|
|
| Author |
Message |
Mary
SearchIRC Admin
Joined: 03 May 2003
Posts: 692
|
 Posted: Jan 08, 2004 6:26pm Post subject: Admins spy users PM's? |
 |
|
Theres some interesting news on IRC-Junkie today. The article describes M_Spy, a module for UnrealIRCd beta19. Asmo quotes the author: "m_spy allows you to see users' private and channel messages (both PRIVMSGs and NOTICEs) sent from anywhere on the IRC network in real time." The rest of the article can be found on:
http://www.irc-junkie.org/index.php#newsitem1073592421,82974,
Comments? |
|
| Back to top |
|
 |
U
Eleet
Joined: 18 Jun 2003
Posts: 521
Location: IRC
|
| Posted: Jan 08, 2004 6:36pm Post subject: |
|
|
Not good. I won't be using it.
I was happy when they got rid of +I, and now someone has to do this.
Oh well, I don't use any modules for Unreal anyway, so it wouldn't matter to me, but I hope the author is kind enough to put something into the script that shows something to a user when they connect (ie in the version) so networks not running it can prove they aren't.
You know any network running Unreal will be assumed to be using it-although I figure most won't. I definetely won't.
I would also see the running of such a module as implied ability to monitor users actions, thus making the network running such module legally liable for anything going on, including stuff in PM. I wouldn't want to have such liability so thats a secondary reason to never use it, the first reason being simply ethical, PM stands for PRIVATE message. |
|
| Back to top |
|
|
tiko
none
Joined: 24 Sep 2003
Posts: 49
|
| Posted: Jan 09, 2004 3:14am Post subject: |
|
|
| In beta 19, the Unreal team made the /module command publicly available. Users can see for themselves whether or not the spy module is loaded. |
|
| Back to top |
|
|
Asmo
none
Joined: 06 May 2003
Posts: 28
|
| Posted: Jan 09, 2004 3:49am Post subject: |
|
|
| U wrote: | | I was happy when they got rid of +I, and now someone has to do this. |
What was +I doing? (not the whole world is usoing unreal as ircd ;))
| tiko wrote: | | In beta 19, the Unreal team made the /module command publicly available. Users can see for themselves whether or not the spy module is loaded. |
That's what the article said yes ;)
There are two sides on modules/tools like this. IRC neworks are abused by many to communicate with their hacked boxes, perform commands on them, let them ddos, download and install additional software, etc etc.
Most networks have Abuse commitees to try and stop these people. But often they will have to sit in the channel, act like one of the drones, and wait till they finally snoop the pass, and find out any other additional requirments. If discovered by the drone runner, chances become slim to get the drones cleaned/removed.
In such circumstances I dont see any problem for such a tool being used. If people abuse the free service they get held up by volunteers then they gave away all their rights on privacy in my eyes.
U has a strong point when it comes to liability too. If such a tool is in use, then it becomes clear the network is doing the drone fighting, which might be ground on liability cases... But thats a different discussion, although very related :) |
|
| Back to top |
|
|
chrishogben
Lurker
Joined: 09 Sep 2003
Posts: 218
Location: UK
|
| Posted: Jan 09, 2004 5:41am Post subject: |
|
|
I would just like to add, that i already know of a network that uses these methods. Although they clearly state on the main page they are doing this, sometimes it's easy to forget, and blabber something private to someone else. Whats more, they log all messages to a single channel on the network, and TAKE ACTION based on the messages going through.
Either this admin is very paranoid, or is doing his bit to stop everything illegal.
Just my two cents  |
|
| Back to top |
|
|
Rob_
Idler
Joined: 13 Dec 2003
Posts: 309
|
| Posted: Jan 09, 2004 7:45am Post subject: |
|
|
The problem with thinking that /modules being made public will help, at all, is that anyone can modify the ircd, they can modify the modules command to simply not show the questionable modules they use. There really is no way to be sure what you say in /msg is actaully private - unless you trust the admins of the network. Sadly there is no way a user can detect if there message's are being monitored.
