX_NICK_MESSAGES}) {
|
|
my %msg = %{ shift(@{ $self->message_history->{$account}->{channels}->{$channel}{messages} }) };
|
|
#$self->{pbot}->logger->log("shifting message off top: $msg{msg}, $msg{timestamp}\n");
|
|
$length--;
|
|
}
|
|
|
|
return $length;
|
|
}
|
|
|
|
sub check_flood {
|
|
my ($self, $channel, $nick, $user, $host, $text, $max_messages, $max_time, $mode) = @_;
|
|
|
|
$channel = lc $channel;
|
|
my $mask = "$nick!$user\@$host";
|
|
|
|
$self->{pbot}->logger->log(sprintf("%-14s | %-65s | %s\n", $channel eq $mask ? "QUIT" : $channel, $mask, $text));
|
|
|
|
my $account = $self->get_flood_account($nick, $user, $host);
|
|
|
|
if(not defined $account) {
|
|
$account = $mask;
|
|
}
|
|
|
|
# handle QUIT events
|
|
# (these events come from $channel nick!user@host, not a specific channel or nick,
|
|
# so they need to be dispatched to all channels the nick has been seen on)
|
|
if($mode == $self->{FLOOD_JOIN} and $text =~ /^QUIT/) {
|
|
return if not exists $self->message_history->{$account}; # don't create empty account
|
|
foreach my $chan (keys %{ $self->message_history->{$account}->{channels} }) {
|
|
next if $chan !~ m/^#/; # skip non-channels (private messages, etc)
|
|
$self->add_message($account, $chan, $text, $mode);
|
|
# remove validation on QUITs so we check for ban-evasion when user returns at a later time
|
|
$self->message_history->{$account}->{channels}->{$chan}{validated} = 0;
|
|
}
|
|
|
|
# don't do flood processing for QUIT events
|
|
return;
|
|
}
|
|
|
|
my $length = $self->add_message($account, $channel, $text, $mode);
|
|
return if not defined $length;
|
|
|
|
# do not do flood processing for bot messages
|
|
if($nick eq $self->{pbot}->botnick) {
|
|
$self->{channels}->{$channel}->{last_spoken_nick} = $nick;
|
|
return;
|
|
}
|
|
|
|
# do not do flood processing if channel is not in bot's channel list or bot is not set as chanop for the channel
|
|
return if ($channel =~ /^#/) and (not exists $self->{pbot}->channels->channels->hash->{$channel} or $self->{pbot}->channels->channels->hash->{$channel}{chanop} == 0);
|
|
|
|
if($channel =~ /^#/ and $mode == $self->{FLOOD_JOIN} and $text =~ /^PART/) {
|
|
# remove validation on PART so we check for ban-evasion when user returns at a later time
|
|
$self->message_history->{$account}->{channels}->{$channel}{validated} = 0;
|
|
}
|
|
|
|
# do not do flood enforcement for this event if bot is lagging
|
|
if($self->{pbot}->lagchecker->lagging) {
|
|
$self->{pbot}->logger->log("Disregarding enforcement of anti-flood due to lag: " . $self->{pbot}->lagchecker->lagstring . "\n");
|
|
return;
|
|
}
|
|
|
|
if($max_messages > $self->{pbot}->{MAX_NICK_MESSAGES}) {
|
|
$self->{pbot}->logger->log("Warning: max_messages greater than MAX_NICK_MESSAGES; truncating.\n");
|
|
$max_messages = $self->{pbot}->{MAX_NICK_MESSAGES};
|
|
}
|
|
|
|
# check for ban evasion if channel begins with # (not private message) and hasn't yet been validated against ban evasion
|
|
if($channel =~ m/^#/ and not $self->message_history->{$account}->{channels}->{$channel}{validated}) {
|
|
if($mode == $self->{FLOOD_JOIN} and $text =~ /^PART/) {
|
|
# don't check for evasion on PARTs
|
|
} else {
|
|
$self->{pbot}->conn->whois($nick);
|
|
$self->check_bans($account, $channel);
|
|
}
|
|
}
|
|
|
|
