Re: Proposal: the 'token' solution - Informal part

["Mario 'BitKoenig' Holbe" <Mario.Holbe@xxxxxxxxxxxxxxxx>]

On Sat, Feb 19, 2000 at 10:05:49PM +0100, Christian 'HERZ' Makowski wrote:
> Why not just and easy hidden hosts (usermode +x)  like
> @ircnet-239185.dip.t-dialin.net

Because even this means more power for opers and gets us some
big steps near to any law enforcement all over the world, because
we are the only ones knowing the most important data: users IP...

> Only Opers can see User realhosts from Clients , and not the abusers.

... as u describe yourself.
Btw. at least in the logs this will be shown (opers don't need
special rights on IRC directly).

And this only defends IP based attacks, no layer 7 attacks like
collisions. And the main thing WE provide is an easy and fast
working solution against layer 7 attacks. It does solves too some
problems of IP based attacks, right.
Your approach only covers IP based attacks (and it does that better
than ours, of course - they just have a different main focus).

Btw... there is even a 'little' problem of implementing the whole
stuff - how would you cover it?
You could put some random stuff into hostname - this breaks every
channel ban for example.
You could MD5 the whole hostname - this breaks every wildcarded
channel ban for example.
You could rot13 the whole stuff - this works fine but gets nothing :)
You could MD5 every single part of a hostname, but - what's a
single part in dial34city.some.isp or host-ipa.ipb.ipc.ipd.some.isp?

Btw. I just had to DCC them some file to get their real IP.


regards,
-- 
Mario 'BitKoenig' Holbe <Mario.Holbe@xxxxxxxxxxxxxxxx>
http://WWW.RZ.TU-Ilmenau.DE/~holbe/

User sind wie ideale Gase - sie verteilen sich gleichmaessig ueber alle Platten