Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

basics logo Security Basics mailing list archives

RE: anonymous irc connection via shell?
From: "Security" <security () platinum-hosting net>
Date: Mon, 28 Feb 2005 16:22:20 -0600
Depends,

Some use "bouncers" which bounce the connection off of shell servers.
Others might use the built in IRC servers masking system, be it a
userhost(users.irc.server.name.com) or masking(Prefix(Usually a "shortname
for the network")-[0-9A-F](Repeasted several times) which can give a host,
in my case, looking like WHT-BD9588AE.wp.shawcable.net.  To enable the
masking on the server I am on, it is "/mode <username> +x"

Dan

-----Original Message-----
From: Dan Wozniak [mailto:dwozniak () exs esb com] 
Sent: Friday, February 25, 2005 4:20 PM
To: security-basics () securityfocus com
Subject: anonymous irc connection via shell?

I've been using IRC for a year or so and i've noticed certain users have
"masked" or completely removed their sensitive host information such as
the ip and hostname.  Or else they're using an anonymous shell account
(proxy?).  My question is how do they do this?

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]