if($mode == $self->{FLOOD_CHAT} and $channel =~ m/^#/) {
|
|
if(defined $self->{channels}->{$channel}->{last_spoken_nick} and $nick eq $self->{channels}->{$channel}->{last_spoken_nick}) {
|
|
my %msg = %{ @{ $self->message_history->{$account}->{channels}->{$channel}{messages} }[$length - 2] };
|
|
my %last = %{ @{ $self->message_history->{$account}->{channels}->{$channel}{messages} }[$length - 1] };
|
|
|
|
if($last{timestamp} - $msg{timestamp} <= $self->{ENTER_ABUSE_MAX_SECONDS}) {
|
|
if(++$self->message_history->{$account}->{channels}->{$channel}{enter_abuse} >= $self->{ENTER_ABUSE_MAX_LINES} - 1) {
|
|
$self->message_history->{$account}->{channels}->{$channel}{enter_abuse} = $self->{ENTER_ABUSE_MAX_LINES} / 2 - 1;
|
|
if(++$self->message_history->{$account}->{channels}->{$channel}{enter_abuses} >= $self->{ENTER_ABUSE_MAX_OFFENSES}) {
|
|
my $offenses = $self->message_history->{$account}->{channels}->{$channel}{enter_abuses} - $self->{ENTER_ABUSE_MAX_OFFENSES} + 1;
|
|
my $ban_length = $offenses ** $offenses * $offenses * 30;
|
|
$self->{pbot}->chanops->ban_user_timed("*!$user\@$host", $channel, $ban_length);
|
|
$ban_length = duration($ban_length);
|
|
$self->{pbot}->logger->log("$nick $channel enter abuse offense " . $self->message_history->{$account}->{channels}->{$channel}{enter_abuses} . " earned $ban_length ban\n");
|
|
$self->{pbot}->conn->privmsg($nick, "You have been muted due to abusing the enter key. Please do not split your sentences over multiple messages. You will be allowed to speak again in $ban_length.");
|
|
} else {
|
|
$self->{pbot}->logger->log("$nick $channel enter abuses counter incremented to " . $self->message_history->{$account}->{channels}->{$channel}{enter_abuses} . "\n");
|
|
}
|
|
} else {
|
|
$self->{pbot}->logger->log("$nick $channel enter abuse counter incremented to " . $self->message_history->{$account}->{channels}->{$channel}{enter_abuse} . "\n");
|
|
}
|
|
} else {
|
|
$self->{pbot}->logger->log("$nick $channel more than $self->{ENTER_ABUSE_MAX_SECONDS} seconds since last message, enter abuse counter reset\n");
|
|
$self->message_history->{$account}->{channels}->{$channel}{enter_abuse} = 0;
|
|
}
|
|
} else {
|
|
$self->{channels}->{$channel}->{last_spoken_nick} = $nick;
|
|
$self->{pbot}->logger->log("$nick $channel enter abuse counter reset\n") if defined $self->message_history->{$account}->{channels}->{$channel}{enter_abuse} and $self->message_history->{$account}->{channels}->{$channel}{enter_abuse} > 0;
|
|
$self->message_history->{$account}->{channels}->{$channel}{enter_abuse} = 0;
|
|
}
|
|
}
|
|
|
|
if($max_messages > 0 and $length >= $max_messages) {
|
|
# $self->{pbot}->logger->log("More than $max_messages messages, comparing time differences ($max_time)\n") if $mode == $self->{FLOOD_JOIN};
|
|
|
|
my %msg;
|
|
if($mode == $self->{FLOOD_CHAT}) {
|
|
%msg = %{ @{ $self->message_history->{$account}->{channels}->{$channel}{messages} }[$length - $max_messages] };
|
|
}
|
|
elsif($mode == $self->{FLOOD_JOIN}) {
|
|
my $count = 0;
|
|
my $i = $length - 1;
|
|
# $self->{pbot}->logger->log("Checking flood history, i = $i\n") if $self->message_history->{$account}->{channels}->{$channel}{join_watch} >= $max_messages;
|
|
for(; $i >= 0; $i--) {
|
|
