[Snort-users] Getting 'portscanned' by IRC servers.

Kris Kennaway kris at ...484...
Sun Sep 24 22:24:49 EDT 2000


On Fri, 22 Sep 2000, Steve Halligan wrote:

> wouldn't want to connect to one that didn't do it.  There must be an exploit
> (although I am unfamilar as to what it is) that would allow an insecure user
> to be compromised and thus compromising the others connected to the server.

I think the problem is users bouncing IRC sessions off of things like
SOCKS proxies and thereby being able to evade bans.

Kris

--
In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <forsythe at ...485...>




More information about the Snort-users mailing list