个人工具

UbuntuHelp:FixDCCExploit

来自Ubuntu中文

Oneleaf讨论 | 贡献2007年5月13日 (日) 13:22的版本 (New page: {{From|https://help.ubuntu.com/community/FixDCCExploit}} {{Languages|php5}} == Introduction == On IRC there are a small group of abusive users that find it funny to send invalid DCC com...)

(差异) ←上一版本 | 最后版本 (差异) | 下一版本→ (差异)
跳转至: 导航, 搜索
Geographylogo.png 文章出处: 

https://help.ubuntu.com/community/FixDCCExploit

Geographylogo.png 点击翻译: 

English


Introduction

On IRC there are a small group of abusive users that find it funny to send invalid DCC commands causing certain vulnerable users to disconnect. This causes a somewhat large spamming of disconnect and reconnect messages and is generally disruptive to the chat room. If you have been sent here you are most likely vulnerable to this particular attack. You will find instructions on how to fix this issue to follow.

Fix 1: Change Port

The easiest way to fix this issue is to change the port through which you connect to freenode. Most clients automatically connect to port 6667 when using an IRC server, but freenode also offers the ability to connect to port 8001. This will prevent this particular exploit from effecting you.

X-chat users can change this by going to X-chat -> Server List, selecting Ubuntu Servers, clicking Edit, and changing irc.freenode.net to chat.freenode.net/8001.

X-chat-GNOME users can change this by going to Edit -> Preferences. Then select Networks on the side. Double-click on Freenode on the right, click the servers tab, and then change irc.freenode.net to irc.freenode.net/8001.

Konversation users can go to File -> Server list -> Edit, click on the server name (e.g. irc.ubuntu.com), click on Edit, and change the port from 6667 to 8001.

Gaim users can go to Tools -> Accounts, choose your chat.freenode.net account, -> Modify -> Show more options, and change the port from 6667 to 8001, -> Save.

Irssi users can type /connect irc.freenode.org 8001 every time they connect or, as a long term solution, edit ~/.irssi/config (nano ~/.irssi/config) and add the following line to "servers": { address == "irc.freenode.net"; chatnet == "Freenode"; port = "8001"; }

weechat users should edit ~/.weechat/weechat.rc (nano ~/.weechat.weechat.rc), and, in the [server] section, change server_port == 6667 to server_port == 8001 and save the changes.

The procedure for other IRC clients is similar, but the syntax is slightly different. Most other IRC clients use chat.freenode.net:8001 to specify port 8001.

Fix 2: Updating Firmware

Most router manufacturers have provided an updated firmware for their router that fix this particular exploit. Please check with their website for upgrades and installation instructions.

Further notes

Upon fixing this issue you will NOT automatically be allowed to rejoin #ubuntu if you have been temporarly forwarded to #ubuntu-ops. You will need to alert an op to the situation and they will assist you in rejoining #ubuntu.

Why you can't auto rejoin

This action is an attempt to make it less attractive for anyone to do the exploit, when it first happened there were lots of disconnections. Now it is usually less than 10 at a time.

取自“https://wiki.ubuntu.org.cn/index.php?title=UbuntuHelp:FixDCCExploit&oldid=1930