Takeover

Techniques of usual takeover

At the time of a Netsplit

At the time of a netsplit, the network of the waiters is not any more related. The statute of operator (or COp ) is independent of the state of the waiters thus on the two sides (noted has and B ) of the connection broken at the time of a netsplit, the operators keep their statute. If all the users of a channel are same side of connection (let us say has ), the channel does not have any more users on the side B . However if a channel is without users, it is destroyed. A user can thus recreate this channel on the side B and acquire there the rights of operators who are inherent in any creator of channel on IRC.

When the netsplit cease, the users of the channel on the two sides of connection are gathered and the operators keep their statute on the channel. Since the channel on the side B bears the same name that on the side has , the operator of the new channel keeps his statute of COp when the two channels are reunified. He can then exclude ( kicker ) all the other operators and obtain the complete control of the reunified channel.

To fight against this basic attack, of the techniques of temporal marking summers have founded. Moreover modern systems IRC being equipped with Services (see Services IRC), it is almost impossible to keep a usurped status of operator when the waiters reconnectent one with the other. With the reconnexion, the waiter restores the modes users déoppe those which could potentially have become operators of the channel during the netsplit. That is noticed very easily when the netsplit is completed: all the users who had apparently disappeared reappear and messages of the type are seen:

irc.serveur.net sets mode: +vvvvvvvvv-o User1 User2 User3 User4 User5 User6 User7 User8 User9 UserOp

It is seen that the first 9 users recover their voice (+v) in the channel, and that UserOp, which does not have normally privileges operator, is made déopper by the waiter (- O).

False warning message

Certain people are made pass for services of the waiters requesting from the people their password authentification. For that they adoptents of the close pseudos and copy the original message by changant the pseudo one just for which it is necessary to send its password. This technique is put at evil on certain waiters which keep in memory the supplier of being authenticated access of the people.

False waiters

Another technique consists in making connect people on the proper connection of the takers. For that, they have recourse to special scripts and are made pass for bouncers (they are the connections established on waiters remaining connected 24:00 /24 on one or more waiters IRC). The people connecting itself above and who are authenticated send all their information to the takers, which have just to recover them, or once the forgery bouncer is operator on a chan, the takers can make so that it COp all the takers coming on the chan.

Specialized scripts

The Script S used to make takeovers are planned for the majority for MIRC and use language MRC derived from the C. Various types of scripts can be coded to help the attackers:

masskick (fastest Kick er 50 people per seconds with 5 clones can);
protection (script anti-resumption of the chan by the rightful owners: kicker the not-attackers who become themselves COp on the chan, to give the modes if somebody removes them, in particular the mode invites or +i)
improvement of the techniques of takeover (as soon as a clone is operator he gives the statute of operator ( COp ) to the others and then they launch the masskick).

Scripts must show originality to counter protections of the waiters (OpServ, Q…) like those of club-footed anti-takeover.

Random links: