Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1038
  • Last Modified:

mirc login host issue

You are banned from this server- Your host is an open proxy (HTTP CONNECT (Mikrotik-style) (8080)).  Email proxyscan@freenode.net when corrected. (2011/12/19 14.13)

Any ideas
Im using freenode server
0
shaunwingin
Asked:
shaunwingin
  • 5
  • 4
1 Solution
 
Dave HoweSoftware and Hardware EngineerCommented:
Pretty much what you would expect from the description.

The freenode server has scanned your host (the IP it sees you come from, which isn't guaranteed to be your "real" IP address) and found port 8080 open. A connection to there shows that it responds to http proxy "connect" requests, hence you are not permitted to connnect from that IP.

Are you deliberately connecting via a proxy, and does its owner really want that proxy open to the world of spammers to abuse? or is your ISP doing something naughty to your traffic because they feel like seeing what you are typing? If its the latter, I would start using SSL to connect to IRC :)
0
 
shaunwinginAuthor Commented:
I'm just connecting via my router and not too clued up on proxies etc.
How do I connect using SSL?
0
 
Dave HoweSoftware and Hardware EngineerCommented:
well, your router shouldn't be a proxy, unless you have a serious problem or your ISP is playing games with you :)

http://www.mirc.com/ssl.html

http://freenode.net/faq.shtml#sslaccess

:)
0
Free recovery tool for Microsoft Active Directory

Veeam Explorer for Microsoft Active Directory provides fast and reliable object-level recovery for Active Directory from a single-pass, agentless backup or storage snapshot — without the need to restore an entire virtual machine or use third-party tools.

 
shaunwinginAuthor Commented:
I installed the freeware ssl software but still:

 Connect retry #1 chat.freenode.net (6665)
-
-wolfe.freenode.net- *** Looking up your hostname...
-
-wolfe.freenode.net- *** Checking Ident
-
-wolfe.freenode.net- *** Found your hostname
-
-wolfe.freenode.net- *** No Ident response
-
You are banned from this server- Your host is an open proxy (HTTP CONNECT (Mikrotik-style) (8080)).  Email proxyscan@freenode.net when corrected. (2011/12/21 08.09)
-
0
 
Dave HoweSoftware and Hardware EngineerCommented:
ok, that does sound like you are being forced though a proxy anyhow.
I would suggest you visit a site like http://www.whatismyip.com/ and see if the IP there matches what your router thinks it has.

The items you list are:
1) The server connected back to "your" IP on port 113 and couldn't see the mirc ident (which to be fair, your router may not know to provide) and

2) it connected back to "your" IP on 8080 and found a proxy.

note the error should also have told you what IP it thought you were from.
0
 
shaunwinginAuthor Commented:
IT shows same ip as my router.
The error did tell me my ip.
Router is Mikrotik Router ...
Tx
0
 
Dave HoweSoftware and Hardware EngineerCommented:
Well, in that case it sounds likely that the Mikrotik IS running an open proxy, which is a bad thing in and of itself.

A quick google shows me that Mikrotik is running a linux kernel (with modifications) so you should probably look to disable the proxy service entirely if it is running - you have no good use for it, and it is a security issue.
0
 
shaunwinginAuthor Commented:
I found the setting to disable the Proxy...
Please can you explain what a Proxy is useful for?
0
 
Dave HoweSoftware and Hardware EngineerCommented:
A proxy is a program that accepts requests from a program (usually a web browser), performs the required internet connections on their behalf, and returns the results.

Proxies were popular as a means of sharing a single internet address in the early days; they have one benefit over just using a NAT, in that they can remember the content of pages downloaded so if you have multiple people on one proxy, the first one actually downloads the data and the others merely look at that copy.

ISPs sometimes use them for that purpose - download once, sell to your customers several times - and of course you can then centralize antivirus and so forth scanning.

Big companies use them in conjunction with logging (which employee looked at what) and filtering (which employee *can* look at what)

however, they should only ever be accessible from the inside of your LAN - outside users should not have access, as otherwise they can make it look to websites, irc servers etc like they are coming from your address. Similarly, spammers can use a proxy to "relay" mail, again looking like it comes from you.

you don't have any real use for it, so disabling it should fix the issue (otherwise, you need to add a filter rule so port 8080 is reachable only from your internal IPs, not the internet)
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now