I'm getting a lot of IP's that are getting the "temporary ban", and
I'm putting those in the IP.CAN file...many of them are from the bot
with the name user name of Aquario.

I recall that a wildcard string of an asterisk * could be used. Would
this be for like a number in the first 3 slots, then an asterisk in the
last slot (as an example (although I obviously won't block it)
192.168.1.*) ??

Or can you use the asterisk in more than one slot, as it were??

It'd cut down on the size of my ip.can file.

Daryl

---
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Re: Wildcards In IP.CAN file
By: Daryl Stout to All on Sat Aug 26 2017 10:17 pm

I'm getting a lot of IP's that are getting the "temporary ban", and
I'm putting those in the IP.CAN file...

Why? Can't you just let the temporary ban do it's job?

I recall that a wildcard string of an asterisk * could be used. Would
this be for like a number in the first 3 slots, then an asterisk in the
last slot (as an example (although I obviously won't block it)
192.168.1.*) ??

Yes.

Or can you use the asterisk in more than one slot, as it were??

No.

It'd cut down on the size of my ip.can file.

I think you're probably being overly worried and overly-agressive with the banning.

digital man

Synchronet/BBS Terminology Definition #57:
XPDEV = Cross-platform Development
Norco, CA WX: 70.9øF, 78.0% humidity, 0 mph SE wind, 0.00 inches rain/24hrs

---
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Rob,

Why? Can't you just let the temporary ban do it's job?

Because we've had such a stormy weather pattern around here this year,
and lightning strikes around my place like an ungrounded Faraday cage.
We still may get the effects of the remnants of Hurricane Harvey later
this week as well. So, if there's a threat of thunderstorms, the BBS is UNPLUGGED and OFFLINE.

There have been several occasions where lightning struck close to (not
50 feet from the front door), or right next to my apartment
building...so close that I could hear the static pop from inside my
apartment!! Each time afterwards, people were taking electronics items
of every sort (computers and accessories, DVD/VCR units, home
entertainment centers, microwave ovens, etc.) out to the dumpster. The
surge had spread out so far that IT FRIED EVERYTHING!! I even had damage
to the ADT Alarm System on one occasion, but that has since been
repaired.

I think you're probably being overly worried and overly-agressive with the DM>banning.

But, they are filling up the available nodes that I have, where no one
can log in. I was using Peer Block, but it was keeping legitimate users
from logging in.

As for the temporary ban, I upped it from the default of 10 minutes to
one week. Another Sysop noted that he has his set at 1 month...but I
haven't tried that.

Daryl

---
þ OLX 1.53 þ Does a clean house show that there's a broken computer??
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Re: Wildcards In IP.CAN file
By: Daryl Stout to DIGITAL MAN on Sun Aug 27 2017 10:06 am

There have been several occasions where lightning struck close to (not
50 feet from the front door), or right next to my apartment
building...so close that I could hear the static pop from inside my apartment!! Each time afterwards, people were taking electronics items
of every sort (computers and accessories, DVD/VCR units, home
entertainment centers, microwave ovens, etc.) out to the dumpster. The
surge had spread out so far that IT FRIED EVERYTHING!! I even had damage
to the ADT Alarm System on one occasion, but that has since been
repaired.

i get that you are afraid of lightning , but that has nothing to do with your ip blocking.
---
þ Synchronet þ ::: BBSES.info - free BBS services :::

On 2017 Aug 26 22:17:12, you wrote to All:

I'm getting a lot of IP's that are getting the "temporary ban", and
I'm putting those in the IP.CAN file...many of them are from the bot
with the name user name of Aquario.

those are an advanced MIRAI variant... the user name that you probably aren't seeing is actually root and aquario is the password they're sending...

I recall that a wildcard string of an asterisk * could be used.

i'll let someone else answer this ;)

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Progress is made by lazy men trying to find easier ways to do something. ---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

On 2017 Aug 27 10:06:00, you wrote to DIGITAL MAN:

As for the temporary ban, I upped it from the default of 10 minutes to
one week. Another Sysop noted that he has his set at 1 month...but I haven't tried that.

i said that our IDS and active response system on the perimeter firewall blocks
them for that long... sbbs temp bans are all dropped when sbbs is shut down anyway... at least, that's my understanding... i may not have used those exact words in my previous post but i'm always talking about stopping and blocking things on my perimeter instead of leting them beat up my servers and polluting my network with unwanted traffic...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Why do they put Braille on the number pads of drive-through bank machines? ---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

i get that you are afraid of lightning , but that has nothing to do with your M>ip blocking.

I am a 2 time lightning strike survivor...I don't want the third time
to be the charm.

The IP blocking is because they are constantly tying up the 4 telnet
nodes, where no one can get in. And, this doesn't include the numerous
SSH logon failures with a "Read Failure" and a "Bad/Unrecognized Data
Format". I've even had hack attempts via the Email and FTP servers, so
I'm blocking them as well.

I don't care if folks think I'm paranoid...I've invested way to much
in the BBS, and this computer is used for other things...and I'm going
to do all I can to keep hackers from destroying it, or stealing data.
I've been down the "identity theft" road once before, as well as
bankruptcy due to enormous medical expenses...and I don't want to go
down either road again.

