To prevent dcc exploit, default port should be 8001 for irc.ubuntu.com
Bug #191691 reported by
Joseph Price
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xchat (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
xchat-gnome (Ubuntu) |
Fix Released
|
Medium
|
Martin Pitt |
Bug Description
Binary package hint: xchat
#ubuntu is regularly attacked by a well known exploit via ctcp.
Users with vulnerable routers can find their irc connection drop or sometimes affect the router. As well as being disruptive to the user, it disrupts the channel with the join/part messages.
Only connections to irc on port 6667 can be exploited. Freenode allows connections on several other ports and we usually suggest irc.ubuntu.com/8001
https:/
The settings for the default connection when xchat is started up should be changed to irc.ubuntu.com/8001
description: | updated |
description: | updated |
Changed in xchat: | |
importance: | Low → Medium |
Changed in xchat-gnome: | |
importance: | Low → Medium |
Changed in xchat: | |
status: | Confirmed → Fix Committed |
To post a comment you must log in.
I can confirm this bug, and I'm working on a patch.
Probably we can assume this is true for freenode too, that by default is reached via port 6667.