# $self->{pbot}->logger->log($i . " " . $self->message_history->{$account}->{channels}->{$channel}{messages}->[$i]{mode} ." " . $self->message_history->{$account}->{channels}->{$channel}{messages}->[$i]{msg} . " " . $self->message_history->{$account}->{channels}->{$channel}{messages}->[$i]{timestamp} . " [" . ago_exact(time - $self->message_history->{$account}->{channels}->{$channel}{messages}->[$i]{timestamp}) . "]\n") if $self->message_history->{$account}->{channels}->{$channel}{join_watch} >= $max_messages;
|
|
next if $self->message_history->{$account}->{channels}->{$channel}{messages}->[$i]{mode} != $self->{FLOOD_JOIN};
|
|
last if ++$count >= 4;
|
|
}
|
|
$i = 0 if $i < 0;
|
|
%msg = %{ @{ $self->message_history->{$account}->{channels}->{$channel}{messages} }[$i] };
|
|
}
|
|
else {
|
|
$self->{pbot}->logger->log("Unknown flood mode [$mode] ... aborting flood enforcement.\n");
|
|
return;
|
|
}
|
|
|
|
my %last = %{ @{ $self->message_history->{$account}->{channels}->{$channel}{messages} }[$length - 1] };
|
|
|
|
if($last{timestamp} - $msg{timestamp} <= $max_time && not $self->{pbot}->admins->loggedin($channel, "$nick!$user\@$host")) {
|
|
if($mode == $self->{FLOOD_JOIN}) {
|
|
if($self->message_history->{$account}->{channels}->{$channel}{join_watch} >= $max_messages) {
|
|
$self->message_history->{$account}->{channels}->{$channel}{offenses}++;
|
|
$self->message_history->{$account}->{channels}->{$channel}{last_offense_timestamp} = gettimeofday;
|
|
|
|
my $timeout = (2 ** (($self->message_history->{$account}->{channels}->{$channel}{offenses} + 2) < 10 ? $self->message_history->{$account}->{channels}->{$channel}{offenses} + 2 : 10));
|
|
my $banmask = address_to_mask($host);
|
|
|
|
$self->{pbot}->chanops->ban_user_timed("*!$user\@$banmask\$##stop_join_flood", $channel, $timeout * 60 * 60);
|
|
$self->{pbot}->logger->log("$nick!$user\@$banmask banned for $timeout hours due to join flooding (offense #" . $self->message_history->{$account}->{channels}->{$channel}{offenses} . ").\n");
|
|
$self->{pbot}->conn->privmsg($nick, "You have been banned from $channel due to join flooding. If your connection issues have been fixed, or this was an accident, you may request an unban at any time by responding to this message with: unbanme $channel, otherwise you will be automatically unbanned in $timeout hours.");
|
|
$self->message_history->{$account}->{channels}->{$channel}{join_watch} = $max_messages - 2; # give them a chance to rejoin
|
|
}
|
|
} elsif($mode == $self->{FLOOD_CHAT}) {
|
|
# don't increment offenses again if already banned
|
|
return if $self->{pbot}->chanops->{unban_timeout}->find_index($channel, "*!$user\@$host");
|
|
|
|
$self->message_history->{$account}->{channels}->{$channel}{offenses}++;
|
|
$self->message_history->{$account}->{channels}->{$channel}{last_offense_timestamp} = gettimeofday;
|
|
|
|
my $length = $self->message_history->{$account}->{channels}->{$channel}{offenses} ** $self->message_history->{$account}->{channels}->{$channel}{offenses} * $self->message_history->{$account}->{channels}->{$channel}{offenses} * 30;
|
|
|
|
if($channel =~ /^#/) { #channel flood (opposed to private message or otherwise)
|
|
$self->{pbot}->chanops->ban_user_timed("*!$user\@$host", $channel, $length);
|
|
$length = duration($length);
|
|