On the issue of protecting the network, and fighing illigal activities etc, i'll merely quote Benjamin Franklin "Those who would sacrifice essential freedoms for temporary safety deserve neither." As most IRC based illigal activity would not take place on a network who a) are likly to monitor traffic, b) are small enough that its feasable for admins to monitor traffic c) is even publicaly accessable - it seems remarkably weak to attempt to use this argument as any form of justificaiton for this sort of privacy invasion, how will idea's grow if people are affraid to express new/un-conventainal ones? :)
Overall the existance of this module is a moot point (it may bring some discussion to this topic, which may be good as people will be more aware of it), some admins have been hacking there ircds to do this for years, others would rather close down thier whole network before allowing it, some attempt to draw a line somewhere in-between (this is a very dangerous line to try and draw, and in my opinion will almost always end up with you finding yourself standing on the side you didnt want to be on wondering how you crossed it without noticing).
Its alot like emails in a sense, everyone assumes emails are private, much like you assume your mail is, i read somewhere someone attributed that to the name, they claimed people should think of them more as "e-postcards" as the postman can easily read them as (s)hes delivering it :) The only way to be sure your as secure as you need to be, is for you to examine how private your messages are, and act accordingly, you may think about impleemnting client side encryption, public key cryptography is avaialbe in most contries now-a-days and can almost certainly be secure enough for any irc conversation, you may refuse to discuss certain topics on irc, or email, or even over the phone :P, but i strongly suspect most people just will carry on using irc to discuss whatever they wish, i know i will, and i can only hope they choose to do it on networks whos admins are open to frank discussion about what it is thier network actaully does to/for its users, alot of ppl will be supprised to find how helpful most (obviously not all) irc admins can be if you just ask them polite questions about the network.
I just thought i'd throw my 2 cents in, as i havent posted on any forums in a while :)
Rob |
|
| Back to top |
|
|
Shes
Guest
|
| Posted: Jan 09, 2004 8:54am Post subject: Weird module |
|
|
That's aint new. The only innovation that i may think is that's now a module... even if i'm sure it does exist for most current ircd in use. I once saw one similar for the ircu.
It looks like you are so innocents... It's quite common on major networks, even if we do not use any module.
It's all about what is said, and what is really happening.
Shes |
|
| Back to top |
|
|
Rob_
Idler
Joined: 13 Dec 2003
Posts: 309
|
| Posted: Jan 09, 2004 9:00am Post subject: |
|
|
i wonder how many admins would be prepared to say "yes, my network, <insert network name> does/can monitor user messages" - assuming the admins who do it, believe there is nothing wrong with doing it, i would assume they wouldnt mind admiting to it too? :)
Rob |
|
| Back to top |
|
|
Jason
SearchIRC Developer
Joined: 03 May 2003
Posts: 1148
Location: Tampa, FL
|
| Posted: Jan 09, 2004 10:18am Post subject: |
|
|
It has always been understood that IRC is not secure. It takes one line of code to add in the ability to log messages, but because of the way IRC routes messages, you only have access to data that deals with your server in some way, or if your server is between two servers that have data going through them.
DCC Chat is better, at least if you want to omit the IRC network from your discussions.
You can take even further steps, but it begs the question of why one who requires such confidentiality would be risking their discussions on a public chat server in plain text. |
|
| Back to top |
|
|
Mary
SearchIRC Admin
Joined: 03 May 2003
Posts: 692
|
| Posted: Jan 09, 2004 11:55am Post subject: |
|
|
Asmo brings up some very good points. This is a useful tool fighting abuse... but at what cost?
| Quote: | | It's quite common on major networks |
Quite the contrary. Practically speaking, only small networks have the ability to sit and monitor live private messages.
I was a server admin on a major network, and let me tell you that not only didn't we monitor private messages, I think it would be a nightmare if we even attempted to. We couldn't watch connection notices because the volume would flood us off or drag our client to a crawl. Think of the fastest scrolling movie credits you've ever seen, and then multiply it by about 100x the speed. Watching it could give you an epileptic fit. The only way for server admins to spy on users through their server (notice I didn't say through a bot or through channel services, which is possible for anyone with access to the program) would be to log it all to a text file and then grep for words or nicknames... but I never heard of anyone doing that, either.
Small networks with a few hundred users are a different story. You can direct messages to a channel and sit and read them. The only things stopping small net admins from spying on users is ethics and/or lack of knowledge on how to do it. This module solves the latter. |
|
| Back to top |
|
|
SdgNem
none
Joined: 22 Oct 2003
Posts: 23
|
| Posted: Jan 09, 2004 1:30pm Post subject: |
|
|
| Quote: | i wonder how many admins would be prepared to say "yes, my network, does/can monitor user messages" - assuming the admins who do it, believe there is nothing wrong with doing it, i would assume they wouldnt mind admiting to it too?