Daryl

---
þ OLX 1.53 þ Dog expelled from Obedience School: Kid ate his homework.
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Mark,

those are an advanced MIRAI variant... the user name that you probably aren' ML>seeing is actually root and aquario is the password they're sending...

Well, either way, I'm getting a ton of them...and each time, the
system is invoking the Temporary IP Ban. I've noted that I can't set it
for more than 1W (1 week), or the "ban time" is reduced.

I recall that a wildcard string of an asterisk * could be used.

i'll let someone else answer this ;)

That is what I'm using now...and am using it for several addresses.

Daryl

---
þ OLX 1.53 þ Dominoes: =======/////////////////////|||||||||||||||||||
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Mark,

i said that our IDS and active response system on the perimeter firewall blo ML>them for that long... sbbs temp bans are all dropped when sbbs is shut down ML>anyway... at least, that's my understanding... i may not have used those exa ML>words in my previous post but i'm always talking about stopping and blocking ML>things on my perimeter instead of leting them beat up my servers and polluti ML>my network with unwanted traffic...

What if SBBS reruns the nodes, as when an update in a setup is done
within SCFG?? Is that the same as a "shut down"??

And, I agree in keeping those things "beat up the servers and
polluting the networking with unwanted traffic".

Daryl

---
þ OLX 1.53 þ Don't drink and park -- accidents cause people.
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Re: Wildcards In IP.CAN file
By: Daryl Stout to MRO on Mon Aug 28 2017 17:17:00

I am a 2 time lightning strike survivor...I don't want the third time
to be the charm.

The IP blocking is because they are constantly tying up the 4 telnet nodes, where no one can get in. And, this doesn't include the numerous
SSH logon failures with a "Read Failure" and a "Bad/Unrecognized Data Format". I've even had hack attempts via the Email and FTP servers, so
I'm blocking them as well.

drop your temp block down to ten minutes or whatever it was, after they have X many login attempts they go into the IP.can.

move your nodes to more than 4 until you naturally grow your ip.can.

I do have bots trying to hit my system.. but never have no more than 1-2 nodes tied up from them anymore. and they don't stayed tied up long either..

after a few months it will work itself out and everything will be fine.

it may be a PITA, for your doors especially.. but thats the main reason I put 10 nodes in automatically when putting up on the linux system.

also at times I do have up to 4 real callers plus myself. (very seldom, but it happens).

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
* Synchronet * KK4QBN - kk4qbn.synchro.net - 7064229538 - Chatsworth GA USA

Re: Wildcards In IP.CAN file
By: Daryl Stout to MARK LEWIS on Mon Aug 28 2017 17:18:00

those are an advanced MIRAI variant... the user name that you
probably aren' seeing is actually root and aquario is the password
they're sending...

Well, either way, I'm getting a ton of them...and each time, the
system is invoking the Temporary IP Ban. I've noted that I can't set it for more than 1W (1 week), or the "ban time" is reduced.

BTW, TEMP bans go into memory, I could'nt tell you how much it uses, but I try to keep my system as slim as possible.. if you set the temp bans to less time (1 hour) that keeps them from hammering your system, and allows them to automatically be added to the IP.CAN quicker.

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
* Synchronet * KK4QBN - kk4qbn.synchro.net - 7064229538 - Chatsworth GA USA

Re: Wildcards In IP.CAN file
By: Daryl Stout to MARK LEWIS on Mon Aug 28 2017 17:20:00

What if SBBS reruns the nodes, as when an update in a setup is done
within SCFG?? Is that the same as a "shut down"??

SBBS (RECYCLES) the nodes when something is changed in SCFG.

BTW if I was struck by lightening twice.. I think I would be a bit paranoid too..

Have you won the lottery yet?

If not, go buy a ticket.

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
* Synchronet * KK4QBN - kk4qbn.synchro.net - 7064229538 - Chatsworth GA USA

Re: Wildcards In IP.CAN file
By: Daryl Stout to MARK LEWIS on Mon Aug 28 2017 05:18 pm

Mark,

those are an advanced MIRAI variant... the user name that you probably aren' ML>seeing is actually root and aquario is the password they're sending...

Well, either way, I'm getting a ton of them...and each time, the
system is invoking the Temporary IP Ban. I've noted that I can't set it
for more than 1W (1 week), or the "ban time" is reduced.

That sounds like a bug. You should be able to set it for dozens of years, at least. I tried to reproduce what you're describing, but I was able to set the ban duration to 2 weeks, 3 weeks, and multiple years even (e.g. "3Y"). Of course, you're unlikely to run your BBS continuously for years, so a temporary ban of that duration is really not all that useful.

digital man

Synchronet "Real Fact" #2:
Synchronet version 2 for DOS and OS/2 was released to the public domain in 1997.
Norco, CA WX: 84.3øF, 44.0% humidity, 0 mph NW wind, 0.00 inches rain/24hrs

---
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Re: Wildcards In IP.CAN file
By: Daryl Stout to MARK LEWIS on Mon Aug 28 2017 05:20 pm

Mark,

i said that our IDS and active response system on the perimeter firewall blo ML>them for that long... sbbs temp bans are all dropped when sbbs is shut down ML>anyway... at least, that's my understanding... i may not have used those exa ML>words in my previous post but i'm always talking about stopping and blocking ML>things on my perimeter instead of leting them beat up my servers and polluti ML>my network with unwanted traffic...