$self->{pbot}->logger->log("$nick $channel flood offense " . $self->message_history->{$account}->{channels}->{$channel}{offenses} . " earned $length ban\n");
|
|
$self->{pbot}->conn->privmsg($nick, "You have been muted due to flooding. Please use a web paste service such as http://codepad.org for lengthy pastes. You will be allowed to speak again in $length.");
|
|
}
|
|
else { # private message flood
|
|
return if exists ${ $self->{pbot}->ignorelist->{ignore_list} }{"$nick!$user\@$host"}{$channel};
|
|
$self->{pbot}->{ignorelistcmds}->ignore_user("", "floodcontrol", "", "", "$nick!$user\@$host $channel $length");
|
|
$length = duration($length);
|
|
$self->{pbot}->logger->log("$nick msg flood offense " . $self->message_history->{$account}->{channels}->{$channel}{offenses} . " earned $length ignore\n");
|
|
$self->{pbot}->conn->privmsg($nick, "You have used too many commands in too short a time period, you have been ignored for $length.");
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
sub message_history {
|
|
my $self = shift;
|
|
return $self->{message_history};
|
|
}
|
|
|
|
sub prune_message_history {
|
|
my $self = shift;
|
|
|
|
$self->{pbot}->logger->log("Pruning message history . . .\n");
|
|
|
|
foreach my $mask (keys %{ $self->{message_history} }) {
|
|
foreach my $channel (keys %{ $self->{message_history}->{$mask}->{channels} }) {
|
|
my $length = $#{ $self->{message_history}->{$mask}->{channels}->{$channel}{messages} } + 1;
|
|
|
|
if($length <= 0) {
|
|
$self->{pbot}->logger->log("[prune-message-history] $mask in $channel has no messages, removing channel entry\n");
|
|
delete $self->{message_history}->{$mask}->{channels}->{$channel};
|
|
next;
|
|
}
|
|
|
|
my %last = %{ @{ $self->{message_history}->{$mask}->{channels}->{$channel}{messages} }[$length - 1] };
|
|
|
|
# delete channel key if no activity for a while
|
|
if(gettimeofday - $last{timestamp} >= 60 * 60 * 24 * 90) {
|
|
$self->{pbot}->logger->log("[prune-message-history] $mask in $channel hasn't spoken in ninety days; removing channel history.\n");
|
|
delete $self->{message_history}->{$mask}->{channels}->{$channel};
|
|
next;
|
|
}
|
|
|
|
# decrease offenses counter if 24 hours of elapsed without any new offense
|
|
if ($self->{message_history}->{$mask}->{channels}->{$channel}{offenses} > 0 and
|
|
$self->{message_history}->{$mask}->{channels}->{$channel}{last_offense_timestamp} > 0 and
|
|
(gettimeofday - $self->{message_history}->{$mask}->{channels}->{$channel}{last_offense_timestamp} >= 60 * 60 * 24)) {
|
|
$self->{message_history}->{$mask}->{channels}->{$channel}{offenses}--;
|
|
$self->{message_history}->{$mask}->{channels}->{$channel}{last_offense_timestamp} = gettimeofday;
|
|
$self->{pbot}->logger->log("[prune-message-history] [$channel][$mask] 24 hours since last offense/decrease -- decreasing offenses to $self->{message_history}->{$mask}->{channels}->{$channel}{offenses}\n");
|
|
}
|
|
|
|
# decrease enter abuses counter once an hour
|
|
if(defined $self->message_history->{$mask}->{channels}->{$channel}{enter_abuses} and $self->message_history->{$mask}->{channels}->{$channel}{enter_abuses} > 0) {
|
|
$self->message_history->{$mask}->{channels}->{$channel}{enter_abuses}--;
|
|
$self->{pbot}->logger->log("[prune-message-history] [$channel][$mask] decreasing enter abuse offenses to $self->{message_history}->{$mask}->{channels}->{$channel}{enter_abuses}\n");
