Bugtraq mailing list archives
IRC problems & other fun?
From: elfchief () lupine org (That Whispering Wolf...)
Date: Tue, 11 Oct 1994 20:28:01 -0400
We've had a few account violations at a site I administer, and I believe
that the problem has been pinpointed as being IRC. One user pointed this out
as the access point into his own account, and this seems to be confirmed by
a co-worker who also had his account broken, in apparently the same meathod.
So, the question is -- Have there been any new holes in IRC (the newest non-
beta version... IRCII 2.2.9, I think) discovered recently? I'm aware of the
"ON EXEC" problems, and the like, but the co-worker who's account was broken
ran no scripts, nor executed any command to disable EXEC_PROTECTION or
anything simular (he's a very lightweight IRC user).
I'd -really- like to find the specific meathod of entry here -- Disabling
IRC is really not an option.
Anyone have ideas?
-WW
Current thread:
- IRC problems & other fun? That Whispering Wolf... (Oct 11)
- Re: IRC problems & other fun? Lawrence C Mc Abee (Oct 11)
- Re: IRC problems & other fun? Alexander L. Haiut (Oct 12)
- Should any user be allowed to create group? Joseph Yip (Oct 12)
- Re: IRC problems & other fun? matthew green (Oct 11)
- recieving adivsories Richard Ortal (Oct 12)
- <Possible follow-ups>
- Re: IRC problems & other fun? Panzer Boy (Oct 12)
- Re: IRC problems & other fun? Lawrence C Mc Abee (Oct 11)