mode for a specified message base (mail or sub-board). This logic exists in
many other files and can now be consolidated using this single function.

Use fopen/fprintf (buffered writes) rather than open/write.
Use safe_snprintf() and SAFEPRINTF for safe string formatting.
Use a variable for line-endings (in preparation for support for Unix-style log
files for those sysops that prefer them).
hacklog() now supports a NULL 'text' argument.

loginFailure() now handles a NULL password argument correctly.

which are inboxes, the secure inbound and the non-secure inbound.

file (in .can file format) which lists IP addresses or hostnames which will
be exempt from temporary bans or permanent filters.

Added (new) '-a' option to dump the parsed area file (areas.bbs) to stdout
(useful for debugging area file issues).
Only age-filtered messages can be relayed to downlinks now (not twit-filtered
messages).

1. check if user is online before starting any scanning/packing
2. log a message when aborting scan/pack due to user online

into a terminal server node)

semi-normal cases (e.g. user does not have permissions for this node). Fixes
"User not logged on" error.

character of the default outbound directory *unless* it is a path delimiter
(e.g. / or \) - for BSO only.
Also minor optimization: don't call mkpath() unless isdir() returns false
(on the outbound directory).

be 0 (at least on Windows), but readuserdat() treated 0 as an invalid file
descriptor and opened the file again. The probably is the reason for the
reported issues with the Windows GUI user editor not being able to save
changes to the user database. Bug introduced in Dec-2015 (rev 1.164 of this
file).

Added support for "%RESCAN <echo-tag>" at the request of Al Prunty, because he
asked for this "new feature".

Filtered messages include messages not imported due to age, twitlist, dupes,
etc. To change this behavior, set RelayFilteredMsgs=true in your sbbsecho.ini.

ERROR 2 (No such file or directory) opening stray packet: /sbbs/temp/sbbsecho/577ab8e4.pkt

(35 chars). Use macros for maximum internal code length and echo tag lengths.

1. Reported by Accession and Rastus: when linking/unlinking echoes via AreaFix,
    all the linked node addresses (in the areas.bbs file) would be changed to a
    garbage address (e.g. "16720:17235/19521.19551").
    Bug introduced in sbbsecho.c rev 3.13 (May-9-2016).

2. Reported by Accession:
    Extraneous debug-level log output (a log line for each echo that exists in
    the area file): "Adding areas for <addr> to path/to/areas.bbs" and
    "Removnig areas for <addr> from path/to/areas.bbs".
    Introduced way back in sbbsecho.c rev 1.249 (Apr-17-2014).
    Now, a single debug-level log entries is added per areafix change request
    for all adds (area linking) and then all deletions (area unlinking) which
    makes much more sense.

3. Observed in the code:
    When using AreaFix to modify the area file (areas.bbs), if a modified
    echo's internal code was 16 characters, exaclty, then no space would be
    added between the internal code and the echotag.
    This bug has apparently been possible since the introduction of internal
    code prefixes in 2003.

the LogTimeFormat key in sbbsecho.ini. The default is "%Y-%m-%d %H:%M:%S".
If you want the old (v2) time-stamp format, set this value to
"%m/%d/%y %H:%M:%S". Any/all valid strftime() specifiers may be used.

this is not a totally unexpected occurrance. No need to fill up the error.log.

Windows build of addfiles, et al.

- "Configure" menus (not working since the IPv6 commit) - both IPv4 and IPv6
   addresses may be specified (comma-separated), or multiple IPv4 addresses!
- Added new "Temp Ban" settings to Properites->Security tab.
- Added context (tab) sensitive "Help" button to Properties page
  (links to section on relevant wiki page).
- Every log window has a new right-click pop-up menu with 2 options:
  1. Copy Selected
  2. Copy All
  Hopefully it's obvious what these menu options do. :-)

- Never ban the server's own address
- Log the login attempt and last name attempted
- Use a compressed version of the HH:MM:SS "time remaining" portion of the log
  message

LoginAttemptBanDuration value. Allows short-hand multipliers: YWDHMS
(year, week, day, hour, minute, second) and fractions (e.g. "2.5H").

size_t.

By default, after 20 consecutive (unique) failed login attempts, *or*
a failed login attempt wtih a name from the name.can filter file.
The default temporary ban duration is 10 minutes.
The temporary ban thershold is configurable via LoginAttemptTempBanThreshold
in sbbs.ini and the ban duration is configurable via LoginAttemptTempBanDuration
(in seconds).

prepend the text directory).

By default, after 20 consecutive (unique) failed login attempts, *or*
a failed login attempt wtih a name from the name.can filter file.
The default temporary ban duration is 10 minutes.
The temporary ban thershold is configurable via LoginAttemptTempBanThreshold
in sbbs.ini and the ban duration is configurable via LoginAttemptTempBanDuration
(in seconds).

calling Socket.bind() with an undefined hostname parameter would result in a
getaddrinfo() failure, e.g. on Windows, WSAHOST_NOT_FOUND 11001
The ircd.js passes the value of server.interface_ip_address to socket.bind()
and when run from jsexec, this property is not defined. So you couldn't run the
ircd from jsexec or you'd get "!Error 0 binding socket to TCP port xxx".
Also now setting the socket last_error value upon getaddrinfo() failure so
if there is a failure, the error message won't include the erroneous "Error 0".

underlying send() function is free to send a subset of the bytes, and
occasionally does (especially on non-blocking sockets).  The return value
was true if all bytes were sent or false if not all bytes were sent.

The new behaviour is to return the number of bytes sent or null on failure.

This is mostly compatible with existing code which appears to universally use
if (!sock.send(str))

Cases where it's not compatible are when a zero-length string is sent.  The
handling of errors is slightly different now too... previously, if you
retransmitted on failure, the stream would "stutter" now it will have
"holes".

StrictPacketPasswords (default is "true").
If you want SBBSecho v3 to behave like SBBSecho v2 with regards to packet
passwords for linked-nodes with *no* configured packet password, set this value
to "true" in your sbbsecho.ini file. I don't recommend doing this if you care
about the "security" of your echomail, but some sysops have been bitten by the
strict enforcement of the configured password in SBBSecho v3.

I also fixed some (but not all) of the signed/unsigned value comparison
warnings reported by msvc2013. Hopefully this didn't introduce any stupid bugs.

This has been broken (did not track consecutive failed login attempts from
the same client IP address) since the IPv6 commit of Aug-2015. I only noticed
this wasn't working when I was documenting the "auto-block hackers" feature
on the Wiki and noticed that every failed login (even those from the same IP)
was listed as a separate entry in the "Failed Logins" list (e.g.
sbbsctrl->View->Login Attempts). Ugh.

value (of "SYSOP") for the DefaultRecipient key. If it's blank (nobody)
just leave it blank.

(paraphrased) encountered when performing a echomail rescan for link(s):
When a packet reaches the configured "maximum packet size", finalize the
packet immediately (terminate the packet and close the file) rather than
waiting until the very end of all SBBSecho operations.