[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: security holes

To: Tom Kwong <tkwong@xxxxxxxxx>
Subject: RE: security holes
From: Tomas Kraus <kratz@xxxxxxxxxxx>
Date: Thu, 20 Jan 2000 11:27:13 +0100 (CET)
Cc: ircd-users@xxxxxxx
Delivered-to: ircd-users-out@irc.org
Delivered-to: ircd-users@irc.org
In-reply-to: <38855F0C.BE0B5994@2link.net>

Well ... :)
Many of us run ircd on i386 (Linux, FreeBSD, ...) and i haven't seen hacked
i386 servers using some security hole in ircd.
My computer was hacked few months ago because of holes in HP-UX so I moved to
FreeBSD with only ssh+libwrap, sendmail+libwrap, icmp/pop3+libwrap and only few
IPs in hosts.allow ...and with ircd without libwrap opened for *.cz,*.sk,*.at
Hackers are still trying to get in ...but seems they still don't know how to
do it. :)
So ...comment out what you can (and also what you can not :) in inetd.conf
...or better to use xinetd as i do?, add tcp wrappers, add libwrap into
everything you can and belive only to few ident@IPs. 

                                             Kratz

On 19-Jan-00 Tom Kwong wrote:
> Hi!
> 
> I am trying to get ircd running on my linux box.  Some people told me
> that ircd has many security holes.  Is that true?  And, if so, where can
> I find the details about that?  Thanks!
> 
> Tom

----------------------------------
E-Mail: Tomas Kraus <kratz@xxxxxxxxxxx>
Date: 20-Jan-00
Time: 11:15:42

This message was sent by XFMail
----------------------------------

Follow-Ups:
- Re: security holes
  - From: Krome Plasma

References:
- security holes
  - From: Tom Kwong

Prev by Date: Re: security holes
Next by Date: Re: security holes
Previous by thread: Re: security holes
Next by thread: Re: security holes
Index(es):
- Date
- Thread