Bug#725816: sbnc: irc connectins die while listening on SSL port and someone portscans us
Package: sbnc
Version: 1.2-26
Severity: important
Dear Maintainer,
I was doing some portscans on my home network, when I noticed that my irc connections
die after i portscan my sbnc host. The connections re-establish after a while,
but this issue could be very annoying if someone else found out about the bug and
decided to harass me (or anyone using sbnc).
The nmap command in question:
nmap -A -T4 -v <sbnc hostname>
After some troubleshooting, and asking around on #sbnc on quakenet, it turns out
that this is an old bug, which can be worked around by starting sbnc with parameter
"--lpc" OR by installing a newer version. The bug affects only sbnc servers
that listen via ssl.
I've "fixed" this issue on my box by changing the init file, and adding "-- --lpc"
to the "start-stop-daemon" lines. (start/restart)
The --lpc parameter disables starting child processes.
-- System Information:
Debian Release: 7.1
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 3.2.0-4-486
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages sbnc depends on:
ii adduser 3.113+nmu3
ii debconf [debconf-2.0] 1.5.49
ii libc-ares2 1.9.1-3
ii libc6 2.13-38
ii libgcc1 1:4.7.2-5
ii libltdl7 2.4.2-1.1
ii libssl1.0.0 1.0.1e-2
ii libstdc++6 4.7.2-5
ii pwgen 2.06-1+b2
Versions of packages sbnc recommends:
ii oidentd 2.0.8-5
ii sbnc-tcl 1.2-26
Versions of packages sbnc suggests:
pn sbnc-mysql <none>
-- Configuration Files:
/etc/default/sbnc changed [not included]
/etc/init.d/sbnc changed [not included]
-- debconf information excluded
Reply to: