Page 1 of 1
Root listening or paranoid?
Posted: Mon Dec 10, 2007 11:24 pm
by chiappa
For example, lets consider the following scenario: "One is running unrealircd on a linux box, as a regular user. With only SSL encrypted traffic."
The question is, how possible would it be for the administrator to listen to the conversations made on the ircd server?
thx!
Re: Root listening or paranoid?
Posted: Tue Dec 11, 2007 1:33 am
by Stealth
If all traffic is SSL, and there are no services and no bots on that server, it is highly unlikely that anyone would be able to "listen in"
Re: Root listening or paranoid?
Posted: Tue Dec 11, 2007 3:35 pm
by Syzop
.. but still possible if you know how (I've successfully tried it on my own net) >:)
So it's quite recommended you have some trust in the people with root access.
Re: Root listening or paranoid?
Posted: Tue Dec 11, 2007 7:15 pm
by Jobe
Syzop wrote:.. but still possible if you know how (I've successfully tried it on my own net) >:)
So it's quite recommended you have some trust in the people with root access.
Or for that matter, anyone with access to a router between you and your server, and between your servers, etc...
Although someone with access to one of those routers are even less likly to snoop then a trustworthy root.
Re: Root listening or paranoid?
Posted: Wed Dec 12, 2007 8:34 am
by Syzop
Jobe1986: SSL
Re: Root listening or paranoid?
Posted: Wed Dec 12, 2007 5:53 pm
by Jobe
Syzop wrote:Jobe1986: SSL
Yeah, I always use SSL where possible, and require server to server links on my net to use SSL too.