|
|
}
|
|
}
|
|
|
|
# delete account for this $mask if all its channels have been deleted
|
|
if(scalar keys %{ $self->{message_history}->{$mask} } == 0) {
|
|
$self->{pbot}->logger->log("[prune-message-history] $mask has no more channels remaining; deleting history account.\n");
|
|
delete $self->{message_history}->{$mask};
|
|
}
|
|
}
|
|
$self->save_message_history;
|
|
}
|
|
|
|
sub unbanme {
|
|
my ($self, $from, $nick, $user, $host, $arguments) = @_;
|
|
my $channel = lc $arguments;
|
|
|
|
if(not defined $arguments or not defined $channel) {
|
|
return "/msg $nick Usage: unbanme <channel>";
|
|
}
|
|
|
|
my $banmask = address_to_mask($host);
|
|
|
|
my $mask = "*!$user\@$banmask\$##stop_join_flood";
|
|
|
|
if(not $self->{pbot}->{chanops}->{unban_timeout}->find_index($channel, $mask)) {
|
|
return "/msg $nick There is no temporary ban set for $mask in channel $channel.";
|
|
}
|
|
|
|
my $nickserv_accounts;
|
|
if(exists $self->{message_history}->{"$nick!$user\@$host"}->{nickserv_accounts}) {
|
|
$nickserv_accounts = $self->{message_history}->{"$nick!$user\@$host"}->{nickserv_accounts};
|
|
} else {
|
|
$nickserv_accounts->{-1} = undef;
|
|
}
|
|
|
|
foreach my $nickserv_account (keys $nickserv_accounts) {
|
|
my $baninfos = $self->{pbot}->bantracker->get_baninfo("$nick!$user\@$host", $channel, $nickserv_account);
|
|
|
|
if(defined $baninfos) {
|
|
foreach my $baninfo (@$baninfos) {
|
|
if($self->ban_whitelisted($baninfo->{channel}, $baninfo->{banmask})) {
|
|
$self->{pbot}->logger->log("anti-flood: [unbanme] $nick!$user\@$host banned as $baninfo->{banmask} in $baninfo->{channel}, but allowed through whitelist\n");
|
|
} else {
|
|
if($channel eq lc $baninfo->{channel}) {
|
|
my $mode = $baninfo->{type} eq "+b" ? "banned" : "quieted";
|
|
$self->{pbot}->logger->log("anti-flood: [unbanme] $nick!$user\@$host $mode as $baninfo->{banmask} in $baninfo->{channel} by $baninfo->{owner}, unbanme rejected\n");
|
|
return "/msg $nick You have been $mode as $baninfo->{banmask} by $baninfo->{owner}, unbanme will not work until it is removed.";
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
my $account = $self->get_flood_account($nick, $user, $host);
|
|
if(defined $account and $self->message_history->{$account}->{channels}->{$channel}{offenses} > 2) {
|
|
return "/msg $nick You may only use unbanme for the first two offenses. You will be automatically unbanned in a few hours, and your offense counter will decrement once every 24 hours.";
|
|
}
|
|
|
|
$self->{pbot}->chanops->unban_user($mask, $channel);
|
|
|
|
return "/msg $nick You have been unbanned from $channel.";
|
|
}
|
|
|
|
sub address_to_mask {
|
|
my $address = shift;
|
|
my $banmask;
|
|
|
|
if($address =~ m/^([0-9]+)\.([0-9]+)\.([0-9]+)\.([0-9]+)$/) {
|
|
my ($a, $b, $c, $d) = ($1, $2, $3, $4);
|
|
given($a) {
|
|
when($_ <= 127) { $banmask = "$a.*"; }
|
|
when($_ <= 191) { $banmask = "$a.$b.*"; }
|
|
default { $banmask = "$a.$b.$c.*"; }
|
|
}
|
|
} elsif($address =~ m/[^.]+\.([^.]+\.[^.]+)$/) {
|
|
$banmask = "*.$1";
|
|
} else {
|
|
$banmask = $address;
|
|
}
|
|
|
|
return $banmask;
|
|
}
|
|
|
|
sub devalidate_accounts {
|
|
# remove validation on accounts in $channel that match a ban/quiet $mask
|
|
my ($self, $mask, $channel) = @_;
|
|
