IRC security risks

From the early 1980s there have been online chat facilities where people can communicate with each other in real-time using the Internet. Since then several different types of chat facilities have evolved, including IRC (Internet Relay Chat) and IM (Instant Messaging).
Online chat is a wonderful way for people to connect and communicate; there can, however, be very real security and personal risks involved. This webpage looks at some of the security risks associated with online chat (specifically IRC).

How do users connect to IRC?
Using Microsoft Windows systems, users download a piece of software and install it on their computer.  This software is called a 'client' program, which is used to connect via the Internet to a 'server' within the IRC network.  A server is a computer which is used to convey messages or data to other servers or clients within the IRC network.  All the servers are interconnected to a number of other servers located worldwide.  A single server could be connected to several other servers with several hundred clients attached.

Small and large IRC networks exist. The largest reputedly is EFnet (Eris Free net), and smaller networks include Undernet and Dalnet. The web links to these are shown below:
http://www.undernet.org/
http://www.dal.net/index.php3
http://www.efnet.org/

What kind of client software is required?
The required client software, which can be downloaded, include the following:
- mIRC v6.1
- Trillian v0.74
- XirCON v1.0 Beta 4
- OrbitIRC v2.10
- Visual IRC V2.0 RC5
- Netscape Chat v2.0
- BitchX IRC
- Klient
- Bersirc
There is a wide range of client software available for the Macintosh and Unix Operating Systems too. The reason this software is listed here is to provide a general guide so that people can recognise whether IRC software clients have been installed on their computer.

IRC and Security - points to remember
- Be careful about what you agree to. If the user permits a Direct Client to Client (DCC) protocol or chat session, then the other user can make a direct connection to the user's computer whilst using the user's 'nickname' to pass files or messages directly.
- Be aware of malware.  IRC scripts or invitations to run software programs, including the IRC client software, could have malicious software installed within. The format of this malicious software could include a Trojan horse, virus, worm or backdoor.  The purpose of the backdoor software is to permit access to the user's computer, whenever the attacker desires.
- Install and use a firewall.  Certain commands within IRC can give an unauthorised person direct access to the computer. It is important that the IRC user uses a protective device such as a firewall to prevent such intrusions.
- Regardless of what the IRC website tells the user, they are insecure by default. They can be made relatively secure by using a secure channel, which is normally used within a closed community, i.e. discussion group that you have been invited to join.
Security precautions when using IRC
- Do not download files unless you trust the sender and know what the file is.
- Ensure your anti-virus software, firewall and operating system are regularly updated.
- Use anti-spyware.

Click here to return to the NetSafe Computer Security home page.