mIRC Home    About    Download    Register    News    Help

Print Thread
dcc exploit #57671 26/10/03 03:29 PM
Joined: Sep 2003
Posts: 584
B
bunar Offline OP
Fjord artisan
OP Offline
Fjord artisan
B
Joined: Sep 2003
Posts: 584
i made this for 6.03 version from Onlines tutorial for protecting dcc exploit so code is:

if (%dcce == On) { goto dcep }
else { goto end }
:dcep
On *:logon:*:.ignore -wd *
On *:notice:dcc & *:?:.ignore -xu10 $nick
:end
}

%dcce is triggered with check box from dialog, but nwm,
i just wanted to ask will this work properly ?

Re: dcc exploit #57672 26/10/03 03:36 PM
Joined: Feb 2003
Posts: 3,432
S
sparta Offline
Hoopy frood
Offline
Hoopy frood
S
Joined: Feb 2003
Posts: 3,432
Nope, not for all mirc users.. the -dw * dont work for every user.. ignore -dw *!*@* would work tho..


if ($me != tired) { return } | else { echo -a Get a pot of coffee now $+($me,.) }
Re: dcc exploit #57673 26/10/03 03:37 PM
Joined: Oct 2003
Posts: 7
B
B0P Offline
Nutrimatic drinks dispenser
Offline
Nutrimatic drinks dispenser
B
Joined: Oct 2003
Posts: 7
I don't see why you don't just /ignore -wd everybody anyway, in the eventuality that you won't upgrade for that matter. Working around an exploit is just that, a workaround.

Re: dcc exploit #57674 26/10/03 04:17 PM
Joined: Oct 2003
Posts: 273
E
EVH Offline
Fjord artisan
Offline
Fjord artisan
E
Joined: Oct 2003
Posts: 273
/ignore -wd *
is the same as
/ignore -wd *!*@*

/ignore -wd *
* Added *!*@* to ignore list

/ignore -wd *!*@*
* Added *!*@* to ignore list

Re: dcc exploit #57675 26/10/03 04:22 PM
Joined: Dec 2002
Posts: 1,922
O
Online Offline
Hoopy frood
Offline
Hoopy frood
O
Joined: Dec 2002
Posts: 1,922
It will work if you place your "on logon" and "on notice" events outside code blocks.

Edit: I don't think you need to enable or disable this code. Just place it in the remote, and if you're not happy with it, delete it. I don't see how it would disturb you anyway.

Re: dcc exploit #57676 26/10/03 04:47 PM
Joined: Sep 2003
Posts: 584
B
bunar Offline OP
Fjord artisan
OP Offline
Fjord artisan
B
Joined: Sep 2003
Posts: 584
to all this replies i saw, it seems that code i s good then, i thank all for their contribution

Re: dcc exploit #57677 26/10/03 04:50 PM
Joined: Feb 2003
Posts: 3,432
S
sparta Offline
Hoopy frood
Offline
Hoopy frood
S
Joined: Feb 2003
Posts: 3,432
No it's not.. som users mirc will say that its missing somthing on -dw * .. so that wont work for everyone.. i know cos many users in my channels asked me how to solve it when -dw * didnt work, and the only way to help them was to add -dw *!*@* ..


if ($me != tired) { return } | else { echo -a Get a pot of coffee now $+($me,.) }
Re: dcc exploit #57678 26/10/03 04:50 PM
Joined: Dec 2002
Posts: 62
lonesome Offline
Babel fish
Offline
Babel fish
Joined: Dec 2002
Posts: 62
ON routines don't work within other routines.. If you get what I mean. smile

Try this instead:
Code:
On *:logon:*: {
if (%dcce == On) { .ignore -wd * }
}
On *:notice:dcc & *:?: {
if (%dcce == On) { .ignore -xu10 $nick }
} 

Re: dcc exploit #57679 26/10/03 04:55 PM
Joined: Sep 2003
Posts: 584
B
bunar Offline OP
Fjord artisan
OP Offline
Fjord artisan
B
Joined: Sep 2003
Posts: 584
okay, thanx much - just tell me finnaly do i need -dw * or *!*@* ??

Re: dcc exploit #57680 26/10/03 05:01 PM
Joined: Feb 2003
Posts: 3,432
S
sparta Offline
Hoopy frood
Offline
Hoopy frood
S
Joined: Feb 2003
Posts: 3,432
*!*@* works for every one.. * dont work for everyone, so it's up to you smile


if ($me != tired) { return } | else { echo -a Get a pot of coffee now $+($me,.) }
Re: dcc exploit #57681 26/10/03 05:06 PM
Joined: Sep 2003
Posts: 584
B
bunar Offline OP
Fjord artisan
OP Offline
Fjord artisan
B
Joined: Sep 2003
Posts: 584
ok, thanx

Re: dcc exploit #57682 26/10/03 05:12 PM
Joined: Oct 2003
Posts: 273
E
EVH Offline
Fjord artisan
Offline
Fjord artisan
E
Joined: Oct 2003
Posts: 273
Well then they have a script that's altering
the ignore command or something.