my ($nickserv_accounts, $ban_account);
|
|
|
|
if($mask =~ m/^\$a:(.*)/) {
|
|
$ban_account = lc $1;
|
|
} else {
|
|
$ban_account = undef;
|
|
}
|
|
|
|
my $mask_original = $mask;
|
|
$mask = quotemeta $mask;
|
|
$mask =~ s/\\\*/.*?/g;
|
|
$mask =~ s/\\\?/./g;
|
|
|
|
foreach my $account (keys %{ $self->{message_history} }) {
|
|
if(exists $self->{message_history}->{$account}->{channels}->{$channel}) {
|
|
if(defined $ban_account and exists $self->{message_history}->{$account}->{nickserv_accounts}) {
|
|
$nickserv_accounts = $self->{message_history}->{$account}->{nickserv_accounts};
|
|
} else {
|
|
$nickserv_accounts = undef;
|
|
}
|
|
|
|
my $devalidate = 0;
|
|
if(defined $ban_account and defined $nickserv_accounts) {
|
|
foreach my $nickserv_account (keys $nickserv_accounts) {
|
|
if($nickserv_account eq $ban_account) {
|
|
$devalidate = 1;
|
|
last;
|
|
}
|
|
}
|
|
}
|
|
|
|
if($devalidate or $account =~ m/^$mask$/i) {
|
|
$self->{pbot}->logger->log("anti-flood: [devalidate-accounts] $account matches $mask_original in $channel, devalidating\n");
|
|
$self->message_history->{$account}->{channels}->{$channel}{validated} = 0;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
sub check_bans {
|
|
my ($self, $mask, $channel) = @_;
|
|
my ($bans, @nickserv_accounts, $nick, $host, $do_not_validate);
|
|
|
|
# $self->{pbot}->logger->log("anti-flood: [check-bans] checking for bans on $mask in $channel\n");
|
|
|
|
if(exists $self->{message_history}->{$mask}->{nickserv_accounts}) {
|
|
foreach my $account (keys $self->{message_history}->{$mask}->{nickserv_accounts}) {
|
|
# $self->{pbot}->logger->log("anti-flood: [check-bans] $mask is using account $account\n");
|
|
push @nickserv_accounts, $account;
|
|
}
|
|
delete $self->{message_history}->{$mask}->{channels}->{$channel}{needs_validation};
|
|
} else {
|
|
# mark this account as needing check-bans when nickserv account is identified
|
|
$self->{message_history}->{$mask}->{channels}->{$channel}{needs_validation} = 1;
|
|
# $self->{pbot}->logger->log("anti-flood: [check-bans] no account for $mask; marking for later validation\n");
|
|
}
|
|
|
|
($nick, $host) = $mask =~ m/^([^!]+)![^@]+\@(.*)$/;
|
|
|
|
foreach my $account (keys %{ $self->{message_history} }) {
|
|
if(exists $self->{message_history}->{$account}->{channels}->{$channel}) {
|
|
my $check_ban = 0;
|
|
my $target_nickserv_accounts;
|
|
|
|
# check if nickserv accounts match
|
|
foreach my $nickserv_account (@nickserv_accounts) {
|
|
if(exists $self->{message_history}->{$account}->{nickserv_accounts}) {
|
|
foreach my $key ($self->{message_history}->{$account}->{nickserv_accounts}) {
|
|
if($key eq $nickserv_account) {
|
|
#$self->{pbot}->logger->log("anti-flood: [check-bans] nickserv account for $account matches $nickserv_account\n");
|
|
$target_nickserv_accounts = $self->{message_history}->{$account}->{nickserv_accounts};
|
|
$check_ban = 1;
|
|
goto CHECKBAN;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
# check if hosts match
|
|
my ($account_host) = $account =~ m/\@(.*)$/;
|
|
|
|
if($host eq $account_host) {
|
|
#$self->{pbot}->logger->log("anti-flood: [check-bans] host for $account matches $mask\n");
|
|
if(exists $self->{message_history}->{$account}->{nickserv_accounts}) {
|
|
$target_nickserv_accounts = $self->{message_history}->{$account}->{nickserv_accounts};
