Penetration Testing mailing list archives
Re: [PEN-TEST] IRC
From: Helmut Springer <delta () FAVEVE UNI-STUTTGART DE>
Date: Mon, 26 Feb 2001 19:00:12 +0100
On Mon 2001-02-26 (13:13), Fabio Pietrosanti wrote:
Linux has a module for handling DCC SEND in his nat subsystem, and should be pretty easy to hack it to rewrite the DCC SEND command with ip address such as 127.0.0.1 :)
If you're behind NAT and use a whitelist of destination ports, not supporting DCC will obviously block it. using an application gateway with limitations would be safest, several proxies (often called 'bouncer') are available as source.
Tell your users NEVER to accept DCC sends NEVER to do a DCC sendUsers does'nt respect policy!
work harder on that part. it pays most. but then, this is far from PEN-TEST's subject I'd say... -- MfG/best regards, helmut springer Life is a bitch and then you die.
Current thread:
- [PEN-TEST] IRC Beauregard, Claude Q (Feb 22)
- Re: [PEN-TEST] IRC Drie, Arie (Feb 23)
- Re: [PEN-TEST] IRC Fabio Pietrosanti (Feb 26)
- Re: [PEN-TEST] IRC Helmut Springer (Feb 26)
- Re: [PEN-TEST] IRC Fabio Pietrosanti (Feb 26)
- Re: [PEN-TEST] IRC Marius Huse Jacobsen (Feb 24)
- <Possible follow-ups>
- Re: [PEN-TEST] IRC Brooke, O'neil (EXP) (Feb 22)
- Re: [PEN-TEST] IRC Darwin Mecham (Feb 22)
- Re: [PEN-TEST] IRC Jason Witty (Feb 22)
- Re: [PEN-TEST] IRC Simon Waters (Feb 23)
- Re: [PEN-TEST] IRC Drie, Arie (Feb 23)