> > Does anyone have a good risk analysis of what comes with this application?
It's been years since I've regularly used IRC, so these comments may be
dated (or simply wrong!), however as I recall IRC isn't so much an
application as a prototcol -- there are many versions of both IRC clients
& servers. IRC operates over a range of well known ports (starting at
6660, I think -- I remember that only because the '666' is memorable) --
and there used to also be readily-available servers running non-standard,
less well known ports -- I wonder if organizations blocking IRC are
simply port-blocking? Or doing some sort of stateful inspection and
blocking packets based on contents?
I would think that if you're blocking IRC (which would probably only
upset faculty/students in an active CS community), you'd logically also
want to block the various IM protocols as well -- _many_ more running
clients, with the same kinds of potential security flaws. This would of
course upset a far larger group.
If anyone does find a written analysis of the threat posed by IRC, I'd
love to have a copy -
Douglas Camp MS, MBA
Director of Development Systems
On Wed, 4 Feb 2004 22:49:17 -0500, "Daniel Bidwell" <[log in to unmask]>
> On Wed, 2004-02-04 at 11:27, Ken Schindler wrote:
> > All,
> > My staff have become increasing concerned about security issues
> > surrounding IRC chat.
> > Does anyone have a good risk analysis of what comes with this
> > application?
> We started blocking it for whole campus after a couple of windows
> servers were attacked and compromised by some local desktops that were
> being controlled by someone at the other end of an IRC connection.
> We only had a couple of mild complaints.
> > Ken Schindler
> > Executive Director of Information Technology
> > Saginaw Valley State University
> > [log in to unmask]
> > 989-964-2222
> > FAX: 989-964-7446
> > **********
> > Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/cg/.
> Daniel R. Bidwell | [log in to unmask]
> Andrews University | Information Technology Services
> If two always agree, one of them is unnecessary
> "Friends don't let friends do DOS"
> "In theory, theory and practice are the same.
> In practice, however, they are not."
> Participation and subscription information for this EDUCAUSE Constituent
> Group discussion list can be found at http://www.educause.edu/cg/.
Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/cg/.