Rob |
Well, for awhile I was using it on my network, realmofgaming.net, but after I used it a couple of times while it was loaded I realized that it was too abusive, shouldn't be used. So I unloaded it and deleted it. I remembered quickly, that stuff like this is why I even started my network some 4 years ago to begin with. I don't know if something like this was on the network I and my friends that are on my network now had our first IRC experience on or not but I do remember the staff there using +I and spying on us in our channels. Most of the time they used it we probably were not aware of it and how long they were using it we won't ever know.
| Quote: | | In beta 19, the Unreal team made the /module command publicly available. Users can see for themselves whether or not the spy module is loaded. |
The biggest problem with that is that like it has been stated here already anyone that loads the module can edit the version line for it to not show exactly what the module actually is. Hell, if they wanted to take it even further they can even change the commands used by this module to make it more obscure.
As much as I am unpleased and disappointed in myself to say that I used this module for the short period that I did, I'm as equally happy to say that I am not using it anymore or ever for that matter. Like U, said in the last portion of his post the main thing is that PM stands for Private Message, and should be regarded as that by everyone, and if not the network that is using something like this should make their users aware of how they are going about things. If users are going to bother staying on your network their loyalty does at the very least should give them this privacy and if not atleast the knowledge a module like this or something similar is being used.
| Quote: | | I was happy when they got rid of +I, and now someone has to do this. |
Yeah, I was happy to see +I go too but then a few months after it was gone Syzop had made a module that was very similar to +I and in some ways even more abusive than it although it isn't readily available to anyone that wants to download it cause its something that you have to pay for to get it from him. Then I found out about AngryWolf's modules and when he released this I was very surprised that someone released a modules like m_spy, the channel, and private message loggers available to anyone that wanted to download load it for free. Knowing that most of if not ALL of the administrators that download it, are going to abuse this feature and after that when regular users of the network that are using the module find out that he was going to eventually get some heat for even releasing it in the first place. Even though in the module file itself it says that its not intended for abusive purposes. Thats about as bright as giving a group of kids each their own bazooka.
| Quote: | | Oh well, I don't use any modules for Unreal anyway, so it wouldn't matter to me, but I hope the author is kind enough to put something into the script that shows something to a user when they connect (ie in the version) so networks not running it can prove they aren't. |
Alot of AngryWolf's modules are useful and I'm using several of them. The modules that lets administrators log channel and private messages and this m_spy module though are way over the top in my opinion. But, whatever other administrators do with their own networks isn't my business and I honestly don't care as I obviously have no use to go to their network(s). |
|
| Back to top |
|
|
Shes
Guest
|
| Posted: Jan 09, 2004 2:30pm Post subject: doH |
|
|
mregit, the network you are talking about is concerned with this topic. The admins who does won't ever admit it... even if it's for fun or drones related.
tcpdump is our friend.
Shes |
|
| Back to top |
|
|
SdgNem
none
Joined: 22 Oct 2003
Posts: 23
|
| Posted: Jan 09, 2004 3:05pm Post subject: |
|
|
| Of course network administrators that run UnrealIRCd and this module are going to be concerned with word of this module getting public attention. I know that I would be if I was still using this module but I realized that to me, the cons of this module outweighed the pros of it as far as ethics goes. It really isn't and wasn't meant for this feature be available in this IRCd, which is why the Unreal coding team took out +I to begin with and won't put it back and haven't made any way for administrators that run this IRCd able to readily download through a module or otherwise. This was written as a 3RD party module and really shouldn't have been released to everyone that wanted it. |
|
| Back to top |
|
|
moonman
Lurker
Joined: 15 Jul 2003
Posts: 212
|
| Posted: Jan 09, 2004 3:14pm Post subject: |
|
|
| i wont run it, ever. one of the worst things ive heard, ethically speaking, in a while to come out in an ircd. |
|
| Back to top |
|
|
U
Eleet
Joined: 18 Jun 2003
Posts: 521
Location: IRC
|
| Posted: Jan 09, 2004 6:57pm Post subject: |
|
|
Of course, the implied reasoning with this module is anyone running Unreal will be running it.
All its going to do for my network is cause more support issues, more explanation that we have an acceptable use policy prohibiting any mode or module that allows user spying.
I'm glad to hear people can check themselves-then at least I can prove we're not running it. |
|
| Back to top |
|
|
|
|
| |
Register
Log in
