Host masking/Cloaking

Lubomir Radev demond at demond.net
Wed Aug 18 20:44:15 EDT 2004 

It's impossible to write a cloaking/hostmasking loadable module because
ircd-hybrid doesn't provide enough hooking/callback mechanisms for such
kind of stuff... something that should be looked at by the core
developers, IMHO

There is a number of mods, including one from myself, which have that
feature implemented; however, I don't have a separate cloaking patch,
and if you extract the diffs from my project's sf.net CVS
(http://sf.net/projects/hybrid7-bg), you'll need to tweak it to obtain
usable patch, since the codebase is pretty outdated (hybrid7rc9)


> -----Original Message-----
> From: hybrid-bounces at lists.ircd-hybrid.org [mailto:hybrid-
> bounces at lists.ircd-hybrid.org] On Behalf Of Derek Cooper
> Sent: Wednesday, August 18, 2004 7:48 PM
> To: General IRCD-Hybrid Discussion
> Subject: Re: Host masking/Cloaking
> 
> who said 5000 script kiddies?..
> simple question guys... IS there a cloaking/masking module/patch?.
> I dont need other alternative suggestions on how to run my network.
> 
> Thanks to those genuinely trying to help.
> ----- Original Message -----
> From: "Peter Evans" <peter+hybrid at ixp.jp>
> To: "General IRCD-Hybrid Discussion" <hybrid at lists.ircd-hybrid.org>
> Sent: Thursday, August 19, 2004 1:56 AM
> Subject: Re: Host masking/Cloaking
> 
> 
> > Paul-Andrew Joseph Miseiko (esoteric at teardrop.ca) wrote:
> > > Assuming your argument is valid and users can in fact get other
users
> IP's
> > > then what is to stop them from getting other users spoofs?  If
they
> can
> > > acquire someone else's IP then acquiring someone else's spoof is
just
> as
> > > trivial.
> >
> > <snip all that rubbish and top posting ...>
> >
> >
> > Well, you have a couple of solutions when you have 5000 script
kiddies.
> >
> > 1 - shut down the irc server and let them become someone else's
problem.
> >
> > 2 - no spoofing at all (except server ops). if the pencildicks want
to
> >     play packet flooding, let them.
> >
> > 3 - spoof ALL users to the same address, that way no one can tell
what
> is
> >     going on. ( @localhost or @this.address.is.spoofed.numbnuts are
good
> >     candidates.)
> >
> > 4 - require user authentication.
> >
> > <insert other possibilities here>
> >
> >
> > Personally, I favour 1, but if that isn't an option, 2, and have
some
> server
> > ops floating around with the KILL line and instructions to kill off
/24s
> that
> > even remotely cause problems.
> >
> > Anyone who has problems being killed, read them their rights (NONE
what
> so
> ever)
> > and tell them to go pee in someone else's puddle.
> >
> > As for 3, the pencildicks will just attack the server when they cant
get
> their
> > little prepubescent rocks off Dos'ing other users.
> >
> >
> >
> > Not much of a solution really, and pretty off topic for a list
> specifically
> > about the Hybrid IRCd. I use option 4, but we have at the most 40
users
> on
> our
> > netwreck.
> >
> >
> > p
> >
> >
> >
> > --

More information about the hybrid mailing list