Penetration Testing mailing list archives
Re: [PEN-TEST] IRC
From: "Brooke, O'neil (EXP)" <o'neil.brooke () LMCO COM>
Date: Thu, 22 Feb 2001 18:16:23 -0500
I don't think that the Irc protocol will cause any compromises. There are some Irc client vulnerabilities and you may want to check into those. Perhaps packetstorm.securify.com and www.tlsecurity.com could help you there. One of the problems with IRC is that there are some nasty people out there and they are able to identify the computers you are using to get onto IRC. If someone goes into IRC via your Internet feed and annoys the script kiddies your firewall may get hit with DDOS attacks and other probes. This does not really have to do with the IRC protocol, but more to do with human nature. -----Original Message----- From: Beauregard, Claude Q [mailto:CQBeauregard () AAAMICHIGAN COM] Sent: Thursday, February 22, 2001 1:49 PM To: PEN-TEST () SECURITYFOCUS COM Subject: [PEN-TEST] IRC Does anyone know where I can get good documentation on the weakness of IRC and how allowing such a service through the firewall can compormise security. Thanks
Current thread:
- [PEN-TEST] IRC Beauregard, Claude Q (Feb 22)
- Re: [PEN-TEST] IRC Drie, Arie (Feb 23)
- Re: [PEN-TEST] IRC Fabio Pietrosanti (Feb 26)
- Re: [PEN-TEST] IRC Helmut Springer (Feb 26)
- Re: [PEN-TEST] IRC Fabio Pietrosanti (Feb 26)
- Re: [PEN-TEST] IRC Marius Huse Jacobsen (Feb 24)
- <Possible follow-ups>
- Re: [PEN-TEST] IRC Brooke, O'neil (EXP) (Feb 22)
- Re: [PEN-TEST] IRC Darwin Mecham (Feb 22)
- Re: [PEN-TEST] IRC Jason Witty (Feb 22)
- Re: [PEN-TEST] IRC Simon Waters (Feb 23)
- Re: [PEN-TEST] IRC Drie, Arie (Feb 23)