gavin long wrote:
> Christian Biesinger wrote:
>
>> Nicol�s Lichtmaier wrote:
>>
>>> [mozilla] *** Banned: Wingate proxy (2002/02/07 02.28)
>>
>>
>> Well, this message means that the Wingate port is open on the computer
>> you're loggin in from.
>>
>> If you think you shouldn't be banned, mail [EMAIL PROTECTED] with
>> your IP Address.
>
>
> To clarify that a bit, I just did a quick google on "wingate", and found
> the following:
>
> 1) if a machine has an open wingate port (as many win32 machines w/o
> firewall protection will have),
Hardly any Win32 machine has this port open. Unless, of course, Wingate
is installed and badly configured, in which case...
> it is possible for a malicious third
> party to use that machine as a proxy for (e.g.) a Distributed Denial Of
> Service attack on an IRC server
... this is possible, but not if wingate isn't installed.
The server can't know if the open port is by wingate or another program,
though.
> 2) as a result, many IRC servers can be/are configured to do a portscan
> on machines that log on, and kick those machines with open wingate ports.
Portscan is maybe said too much, only one port is checked, but yes.
> So it looks like irc.mozilla.org thinks you are a potential DDOS zombie.
> Banning might be a bit harsh, but the alternative is pretty ugly.
This is, to my knowledge, correct.
> Getting yourself some kind of firewall (even the free ZoneAlarm kind)
> ought to improve matters.
Probably.
--
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-- Benjamin Franklin