Re: dcc exploit #57683 26/10/03 07:42 PM
Joined: Dec 2002
Posts: 417
O
Othello Offline
Fjord artisan
Offline
Fjord artisan
O
Joined: Dec 2002
Posts: 417
You can put everyone on IGNORE but If you are reccieving files from someone it might stop you from recieving files. This is something I put together to stop bopus DCC SENDS If you recieve more then 4 n\notices at a time this would put the Nick on IGNORE for 10 minutes or you could just set the script to IGNORE all nicks for 10 minutes,


ctcp *:*:*: {
if ( DCC SEND isin $1- ) {
if ($gettok($1-,0,32) < 4) {
echo -a 1 »14»15»12 Bogus DCC Send Detected From $nick
ignore -wdu300 *!* $+ $nick $+ @*
halt
}
}
}




Intelligence: It's better to ask a stupid question, then to prove it by not asking....
Re: dcc exploit #57684 26/10/03 07:43 PM
Joined: Dec 2002
Posts: 1,922
O
Online Offline
Hoopy frood
Offline
Hoopy frood
O
Joined: Dec 2002
Posts: 1,922
* should work for everyone too. Some guys are complaining they get an "insufficient parameters" error, but that's because they forget to specify the *, thinking it's not a part of the command.

Re: dcc exploit #57685 26/10/03 09:10 PM
Joined: Sep 2003
Posts: 584
B
bunar Offline OP
Fjord artisan
OP Offline
Fjord artisan
B
Joined: Sep 2003
Posts: 584
uhh now i am confused so much

i use this FULL code from Online's post:

On *:logon:*: {
if (%dcce == On) { .ignore -wd *!*@* }
}

On *:notice:dcc & *:?: {
if (%dcce == On) { .ignore -xu10 $nick }
}

On *:notice:dcc send *:?:{
if (%dcce == On) {
var %w = $+(@@,$ticks)
if $0 > 35 {
echo -ts Rejecting DCC send from $nick - suspicious filename with $calc($0 -3) spaces.
return
}
window -vh %w
.debug %w
.timer $+ %w -o 20 1 _check %w $nick $0
}

alias -l _check {
tokenize 32 $1- $line($1,$fline($1,& $+(:,$2!*@* PRIVMSG & :,$chr(1),DCC SEND *),1))
if $4 {
.timer $+ $1 off
close -@ $1
if $calc($3 + 9) == $0 {
echo -ts Allowing DCC send of $10- [ $+ [ $calc($0 -3) ] ] from $2
.ignore -xu20 $me
!.raw $6-
}
else {
echo -ts Rejecting DCC send from $2 - notice/ctcp mismatch.
}
}
elseif !$timer($1).reps {
close -@ $1
}
}
}

so which code now i need to use at the end pls help me out?

Re: dcc exploit #57686 26/10/03 09:16 PM
Joined: Dec 2002
Posts: 1,922
O
Online Offline
Hoopy frood
Offline
Hoopy frood
O
Joined: Dec 2002
Posts: 1,922
Well you don't need to full code laugh I made it for paranoid guys who might not love the short solution that denies most, if not all of the exploit attempts.

You only need this one,
  • On *:logon:*:.ignore -wd *
    On *:notice:dcc & *:?:.ignore -xu10 $nick

Re: dcc exploit #57687 26/10/03 09:43 PM
Joined: Sep 2003
Posts: 584
B
bunar Offline OP
Fjord artisan
OP Offline
Fjord artisan
B
Joined: Sep 2003
Posts: 584
can you just explain more that code ON LOGON, it says something that you dont send everything to server,
like what ? and what does it block exactly?

Re: dcc exploit #57688 26/10/03 10:01 PM
Joined: Dec 2002
Posts: 1,922
O
Online Offline
Hoopy frood
Offline
Hoopy frood
O
Joined: Dec 2002
Posts: 1,922
"On logon" triggers when you are sending the NICK and USER logon commands to the server (type /debug @window to see when mIRC sends them). If you use the ^ prefix, this event allows you to halt what mIRC sends, and send your own parameters. For example,
  • On ^*:logon:*:user SomeUser . . SomeRealName | nick SomeNick | halt
My code doesn't halt or change anything. I thought this would be the appropriate point to make sure the total DCC ignore is placed.