How to make my irc port java only; not allowing mIRC
-
- Posts: 8
- Joined: Sat Dec 04, 2004 4:38 pm
- Contact:
How to make my irc port java only; not allowing mIRC
Does anyone know how to make a port java only? To where no other mIRC clients, etc, can connect? I am have been having some problems with clone floods abusing my java port and they use proxies.
-
- Posts: 8
- Joined: Sat Dec 04, 2004 4:38 pm
- Contact:
That depends on your applet. Read it's documentation.
In unrealircd.conf, you have to modify the allow block.
Read the documentation about allow blocks:
http://www.vulnscan.org/UnrealIRCd/unre ... allowblock
In unrealircd.conf, you have to modify the allow block.
Read the documentation about allow blocks:
http://www.vulnscan.org/UnrealIRCd/unre ... allowblock
-
- Head of Support
- Posts: 2085
- Joined: Tue Jun 15, 2004 8:50 pm
- Location: Chino Hills, CA, US
- Contact:
Unreal doesn't know the difference between mIRC and Java. mIRC and Java are both clients, connect as cliends, and act like clients.
The only way to make Unreal know the difference would be to modify java client so the java client sends something to Unreal when it connects.
You would also need to modify Unreal (because I dont think modules have the ability to do this) to check for the extra thing the java sends, and disconnect the user is it is not sent.
However mIRC can be easily scripted to do something similar and still be able to connect on the same port.
The only way to make Unreal know the difference would be to modify java client so the java client sends something to Unreal when it connects.
You would also need to modify Unreal (because I dont think modules have the ability to do this) to check for the extra thing the java sends, and disconnect the user is it is not sent.
However mIRC can be easily scripted to do something similar and still be able to connect on the same port.
Aye other servers like chatspace for instance can do this but again anyone with some experience can still spoof their way in on mirc.
Best bet for proxies is bopm that will give em a head ache lol .
Anything put into the java applet ie specific idents etc are easy enough to figure out . If you dont want ppl in on mirc then you can always not disclose the port number and use something other than 6667 . Set your unreal clone limit so they cant clone . use countermeasures like security scripts. Some java clients will allow a version to be programmed . So you could always get the server to kill anything without the version in the java applet but again all you need to do is examine the java applet to discover it .
I found with clones if you find the spawner and gzline that it tends to stop the rest . Get your opers to watch out for the original connect and stop that first . most cloners will change their nick to match the clones nicks or appear similar so if nick Bob1 changes to lam3er5 and the clones are all lam3r or similar gzline that one first . then kill out the clones 1 by 1 .
But Bopm is worth a shot . It stopped my clone problem in its tracks .
That way the proxies are glined or whatever you set it to on connect so dont get into the server at all .
Best bet for proxies is bopm that will give em a head ache lol .
Anything put into the java applet ie specific idents etc are easy enough to figure out . If you dont want ppl in on mirc then you can always not disclose the port number and use something other than 6667 . Set your unreal clone limit so they cant clone . use countermeasures like security scripts. Some java clients will allow a version to be programmed . So you could always get the server to kill anything without the version in the java applet but again all you need to do is examine the java applet to discover it .
I found with clones if you find the spawner and gzline that it tends to stop the rest . Get your opers to watch out for the original connect and stop that first . most cloners will change their nick to match the clones nicks or appear similar so if nick Bob1 changes to lam3er5 and the clones are all lam3r or similar gzline that one first . then kill out the clones 1 by 1 .
But Bopm is worth a shot . It stopped my clone problem in its tracks .
That way the proxies are glined or whatever you set it to on connect so dont get into the server at all .
-
- Former UnrealIRCd head coder
- Posts: 811
- Joined: Sat Mar 06, 2004 8:47 pm
- Location: United States
- Contact:
This is very easy to figure out. Your machine keeps a list of all connections it has open. All you have to do is type netstat -a and you will see the port that it is using.If you dont want ppl in on mirc then you can always not disclose the port number and use something other than 6667
-- codemastr
-
- Posts: 59
- Joined: Sun Jun 20, 2004 3:30 am
- Contact:
I use the IRCD's ban version on my java server and just ban all known IRC clients, so when you connect:
Closing Link: |StealtH|[207-255-*-dhcp.aoo.pa.atlanticbb.net] (IRC clients are not allowed on the java server. Use irc.******.us or irc.**********.com)
°
* Disconnected
Closing Link: |StealtH|[207-255-*-dhcp.aoo.pa.atlanticbb.net] (IRC clients are not allowed on the java server. Use irc.******.us or irc.**********.com)
°
* Disconnected
[insert another cliche sig here.]
-
- Former UnrealIRCd head coder
- Posts: 811
- Joined: Sat Mar 06, 2004 8:47 pm
- Location: United States
- Contact:
Most clients let you change the version reply. mIRC is one of the few clients that doesn't. So basically, all I'd have to do is change it to an unknown version and I could connect. And actually, I generally have CTCP VERSION disabled on my client.I use the IRCD's ban version on my java server and just ban all known IRC clients, so when you connect:
-- codemastr
-
- Posts: 65
- Joined: Wed Apr 21, 2004 12:26 am
- Location: irc://irc.winbots.org/Winbots
- Contact:
-
- Former UnrealIRCd head coder
- Posts: 811
- Joined: Sat Mar 06, 2004 8:47 pm
- Location: United States
- Contact:
ngrep .*PASS.*aquanight wrote:The simplest solution is this: put a password on all of your allow blocks, and code the password into the java client (hardcode it if you can? else you'd have to probably put it in the <PARAM> whatever thing which would be bad if someone knows how to view source >_> ).
And that would show me the exact line the java chat is sending.
-- codemastr