mIRC Home    About    Download    Register    News    Help

Print Thread
Joined: Nov 2007
Posts: 3
S
Swerve Offline OP
Self-satisified door
OP Offline
Self-satisified door
S
Joined: Nov 2007
Posts: 3
Hi !

I'm looking for some advice on how to protect myself from malicious code and also other users.

Being new to the whole IRC thing, I was surprised at how you can do a whois lookup on other users in a chat room.

I'm looking to protect my identity as much as possible.

Many thanks for any help smile

Joined: Oct 2004
Posts: 8,330
Hoopy frood
Offline
Hoopy frood
Joined: Oct 2004
Posts: 8,330
To protect yourself from malicious code, just don't use scripts that you don't trust. It's as simple as that.

To protect yourself from others, don't type anything that someone you don't trust tells you to type. Beyond that, use a decent firewall and/or router and you should be perfectly fine.

You cannot block a /whois, but depending on a network, you may be able to mask your host (nick!ident@12-34-56-78.comcast.net, for example, might appear as nick!ident@asdfg.wertdg.wersd.comcast.net). This is solely based on the network's settings and is usually automatic while on the network unless you manually disable it. Alternatively, you can use a vhost on certain networks to hide your real host information. A vhost (or virtual host) is just a made-up host name. For example, you could be Swerve!Swerve@You.cant.find.me.

In any case, just because someone knows your host doesn't really make a difference. Every time you connect to a website, the website gathers that information as well and there is more chance of getting infected with something that way than on IRC.


Invision Support
#Invision on irc.irchighway.net
Joined: Nov 2007
Posts: 15
P
Pikka bird
Offline
Pikka bird
P
Joined: Nov 2007
Posts: 15
Wear a condom!

Joined: Jun 2003
Posts: 5,024
M
Hoopy frood
Offline
Hoopy frood
M
Joined: Jun 2003
Posts: 5,024
The risks involved in someone knowing your /whois information are virtually nil. In fact, risks on IRC in general are only around because of the ignorance of users to internet security. The fact you're even posting here asking how to protect yourself on IRC indicates to me you've got a bit of common sense.

- Don't click on websites that offer free mIRC cracks, free porn, etc, etc.
- Don't type things that contain $decode, //write or anything else you don't understand. If in doubt, refer to the help file to see what something does (e.g. /help $decode, /help /write).
- Don't accept files from people you don't know, or if you don't know what the file is.
- Don't hang around in channels that have so-called "hackers" or "packet kiddies" in them.
- Always run an antivirus and firewall. (although, that's not specific to IRC).

It seems to be a common misconception that IRC is this uber-evil place where people can do things to your computer without your knowledge. That would effectively mean IRC was one giant exploit and obviously that is not the case. All you have to do is apply common sense, if you don't know someone and they're asking you to do something, don't do it. The problem is, an astonishing amount of people fall for the most obvious tricks in the book.

It's another myth that just because someone knows your IP address they can find out who you are. For one, they can't. For two, why would anyone be interested? Your IP address is logged every time you visit a website it's not some super special secret only revealed on IRC. I can see your IP address just by you posting here. I can't work out what address you live at or anything like that.

Regards,


Mentality/Chris
Joined: Feb 2003
Posts: 3,432
S
Hoopy frood
Offline
Hoopy frood
S
Joined: Feb 2003
Posts: 3,432
I dont know if i missed it while reading, but one thing that should be added, turn logging for channels of, i have seen some codes in topics on some channels, it's a virus and it will trigger when you open the logfile to read it, or if mirc for some reason loading the file.


if ($me != tired) { return } | else { echo -a Get a pot of coffee now $+($me,.) }
Joined: Jun 2003
Posts: 5,024
M
Hoopy frood
Offline
Hoopy frood
M
Joined: Jun 2003
Posts: 5,024
I have to disagree with that advice. If someone wishes to make logs of their conversations the "risk" involved in those strings are tiny in proportion to the usefulness of keeping logs. I've been logging for 7 years and encountered such a problem ONCE when I deliberately investigated the issue.

Besides, the only strings I've ever seen put in topics are benign lines purely designed to "trick" antiviruses (usually Norton Antivirus) into thinking there's a virus on your computer when there actually isn't ("false positive").

Regards,


Mentality/Chris
Joined: Apr 2008
Posts: 1
S
Mostly harmless
Offline
Mostly harmless
S
Joined: Apr 2008
Posts: 1
Originally Posted By: Mentality
The risks involved in someone knowing your /whois information are virtually nil. In fact, risks on IRC in general are only around because of the ignorance of users to internet security. The fact you're even posting here asking how to protect yourself on IRC indicates to me you've got a bit of common sense.

- Don't click on websites that offer free mIRC cracks, free porn, etc, etc.
- Don't type things that contain $decode, //write or anything else you don't understand. If in doubt, refer to the help file to see what something does (e.g. /help $decode, /help /write).
- Don't accept files from people you don't know, or if you don't know what the file is.
- Don't hang around in channels that have so-called "hackers" or "packet kiddies" in them.
- Always run an antivirus and firewall. (although, that's not specific to IRC).

It seems to be a common misconception that IRC is this uber-evil place where people can do things to your computer without your knowledge. That would effectively mean IRC was one giant exploit and obviously that is not the case. All you have to do is apply common sense, if you don't know someone and they're asking you to do something, don't do it. The problem is, an astonishing amount of people fall for the most obvious tricks in the book.

It's another myth that just because someone knows your IP address they can find out who you are. For one, they can't. For two, why would anyone be interested? Your IP address is logged every time you visit a website it's not some super special secret only revealed on IRC. I can see your IP address just by you posting here. I can't work out what address you live at or anything like that.

Regards,


i was gonna make a topic just like this. i just wanna get this strait . what youre saying is, if i have firewall/AV/Antisyware etc. setup, i'm safe as long as i dont type any crazy crap like - $#b-v


Link Copied to Clipboard