|
|
}
|
|
$check_ban = 1;
|
|
goto CHECKBAN;
|
|
}
|
|
|
|
# check if nicks match
|
|
my ($account_nick) = $account =~ m/^([^!]+)/;
|
|
|
|
if($nick eq $account_nick) {
|
|
#$self->{pbot}->logger->log("anti-flood: [check-bans] nick for $account matches $mask\n");
|
|
if(exists $self->{message_history}->{$account}->{nickserv_accounts}) {
|
|
$target_nickserv_accounts = $self->{message_history}->{$account}->{nickserv_accounts};
|
|
}
|
|
$check_ban = 1;
|
|
goto CHECKBAN;
|
|
}
|
|
|
|
CHECKBAN:
|
|
if($check_ban) {
|
|
if(not defined $target_nickserv_accounts) {
|
|
$target_nickserv_accounts->{-1} = undef;
|
|
}
|
|
|
|
foreach my $target_nickserv_account (keys $target_nickserv_accounts) {
|
|
# $self->{pbot}->logger->log("anti-flood: [check-bans] checking for bans in $channel on $account using $target_nickserv_account\n");
|
|
my $baninfos = $self->{pbot}->bantracker->get_baninfo($account, $channel, $target_nickserv_account);
|
|
|
|
if(defined $baninfos) {
|
|
foreach my $baninfo (@$baninfos) {
|
|
if(time - $baninfo->{when} < 5) {
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] $mask evaded $baninfo->{banmask} in $baninfo->{channel}, but within 5 seconds of establishing ban; giving another chance\n");
|
|
$self->message_history->{$mask}->{channels}->{$channel}{validated} = 0;
|
|
$do_not_validate = 1;
|
|
next;
|
|
}
|
|
|
|
if($self->ban_whitelisted($baninfo->{channel}, $baninfo->{banmask})) {
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] $mask evaded $baninfo->{banmask} in $baninfo->{channel}, but allowed through whitelist\n");
|
|
next;
|
|
}
|
|
|
|
if($baninfo->{type} eq '+b' and $baninfo->{banmask} =~ m/!\*@\*$/) {
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] Disregarding generic nick ban\n");
|
|
next;
|
|
}
|
|
|
|
my $banmask_regex = quotemeta $baninfo->{banmask};
|
|
$banmask_regex =~ s/\\\*/.*/g;
|
|
$banmask_regex =~ s/\\\?/./g;
|
|
|
|
if($baninfo->{type} eq '+q' and $mask =~ /^$banmask_regex$/i) {
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] Hostmask ($mask) matches quiet banmask ($banmask_regex), disregarding\n");
|
|
next;
|
|
}
|
|
|
|
my $skip_quiet_nickserv_mask = 0;
|
|
foreach my $nickserv_account (@nickserv_accounts) {
|
|
if($baninfo->{type} eq '+q' and $baninfo->{banmask} =~ /^\$a:(.*)/ and lc $1 eq $nickserv_account and $nickserv_account eq $self->{message_history}->{$mask}->{nickserv_account}) {
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] Hostmask ($mask) matches account ($nickserv_account), disregarding\n");
|
|
$skip_quiet_nickserv_mask = 1;
|
|
} elsif($baninfo->{type} eq '+b' and $baninfo->{banmask} =~ /^\$a:(.*)/ and lc $1 eq $nickserv_account) {
|
|
$skip_quiet_nickserv_mask = 0;
|
|
last;
|
|
}
|
|
}
|
|
next if $skip_quiet_nickserv_mask;
|
|
|
|
if(not defined $bans) {
|
|
$bans = [];
|
|
}
|
|
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] Hostmask ($mask) matches $baninfo->{type} $baninfo->{banmask}, adding ban\n");
|
|
push @$bans, $baninfo;
|
|
next;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if(defined $bans) {
|
|
$mask =~ m/[^!]+!([^@]+)@(.*)/;
|
|
my $banmask = "*!$1@" . address_to_mask($2);
|
|
|
|
foreach my $baninfo (@$bans) {
|
|
