[725] in linux-security and linux-alert archive
Re: [linux-security] libc bug exploited through ircII
daemon@ATHENA.MIT.EDU (Robin Thellend)
Sat May 11 12:43:35 1996
Date: Fri, 10 May 1996 21:51:39 -0400 (EDT)
From: Robin Thellend <intru@info.polymtl.ca>
To: Linux Security <linux-security@tarsier.cv.nrao.edu>
In-Reply-To: <199605100531.AAA00234@dsrvlaf2-23.linknet.net>
On Fri, 10 May 1996 zarquon@popalex1.linknet.net wrote:
> /on ^raw_irc "% PRIVMSG % *DCC % % ???????????* *" {
> echo Possible libc bug exploit received in DCC $4 from $0
> }
This will block pretty much all DCC requests because ? can match a space
just as well as a digit. You'd better use something like that:
/on ^raw_irc "% PRIVMSG % ^ADCC % % ????????????????????????????????????*" \
echo Possible libc bug exploit received in DCC $4 from $0
(^A being ctrl-A)
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Robin Thellend (seks@irc) 3rd yr Comp.Eng. Student
Ecole Polytechnique de Montreal, Quebec, Canada
PGP public key: finger -l intru@step.polymtl.ca
If computers get too powerful, we can organize
them into a committee -- that will do them in.
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
