June 9th, 2002, 12:25 AM
Is ICQ really a security threat?
Ok I've scanned the forums and I can't find anything else that obviously relates to this, maybe because it is too lame! Sorry. But I'm not really into chatrooms and so on, so I don't really know much about them, and I avoid most instant messengers, or I did until recently. But havign downloaded and installed ICQ, I've been told I am much more likely to get hacked as it's a really easy way of obtaining IPs; is this the case? What makes it so much more of a target than any of the others? And if that is the case why do so many people apparently endorse it?
June 9th, 2002, 12:35 AM
Hmmmm well personnaly i don't really use IM's that much but I don't see how with proper carefull use it should make you any more vunerabile to hacks
Ok there are ICQ specific tools like flooders etc but if your just using it to chat to peps you know then you should be ok.
As for getting your ip - if ICQ works the same way as most (msn is the only one am familiar with) IM's then it shouldn't give away your ip unless you accept a file transfer which would start a p2p connection (peer to peer) or direct connection between yourself and the other person
normal traffic should pass through the ICQ server eg:
you --your msg--> ICQ SERVER --your msg--> friend
so the only Ip they will be able to see (using netstat -n or whatever) will be the servers addy
hope that helps some
June 9th, 2002, 12:46 AM
ICQ and AOL and the like are also "security" threats or, at least, privacy threats in that they ship the same way M$ ships their products... wide open. So, by default, they allow anyone to try to connect to you, to try to exchange files with you, or even to startup a conversation with you or see if you're online (ICQ will even allow you to do it across the web).
There have been numerous accounts of DoS attacks or similiar just based on the fact that you will let anyone send you a message. So, yeah, they're still a security risk... but, as long as you tighten them down, are conscious about who you're talking to, etc - it's usually manageable.
Also remember that now that AOL has purchased ICQ/Mirabilis (or whomever they were), the clients are largely the same and, similiarly, tend to have nearly identical or at least very similiar security problems...
\"Windows has detected that a gnat has farted in the general vicinity. You must reboot for changes to take affect. Reboot now?\"
June 9th, 2002, 12:50 AM
there are a lot of ip sniffers, mainly for AIM and ICQ, where you don't even have to have them on your buddy list for them to get your ip. They just connect to the net, start the prog, type in your number/handle/address/whatever, and the program spits out your ip. ICQ is a little older than most, so more people have developed sniffers and other progs to get your info for it than the other IMs.
June 9th, 2002, 12:49 PM