-
January 9th, 2006, 09:22 PM
#1
Junior Member
IRC Proxy
Hi Everyone,
I'm hoping that someone might have some insite into what I'm trying to accomplish. I need to allow some folks to use IRC, however I don't want to open up that port for everyone. I'd also like to restrict the channels that the could access. I've tinkered around with a couple of different IRC proxies (IRCProxy 1.2.41 and psyBNC 2.3.2-7) and while I've had luck connecting and getting the proxies to work, they don't seem to assist in the limitations. Example, using psyBNC, I've set the limitations, however I'm still able to connect. I've verified from a couple of 3rd party sources that I'm indeed doing this correctly. Does anyone have any other ideas about how I could administer the IRC connections? At this point, I'm honestly just considering telling these folks that I'm not going to open that port up. Thanks again for your time.
-
January 9th, 2006, 09:33 PM
#2
Is this an idea for work ?
or is it just for friends ?
if it IS for work, go with your instincts, and tell 'em no .......
they would have to have pretty good reasons for IRC in work time .......
I assume it IS work related as I don't see the issue if it is a friends thing .............
so now I'm in my SIXTIES FFS
WTAF, how did that happen, so no more alterations to the sig, it will remain as is now
Beware of Geeks bearing GIF's
come and waste the day :P at The Taz Zone
-
January 9th, 2006, 09:44 PM
#3
Junior Member
This is for work.... unfortunately. ;-)
That's where I'm at at this point. There just doens't seem to be a way to properly secure that type of connection and mean while keep my network safe from anything that could potentially *happen*. Thank you for your reply.
-
January 9th, 2006, 10:42 PM
#4
I believe there are a couple variables in the psybnc.conf file that may help you. you can have
USER1.USER.USER=some-username
USER1.USER.PASS==Some-password
USER2.USER.USER=some-different-username
USER2.USER.PASS==Some-password
and so on, I also believe you can use
PSYBNC.HOSTALLOWS.ENTRY0=some-IP
PSYBNC.HOSTALLOWS.ENTRY1=some-other-IP
and so on
It should all be in the README file
Hope this helps or at least gets you headed in the right direction
There are two rules for success in life:
Rule 1: Don't tell people everything you know.
-
January 9th, 2006, 10:52 PM
#5
Junior Member
Hi Opus,
Thank you for your response. I do actually certain settings statically listed in the conf file.
USER1.BAN.ENTRY1= no access;#AllNiteCafe reason
USER1.BAN.ENTRY0= no access;#Casual reason
I've also statically set the usernames and encrypted passwords. The users are still able to access the banned channels. More than anything, I'm worried about would could come from those IRC connections such as Trojans, and various other nasty viruses etc... In fact the weird thing is, the daemon was rewriting that conf file while it was running. A user would connect and it would show that they connected to that channel after I specifically banned it. I tried to get smart and remove write access for the user the proxy was running as, and it actually changed the permissions of conf file when it restarted and the daemon was able to make new entries allowing users access thus overwriting any config changes I made.
-
January 9th, 2006, 11:02 PM
#6
I wonder if it is reading the entire .conf file. I'm trying to find out a way to test that, will try and get back to you soon
There are two rules for success in life:
Rule 1: Don't tell people everything you know.
-
January 9th, 2006, 11:38 PM
#7
Junior Member
Hi Opus,
Thank you again for your reply. Your help is much appreciated.
-
January 9th, 2006, 11:44 PM
#8
sorry, left work and headed home, are you running
make menuconfig
??
I don't see an easy way to debug without getting into the code but I am betting the config file is not correct
Looks like you need to add these bans once the bnc is up and running using internal command. Looks like the channel ban must also include a hostmask for the user
ADDBAN [network~][#chan] reason :hostmask
So you may need to add the other restrictions with in the bnc command system. There are a list of commands and their syntax in the psybnc/help directory
There are two rules for success in life:
Rule 1: Don't tell people everything you know.
-
January 10th, 2006, 12:07 AM
#9
foxyloxley
I IRC from work all the time, it is not all that unsafe if you know how it works and what not to do. Such as disabling DCC and not foolishly clicking on links or disclosing information that you would not want others to obtain. I find it a great way of communicating to a like minded group.
Then again, if it is for play and not understood, it isn't recommended from a work environment. But then again, I do only frequent my own IRC network, which helps.
There are two rules for success in life:
Rule 1: Don't tell people everything you know.
-
January 10th, 2006, 12:24 AM
#10
Junior Member
Hi everyone,
OPUS: I did use the make menu config and re-run make after this. I did verify that the changes were made the conf file, however that user is still able to access the banned channels. My main concern is the usage. I'm not sure, what would all be sent over this connection. I'm worried about folks trusting and untrusted resource and possibly accepting something that shouldn't be accepted. Thank you again for your response.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|