$self->{pbot}->logger->log("anti-flood: [check-bans] $mask evaded $baninfo->{banmask} banned in $baninfo->{channel} by $baninfo->{owner}, banning $banmask\n");
|
|
my ($bannick) = $mask =~ m/^([^!]+)/;
|
|
$self->{pbot}->chanops->add_op_command($baninfo->{channel}, "kick $baninfo->{channel} $bannick Ban evasion");
|
|
$self->{pbot}->chanops->ban_user_timed($banmask, $baninfo->{channel}, 60 * 60 * 12);
|
|
$self->message_history->{$mask}->{channels}->{$channel}{validated} = 0;
|
|
return;
|
|
}
|
|
}
|
|
|
|
$self->message_history->{$mask}->{channels}->{$channel}{validated} = 1 unless $do_not_validate;
|
|
}
|
|
|
|
sub check_nickserv_accounts {
|
|
my ($self, $nick, $account, $hostmask) = @_;
|
|
my $force_validation = 0;
|
|
|
|
$account = lc $account;
|
|
|
|
if(not defined $hostmask) {
|
|
foreach my $mask (keys %{ $self->{message_history} }) {
|
|
if(exists $self->{message_history}->{$mask}->{nickserv_accounts} and exists $self->{message_history}->{$mask}->{nickserv_accounts}->{$account}) {
|
|
# pre-existing mask found using this account previously
|
|
#$self->{pbot}->logger->log("anti-flood: [check-account] $nick [nickserv: $account] seen previously as $mask.\n");
|
|
$hostmask = $mask;
|
|
}
|
|
else {
|
|
# no nickserv account set yet
|
|
if($mask =~ m/^\Q$nick\E!/i) {
|
|
# nick matches, must belong to account
|
|
$hostmask = $mask;
|
|
last;
|
|
}
|
|
}
|
|
}
|
|
} else {
|
|
$force_validation = 1;
|
|
}
|
|
|
|
if(not defined $hostmask) {
|
|
# could not find mask for nick/account
|
|
$self->{pbot}->logger->log("anti-flood: [check-account] could not find mask for $nick [nickserv: $account]\n");
|
|
return;
|
|
}
|
|
|
|
$self->{pbot}->logger->log("anti-flood: $hostmask: setting nickserv account to [$account]\n");
|
|
$self->{message_history}->{$hostmask}->{nickserv_accounts}->{$account} = gettimeofday;
|
|
$self->{message_history}->{$hostmask}->{nickserv_account} = $account;
|
|
|
|
# check to see if any channels need check-ban validation
|
|
foreach my $channel (keys %{ $self->message_history->{$hostmask}->{channels} }) {
|
|
if($force_validation or exists $self->message_history->{$hostmask}->{channels}{$channel}->{needs_validation}) {
|
|
# $self->{pbot}->logger->log("anti-flood: [check-account] $nick [nickserv: $account] needs check-ban validation for $hostmask in $channel.\n");
|
|
$self->check_bans($hostmask, $channel);
|
|
}
|
|
}
|
|
}
|
|
|
|
sub on_whoisaccount {
|
|
my ($self, $conn, $event) = @_;
|
|
my $nick = $event->{args}[1];
|
|
my $account = lc $event->{args}[2];
|
|
|
|
$self->{pbot}->logger->log("$nick is using NickServ account [$account]\n");
|
|
$self->check_nickserv_accounts($nick, $account);
|
|
}
|
|
|
|
sub save_message_history {
|
|
my $self = shift;
|
|
$self->{pbot}->logger->log("Saving message history\n");
|
|
store($self->{message_history}, $self->{pbot}->{message_history_file});
|
|
$self->{pbot}->logger->log("Message history saved\n");
|
|
}
|
|
|
|
sub load_message_history {
|
|
my $self = shift;
|
|
|
|
if(-e $self->{pbot}->{message_history_file}) {
|
|
$self->{message_history} = retrieve($self->{pbot}->{message_history_file});
|
|
} else {
|
|
$self->{message_history} = {};
|
|
}
|
|
}
|
|
|
|
sub save_message_history_cmd {
|
|
my ($self, $from, $nick, $user, $host, $arguments) = @_;
|
|
$self->save_message_history;
|
|
return "Message history saved.";
|
|
}
|
|
|
|
1;
|