An Idea

GouroB · Post by **GouroB** » Tue Jun 20, 2006 2:01 am

I was kinda confused where to post this, if i have picked wrong sections ... plz move this to right one.

I was thinking on how to make my server a bit more secure and got this idea....

Oper Port

what if special port is defined in unreal conf only those can be used to oper up. Like if port 6667-7000 is open for client connection, then there can be 1 or 2 ports like 4432 & 9969 can be there aswell but only clients connecting in those ports can use oper. not all clients connecting from normal ports. Then i think it will be more secure.

Jason · Post by **Jason** » Tue Jun 20, 2006 2:26 am

1) Thats security through obscurity, which we all know, is no security at all

2) I will portscan your IRCd, and learn that port.

4) 3 does too exist.

5) Wont make you more secure: See 1-4, then use oper hosts, or ssl client certificates.

GouroB · Post by **GouroB** » Tue Jun 20, 2006 12:54 pm

Jason .. how do u do port scan if i block stats for users ? yes using oper host but now every ip's having proxy, u cant claim ur ip is unique. still i thot it would help , if it doesnt ... my bad i just tried to help

thx

Dukat · Post by **Dukat** » Tue Jun 20, 2006 1:35 pm

Using a portscanner like nmap

Jason · Post by **Jason** » Tue Jun 20, 2006 6:30 pm

Port scanning has absolutely nothing to do with /stats P. It is when one uses a program to test all ports on a certain IP. It can be done fairly quickly.

Stealth · Post by **Stealth** » Wed Jun 21, 2006 1:36 am

Code: Select all

oper Stealth {
  from { userhost *@stealth's.special.host; };
  password "certs/stealth.cert.pem" { sslclientcert; };
  maxlogins 2;
  flags monkeys;
};

Almost 100% secure