Date: Fri, 30 Aug 1996 07:50:19 -0400 (EDT) From: Yves Lepage <yves@CC.McGill.CA> To: dmr@fc.edu Cc: freebsd-questions@freebsd.org Subject: Re: How to: eliminate IRC from telnet sessions? Message-ID: <199608301150.HAA07735@maelstrom.CC.McGill.CA>
next in thread | raw e-mail | index | archive | help
Hi, I find it unfortunate that you want to ban IRC usage but here's my experiences: - just removing IRC applications won't work. They can be downloaded from a large number of sites around the world. - When a user download an IRC app, he'll make sure it's not detected: - they'll hide them in usr/spool/mail or /tmp - they'll rename them to things like -csh so that you can't see they are IRC'ing - Sites around the world offer telnet access to IRC servers. Your users will telnet to there and use IRC from the remote site. - You could block outgoing traffic to port 6667 using the ipfw package. However, your users will be able to take arrangements with server admins so that they can use another port. I do it for a couple of Canadians sites with port 6667 blocked. ;-) I think your best bet here is to put up a policy. Make sure your policy is known by all your users and plan disciplinary measures in that policy if the user is caught using IRC. This is the best way to ban IRC from your site. ANy technical way will fail. Of course, with remote telnet access, you will never be able to prove that they were using IRC. If your users use IRC via a PPP link, you will have to get into hard work (capturing packets and the like) to be able to prove it. I hope this helps. Regards, Yves Lepage
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199608301150.HAA07735>