ClueNet is looking for a new Chief Technical Admin. More information here.

Shellsnet:SN ISS

From ClueWiki

(Redirected from Shellsnet Backup Old SN ISS)
Jump to: navigation, search

Important Note: This is a backed up copy of what existed on Shellsnet's old wiki.

This article is a part of the ShellsNet Old Wiki Backup index

Do not modify this page!




The SN ISS is SN's IRC Security System, an automated system that protects our network from various types of abuse.

What is blocked by the ISS?

  1. any host which acts as an open proxy (this includes ALL open proxies... mail relays, tor nodes, http proxies... everything!)
  2. any host which is insecure (this includes all hosts infected with a dangerous bot, virus or worm)
  3. any host which has a past record of IRC abuse (even if it occured on completely different networks)
  4. any host which resides in stolen IP space

Anything else I should know about the ISS?

  1. The ISS exists to protect SN users from abuse, and to save the admins time by automating network security.
  2. The ISS is totally automated and runs on every server - so it will function on all servers, even in the rare times some are split.
  3. The ISS uses port scanning and [DNSBL] lookups to check users.
  4. The ISS will port scan you every time you connect to the ShellsNet.org network. By connecting, you consent to this scanning.
  5. The ISS will treat you much better if you have identd (you will get scanned less, connect faster, are much less likely to get banned, etc) So, you should enable [identd].
  6. If you run portsentry, or other anti-portscan programs, you should turn them off or set them to ignore scans from SN irc servers, otherwise your connection will probably be very short. :)


How do I check if I am on a DNSBL?
Try putting your IP into the 'spam database lookup' on http://www.dnsstuff.com and into the checking scripts on http://rbls.org/

What do I do if I get banned because I am on a DNSBL?

  1. Ban reasons will usually include a reference to the DNSBL which you are listed at. Find that DNSBL, and it should tell you why you are listed.
  2. Fix whatever it is that is causing you to be listed. For example, if you are listed as running an open proxy, then stop running an open proxy :)
  3. Once you've fixed the problem, ask the dnsbl admins for that dnsbl to remove you.
  4. Once you are removed, allow up to 48 hours for the change to take effect, though in many cases it is faster.

What do I do if I can't get myself delisted from the dnsbl? Or I need to talk to an ircop about this?
Contact <censored> via email. Make sure you tell the admin your IP address and what the problem is.
Note that if you cannot explain WHY you cannot get yourself removed from the DNSBL manually, we will just tell you to do that.

What specific DNSBLs does ShellsNet.org use?

  1. xbl.spamhaus.org (sublists: all)
  2. dnsbl.sorbs.net (sublists: open proxy, insecure machine, and zombie netblock variants)
  3. ahbl.org (sublists: open relay/proxy, compromised or vulnureble machines, irc abusers, ALL tor nodes)
  4. tor.sectoor.de (sublists: tor exit nodes)

What types of DNSBL does ShellsNet.org AVOID using?

  1. anything that is designed to block all dynamic IPs
  2. anything that blocks large subnets

Why do you use several different lists which cover the same things?
A: Because no one list is 100% accurate on its own.

Why do you block open proxies?
A: Because open proxies are bad for the internet - they make it easy to abuse other people anonymously.

Why do you block tor?
A: Tor providers its users with anonymity. Anonymity is very different to privacy - [privacy encourages responsibility, anonymity encourages abuse].

Do you allow people to connect to irc.shellsnet.org via shell IRC clients, or BNCs?
A: Yes, so long as the server the IRC client/BNC is hosted on :

  1. runs a secure identd.
  2. isn't on any of the above DNSBLs that we use to block hosts.
Retrieved from "http://www.cluenet.org/wiki/index.php/Shellsnet:SN_ISS"
Personal tools
Server information
Useless