Our IRC server is currently running a custom package of ircd-ratbox. This has several issues:
- It's old code (possibly ridden with security vulnerabilities)
- We're not properly maintaining it
- We're missing some features, e.g. TLS
- The packages are odd, with e.g. the configuration file being under /usr/etc.
So we should replace it with something newer. From a quick search, Debian seems to have lots of IRCd, with these as prime candidates: ircd-hybrid (from which ratbox was forked from), charybdis ("roots in ircd-ratbox and ircu") and ngircd (a lightweight server written from scratch).
charybdis sounds like the easiest migration path for us — the config file is almost the same, so probably compatible.
While at it, the config file should be split into a public section, checked in to puppet, that simple uses the .include facility to include the private parts (which in turn should be cleaned up, tons of ancient ACLs int there).