|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: root on irc
From: Cyber_Bob (Cyber-Bob
BAK.RR.COM)Date: Thu Sep 14 2000 - 22:51:52 CDT
- Next message: Michael Bellears: "Re: FTPD Question"
- Previous message: Alejandro Flores: "Re: Apache Logs"
- In reply to: QBA: "root on irc"
- Next in thread: Achilleas Kotsis: "Re: root on irc"
- Reply: Cyber_Bob: "Re: root on irc"
- Reply: Achilleas Kotsis: "Re: root on irc"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
For example, kVIRC run on X11 contains an overflow that allows you to grab
files:
saying "!nickname ../../../../../etc/passwd" would make 'nickname' send you
his passwd file
via DCC. That is if the user has acces to /etc/password and he wouldn't if
he wasn't using
IRC as root. Sorry, Can't remember the version of kVIRC that does this but
it isn't new.
Cyber_Bob
sysadminbak.rr.com
----- Original Message -----
From: "QBA" <kubarutPOCZTA.WP.PL>
To: <FOCUS-LINUXSECURITYFOCUS.COM>
Sent: Tuesday, September 12, 2000 2:41 PM
Subject: root on irc
> Hi,
>
> I heard that running irc as a root is not too wise.
> Could you tell me why? And how anybody can know that someone
> is a root anyway? BTW where on web can I find tons of text infos
> about (in)security?
> Thank you for help,
>
> QBA
>
- Next message: Michael Bellears: "Re: FTPD Question"
- Previous message: Alejandro Flores: "Re: Apache Logs"
- In reply to: QBA: "root on irc"
- Next in thread: Achilleas Kotsis: "Re: root on irc"
- Reply: Cyber_Bob: "Re: root on irc"
- Reply: Achilleas Kotsis: "Re: root on irc"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]