Closed Zarthus closed 5 years ago
It seems to be a service running this piece of code: https://github.com/matrix-org/matrix-appservice-irc/blob/develop/lib/bridge/MatrixHandler.js
The commands are identical.
Confirming this issue from Snoonet's side, where we have Hackint's nickserv bridged:
[12:00:08] <A_Dragon> help
[12:00:13] -enick_220- Welcome to HackINT, A_DragonIRC|m! Here on HackINT, we provide services to enable the registration of nicknames and channels! For details, type /msg NickServ help and /msg ChanServ help.
[12:16:04] <A_Dragon> help
[12:16:09] -enick_220- ***** NickServ Help *****
[12:16:10] -enick_220- NickServ allows users to 'register' a nickname, and stop
[12:16:10] -enick_220- others from using that nick. NickServ allows the owner of a
[12:16:11] -enick_220- nickname to disconnect a user from the network that is using
[12:16:12] -enick_220- their nickname.
[12:16:12] -enick_220- If a registered nick is not used by the owner for 365 days,
[12:16:16] -enick_220- NickServ will drop the nickname, allowing it to be reregistered.
[12:16:17] -enick_220-
[12:16:17] -enick_220- For more information on a command, type:
[12:16:18] -enick_220- /msg NickServ help <command>
[12:16:19] -enick_220- For a verbose listing of all commands, type:
[12:16:19] -enick_220- /msg NickServ help commands
[12:16:20] -enick_220-
[12:16:21] -enick_220- The following commands are available:
[12:16:21] -enick_220- GHOST Reclaims use of a nickname.
[12:16:22] -enick_220- IDENTIFY Identifies to services for a nickname.
[12:16:23] -enick_220- INFO Displays information on registrations.
[12:16:24] -enick_220- LISTCHANS Lists channels that you have access to.
[12:16:24] -enick_220- REGISTER Registers a nickname.
[12:16:25] -enick_220- RELEASE Releases a services enforcer.
[12:16:26] -enick_220- SENDPASS Email registration passwords.
[12:16:26] -enick_220-
[12:16:27] -enick_220- Other commands: ACC, CERT, DROP, HELP, LISTGROUPS, LOGOUT,
[12:16:28] -enick_220- REGAIN, SETPASS, STATUS, TAXONOMY, VERIFY
[12:16:28] -enick_220- ***** End of Help *****
[12:16:29] -enick_220- If you're having trouble or you need some additional help, you may want to join the help channel #hackint or visit the help webpage http://www.hackint.org/services
Lagtime on messages due to snoonet fakelag
There's more than just snoonet involved here; I've seen references to freenode, mozilla, and hackint as well. (all of the bridges seem to use a nick like $network-irc
for the initial bridge connection (e.g. @espernet-irc:matrix.org
, @snoonet-irc:matrix.org
), and it develops from there (with patterns like @_snoonet_Zarthus:matrix.org
)
Additionally, freenode's chanserv is bridged to Snoonet
After further checking, mozilla, oftc, appservice, and espernet are connected to snoonet in the manner described above by @Zarthus
hi all - thanks for flagging this; it looks like someone has bridged a room irc<->matrix<->irc, causing any bots on the matrix side which represent the respective irc bridges to also get bridged. we are out of the loop this weekend but can jump on this on monday and figure out how to stop doublebridging for networks who don’t want their channels linked to other servers.
(we've been investigating this today; will report back once we have a plan)
@ara4n, howdy! Do you happen to have any updates regarding this matter? (not asking for a direct solution, but I wonder if you've been able to identify any possible paths for a good long-term solution.)
@ara4n This is still an issue, do you have any updates?
On our network I'm also observing gitter<->matrix<->irc..
This is getting quite embarrassing and I'm not sure if the effort is really worth keeping matrix around for.
FYI we have started progress on blocking this with https://github.com/matrix-org/matrix-appservice-irc/pull/669 . Individual bridges can be configured to disallow sharing rooms with other bridges they collide with.
For existing rooms, I'd like to work with folks to gracefully unbridge them so we don't suddenly cut off communities, but also try to cut back on the behaviour.
@Zarthus we've almost finished sorting this (as per half-shot's PR)
@ara4n, @Half-Shot - It looks like the PR was merged, can this issue be closed or is there still work to do?
Thank you for taking care Half-Shot :)
When you talk with one of them:
This relates to https://github.com/matrix-org/matrix-appservice-irc/issues/510 - but is even more dangerous because it indicates Matrix allows bot accounts on their main service, completely free of registration, and that's even more embarassing.
What's worse is that this mimics and entire ircd; there's spam limitations and it's asking me to register. Proxying a service is a horrible idea and we've banned it on accounts of phishing. But this kind of thing should not be possible in the first place.
cc @ara4n - as you've dealt with my previous ticket.