From owner-freebsd-stable Mon Dec 2 16:10:35 2002 Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3980537B401 for ; Mon, 2 Dec 2002 16:10:34 -0800 (PST) Received: from smtp3.libero.it (smtp3.libero.it [193.70.192.127]) by mx1.FreeBSD.org (Postfix) with ESMTP id A053843EA9 for ; Mon, 2 Dec 2002 16:10:33 -0800 (PST) (envelope-from saturnero@libero.it) Received: from mocciosa.saturnero.sat (151.42.69.238) by smtp3.libero.it (6.7.015) id 3DE6121F001DB451 for stable@freebsd.org; Tue, 3 Dec 2002 01:10:32 +0100 Received: from pigra.saturnero.sat (pigra.saturnero.sat [10.0.1.1]) by mocciosa.saturnero.sat (Postfix) with SMTP id 72BA53BFC6 for ; Tue, 3 Dec 2002 01:11:09 +0100 (CET) Date: Tue, 3 Dec 2002 01:10:38 +0100 From: Dario Freni To: stable@freebsd.org Subject: Re: psybnc and IRC hack Message-Id: <20021203011038.1d783b9d.saturnero@libero.it> In-Reply-To: <20021202175505.A1525@klentaq.com> References: <20021202123616.A33705@klentaq.com> <009101c29a34$1b96f4d0$0301a8c0@prime> <20021202175505.A1525@klentaq.com> X-Mailer: Sylpheed version 0.8.6claws (GTK+ 1.2.10; i386-portbld-freebsd5.0) X-Operating-System: FreeBSD 4.7-STABLE (What else? ;) X-Crypto: GnuPG/1.2.0 http://www.gnupg.org X-GPG-Key: http://www.saturnero.net/saturnero.asc X-GPG-Fingerprint: 0976 43C7 CECC B933 21FE 5B16 6755 EA5A 3D4E A941 Mime-Version: 1.0 Content-Type: multipart/signed; protocol="application/pgp-signature"; micalg="pgp-sha1"; boundary=".ntYDww)c_=.glr6" Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --.ntYDww)c_=.glr6 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit On Mon, 2 Dec 2002 17:55:05 -0600 Wayne M Barnes wrote: > What is "an IRC bouncer"? Is it something I can use to protect > against this hijack of my system? psybnc is a program to make a bridge between an user (perhaps the cracker), and an IRC server. It's often used to hide own ip on public networks, expecially IRCnet. Other programs installed very often by a cracker could be iroffer (to share files on IRC), and eggdrop (an IRC bot). Some rootkits has some of them included. Bye, Dario --.ntYDww)c_=.glr6 Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (FreeBSD) iD8DBQE96/aBZ1XqWj1OqUERAlcIAJ4zLbo6SU2eFTXd1tiiuWV0PpjL2ACfaO5G rMg/rIGP3Nd0SgpT/cYM+2c= =ywl6 -----END PGP SIGNATURE----- --.ntYDww)c_=.glr6-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message