InspIRCd v2 is coming to the end of its lifetime!
Fixes for security vulnerabilities will be provided until 2021-01-01 but after this date v2 will no longer be maintained.
InspIRCd v3 contains many new features including full support for all currently ratified IRCv3 extensions and WebSocket connections.
The "httpd_acl" Module
This module allows the server administrator to control who can access resources served over HTTP with the httpd module.
To load this module use the following
<httpdacl> tag defines settings about how the httpd_acl module should behave. This tag can be defined as many times as required.
|path||Text||None||Required! The path to protect with this ACL rule.|
|types||Text||None||Required! A comma-delimited list of types which apply to this ACL rule.|
|blacklist||Text||None||Required for the blacklist type! A comma-delimited list of IP addresses to deny access to this path from.|
|password||Text||None||Required for the password type! The password that HTTP connections must provide with their request.|
|username||Text||None||Required for the password type! The username that HTTP connections must provide with their request.|
|whitelist||Text||None||Required for the blacklist type! A comma-delimited list of IP addresses to allow access to this path from.|
The types field should be set to one or more of the following values:
|blacklist||Deny connections from the specified IP addresses.|
|password||Require connections to provide the specified username and password.|
|whitelist||Allow connections from the specified IP addresses.|
Denies access to the /stats* path from 192.0.2.* and 126.96.36.199.*:
<httpdacl path="/stats*" types="blacklist" blacklist="192.0.2.*,188.8.131.52.*">
Only allows access to the /config* path from 203.0.113.*:
<httpdacl path="/config*" types="whitelist" whitelist="203.0.113.*">
Requires requests to provide the username "inspircd" and password "correct horse battery staple":
<httpdacl path="/*" types="password" username="inspircd" password="correct horse battery staple">