IRC Proxy
Page 1 of 2 12 LastLast
Results 1 to 10 of 12

Thread: IRC Proxy

  1. #1
    Junior Member
    Join Date
    Jan 2006
    Posts
    6

    IRC Proxy

    Hi Everyone,

    I'm hoping that someone might have some insite into what I'm trying to accomplish. I need to allow some folks to use IRC, however I don't want to open up that port for everyone. I'd also like to restrict the channels that the could access. I've tinkered around with a couple of different IRC proxies (IRCProxy 1.2.41 and psyBNC 2.3.2-7) and while I've had luck connecting and getting the proxies to work, they don't seem to assist in the limitations. Example, using psyBNC, I've set the limitations, however I'm still able to connect. I've verified from a couple of 3rd party sources that I'm indeed doing this correctly. Does anyone have any other ideas about how I could administer the IRC connections? At this point, I'm honestly just considering telling these folks that I'm not going to open that port up. Thanks again for your time.

  2. #2
    They call me the Hunted foxyloxley's Avatar
    Join Date
    Nov 2003
    Location
    3rd Rock from Sun
    Posts
    2,528
    Is this an idea for work ?
    or is it just for friends ?


    if it IS for work, go with your instincts, and tell 'em no .......
    they would have to have pretty good reasons for IRC in work time .......
    I assume it IS work related as I don't see the issue if it is a friends thing .............
    55 - I'm fiftyfeckinfive and STILL no wiser,
    OLDER yes
    Beware of Geeks bearing GIF's
    come and waste the day :P at The Taz Zone

  3. #3
    Junior Member
    Join Date
    Jan 2006
    Posts
    6
    This is for work.... unfortunately. ;-)

    That's where I'm at at this point. There just doens't seem to be a way to properly secure that type of connection and mean while keep my network safe from anything that could potentially *happen*. Thank you for your reply.

  4. #4
    Senior Member Opus00's Avatar
    Join Date
    May 2005
    Posts
    143
    I believe there are a couple variables in the psybnc.conf file that may help you. you can have
    USER1.USER.USER=some-username
    USER1.USER.PASS==Some-password
    USER2.USER.USER=some-different-username
    USER2.USER.PASS==Some-password

    and so on, I also believe you can use
    PSYBNC.HOSTALLOWS.ENTRY0=some-IP
    PSYBNC.HOSTALLOWS.ENTRY1=some-other-IP
    and so on

    It should all be in the README file

    Hope this helps or at least gets you headed in the right direction
    There are two rules for success in life:
    Rule 1: Don't tell people everything you know.

  5. #5
    Junior Member
    Join Date
    Jan 2006
    Posts
    6
    Hi Opus,

    Thank you for your response. I do actually certain settings statically listed in the conf file.

    USER1.BAN.ENTRY1= no access;#AllNiteCafe reason
    USER1.BAN.ENTRY0= no access;#Casual reason

    I've also statically set the usernames and encrypted passwords. The users are still able to access the banned channels. More than anything, I'm worried about would could come from those IRC connections such as Trojans, and various other nasty viruses etc... In fact the weird thing is, the daemon was rewriting that conf file while it was running. A user would connect and it would show that they connected to that channel after I specifically banned it. I tried to get smart and remove write access for the user the proxy was running as, and it actually changed the permissions of conf file when it restarted and the daemon was able to make new entries allowing users access thus overwriting any config changes I made.

  6. #6
    Senior Member Opus00's Avatar
    Join Date
    May 2005
    Posts
    143
    I wonder if it is reading the entire .conf file. I'm trying to find out a way to test that, will try and get back to you soon
    There are two rules for success in life:
    Rule 1: Don't tell people everything you know.

  7. #7
    Junior Member
    Join Date
    Jan 2006
    Posts
    6
    Hi Opus,

    Thank you again for your reply. Your help is much appreciated.

  8. #8
    Senior Member Opus00's Avatar
    Join Date
    May 2005
    Posts
    143
    sorry, left work and headed home, are you running

    make menuconfig

    ??
    I don't see an easy way to debug without getting into the code but I am betting the config file is not correct

    Looks like you need to add these bans once the bnc is up and running using internal command. Looks like the channel ban must also include a hostmask for the user

    ADDBAN [network~][#chan] reason :hostmask

    So you may need to add the other restrictions with in the bnc command system. There are a list of commands and their syntax in the psybnc/help directory
    There are two rules for success in life:
    Rule 1: Don't tell people everything you know.

  9. #9
    Senior Member Opus00's Avatar
    Join Date
    May 2005
    Posts
    143
    foxyloxley

    I IRC from work all the time, it is not all that unsafe if you know how it works and what not to do. Such as disabling DCC and not foolishly clicking on links or disclosing information that you would not want others to obtain. I find it a great way of communicating to a like minded group.

    Then again, if it is for play and not understood, it isn't recommended from a work environment. But then again, I do only frequent my own IRC network, which helps.
    There are two rules for success in life:
    Rule 1: Don't tell people everything you know.

  10. #10
    Junior Member
    Join Date
    Jan 2006
    Posts
    6
    Hi everyone,

    OPUS: I did use the make menu config and re-run make after this. I did verify that the changes were made the conf file, however that user is still able to access the banned channels. My main concern is the usage. I'm not sure, what would all be sent over this connection. I'm worried about folks trusting and untrusted resource and possibly accepting something that shouldn't be accepted. Thank you again for your response.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •