1 <!DOCTYPE HTML PUBLIC
"-//W3C//DTD HTML 3.2//EN">
4 <TITLE> [IRCServices] /ns ghost exploit
6 <LINK REL=
"Index" HREF=
"index.html" >
7 <LINK REL=
"made" HREF=
"mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20/ns%20ghost%20exploit&In-Reply-To=">
8 <META NAME=
"robots" CONTENT=
"index,nofollow">
9 <META http-equiv=
"Content-Type" content=
"text/html; charset=us-ascii">
10 <LINK REL=
"Previous" HREF=
"002843.html">
11 <LINK REL=
"Next" HREF=
"002845.html">
13 <BODY BGCOLOR=
"#ffffff">
14 <H1>[IRCServices] /ns ghost exploit
</H1>
16 <A HREF=
"mailto:ircservices%40ircservices.za.net?Subject=%5BIRCServices%5D%20/ns%20ghost%20exploit&In-Reply-To="
17 TITLE=
"[IRCServices] /ns ghost exploit">achurch at achurch.org
19 <I>Thu Mar
14 10:
43:
00 PST
2002</I>
21 <LI>Previous message:
<A HREF=
"002843.html">[IRCServices] /ns ghost exploit
23 <LI>Next message:
<A HREF=
"002845.html">[IRCServices] /ns ghost exploit
25 <LI> <B>Messages sorted by:
</B>
26 <a href=
"date.html#2844">[ date ]
</a>
27 <a href=
"thread.html#2844">[ thread ]
</a>
28 <a href=
"subject.html#2844">[ subject ]
</a>
29 <a href=
"author.html#2844">[ author ]
</a>
34 <PRE> Services does not use SVSKILL in the first place, and does not allow
35 GHOST anyway without a password unless the calling user is on the access
36 list of the target nick _and_ the nick does not have the SECURE option set.
37 Have you modified Services?
40 <A HREF=
"http://www.ircservices.za.net/mailman/listinfo/ircservices">achurch at achurch.org
</A>
41 <A HREF=
"http://achurch.org/">http://achurch.org/
</A>
43 ><i>Something I recently became aware of was users
"abusing
" the ghost command.
45 </I>><i>When the ghost command is issued, Services will SVSKILL the user from the
46 </I>><i>network. However, the new trend appears to be setting up a notify script,
47 </I>><i>which will automatically ghost any user trying to use a given nickname.
48 </I>><i>This quickly became popular. How this came to my attention is that a new
49 </I>><i>user was trying to access the network but was repeatedly killed by the
50 </I>><i>ghost command.
52 </I>><i>Use of
"kill immediate
" should be sufficient for those users who do not
53 </I>><i>want people using their nicknames and can be handled by services with a
54 </I>><i>nick change so I do not see use of the command in this manner as
55 </I>><i>beneficial.
57 </I>><i>One way to remove this exploit which seems the least complex to actually
58 </I>><i>manage is to only trigger the ghost if the target is currently identified.
60 </I>><i>This would mean that in the event a user got disconnected before they were
61 </I>><i>able to identify, they would be unable to remove a real 'ghost' on
62 </I>><i>reconnect with the ghost command, but they could use 'recover'
63 </I>><i>and 'release' instead. I believe that the 'recover' will
"guest
" a user
64 </I>><i>where NSForceNickChange is enabled.
70 </I>><i>------------------------------------------------------------------
71 </I>><i>To unsubscribe or change your subscription options, visit:
72 </I>><i><A HREF=
"http://www.ircservices.za.net/mailman/listinfo/ircservices">http://www.ircservices.za.net/mailman/listinfo/ircservices
</A>
80 <LI>Previous message:
<A HREF=
"002843.html">[IRCServices] /ns ghost exploit
82 <LI>Next message:
<A HREF=
"002845.html">[IRCServices] /ns ghost exploit
84 <LI> <B>Messages sorted by:
</B>
85 <a href=
"date.html#2844">[ date ]
</a>
86 <a href=
"thread.html#2844">[ thread ]
</a>
87 <a href=
"subject.html#2844">[ subject ]
</a>
88 <a href=
"author.html#2844">[ author ]
</a>