What if SBBS reruns the nodes, as when an update in a setup is done
within SCFG?? Is that the same as a "shut down"??

No.

digital man

Synchronet "Real Fact" #17:
"Vertrauen" (ver-trow-en) translates to "trust" in German, and was a band name. Norco, CA WX: 84.3øF, 44.0% humidity, 0 mph NW wind, 0.00 inches rain/24hrs

---
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Re: Wildcards In IP.CAN file
By: Daryl Stout to MRO on Mon Aug 28 2017 05:17 pm

The IP blocking is because they are constantly tying up the 4 telnet nodes, where no one can get in. And, this doesn't include the numerous
SSH logon failures with a "Read Failure" and a "Bad/Unrecognized Data Format". I've even had hack attempts via the Email and FTP servers, so
I'm blocking them as well.

Hi Daryl

I understand your frustrations, but Synchronet's built in procedures work. I dropped all my other ip blocking programs 2 months ago because it was limiting who could contact my system. I'm letting Synchronet take care of it all. Tweak the settings, and give it time, it will straighten itself out, I promise. You have 4 nodes, I only have 5. In SBBS.INI, set MaxConcurrentConnections to 2, that way no ip address can tie up anymore than 2 nodes at one time trying to get in. See http://wiki.synchro.net/howto:block-hackers for the other settings. I assure you, the program does work. You will still get hit, but it won't shut your system down, and your users can still get in. Since I let synchronet take care of it all, my callers are starting to slowly come back. I'll be glad to help you on this, and you have my email, so shoot me a message if you need more info.

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
A Gamers Paradise - Over 150 Registered Online Game Doors!

Play Trade Wars Between 10 Other BBS's On Valhalla's Trade Wars Game Server!

Featuring Legion, A New RPG, Available On Both Systems!

--- Old farts never die! They just smell that way...
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net

On 2017 Aug 28 17:18:00, you wrote to me:

those are an advanced MIRAI variant... the user name that you
probably aren' seeing is actually root and aquario is the password
they're sending...

Well, either way, I'm getting a ton of them...

yes, there's a new push ongoing trying to conscript more IoT devices into the bot armies...

and each time, the system is invoking the Temporary IP Ban. I've noted that I can't set it for more than 1W (1 week), or the "ban time" is reduced.

well, it is what it is... a temporary ban :)

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Always offer to bait your date's hook, especially on the first date.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Tim,

drop your temp block down to ten minutes or whatever it was, after they have K>many login attempts they go into the IP.can.

I dropped it to 5...yes, I'm being stingy, but I don't want or need
those idiots.

move your nodes to more than 4 until you naturally grow your ip.can.

I'd have to create new setups for the doors that have node dropfiles,
and with over 325 doors to go through, I really don't want to do that.

after a few months it will work itself out and everything will be fine.

it may be a PITA, for your doors especially.. but thats the main reason I put K>10 nodes in automatically when putting up on the linux system.

also at times I do have up to 4 real callers plus myself. (very seldom, but i K>happens).

That's rare here as well...but it's pretty bad if the Sysop can't
logon to their own BBS...never mind forgetting the password to their own
BBS (been there, done that, got the wardrobe <BLUSH!>). :P

Daryl

---
þ OLX 1.53 þ Error: Windows not found. Use Real Operating System(Y/y)?
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Tim,

BTW, TEMP bans go into memory, I could'nt tell you how much it uses, but I tr K>to keep my system as slim as possible.. if you set the temp bans to less time K>(1 hour) that keeps them from hammering your system, and allows them to K>automatically be added to the IP.CAN quicker.

The Temp Ban Time is 1 week....but I dropped the failed logons to 5.
It's a PITA to constantly add things to the IP.can file -- but at least
I can use a wildcard for the last entry.

Daryl
---
þ OLX 1.53 þ Error?? Impossible!! My keyboard is error correcting!!
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Tim,

What if SBBS reruns the nodes, as when an update in a setup is done within SCFG?? Is that the same as a "shut down"??

SBBS (RECYCLES) the nodes when something is changed in SCFG.

OK, that's what I thought.

BTW if I was struck by lightening twice.. I think I would be a bit paranoid K>too..

However, I carry no electrical charge, and can be handled safely. <G>

Have you won the lottery yet?

If not, go buy a ticket.

Not with the potential for being targeted for murder if you win big. I
used to play a max of $5 when I played the Arkansas Lottery, but haven't
played it in several months.

Daryl

---
þ OLX 1.53 þ ESC?? I didn't know I was trapped.
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

C.G.,

I understand your frustrations, but Synchronet's built in procedures work. I D>dropped all my other ip blocking programs 2 months ago because it was limitin D>who could contact my system. I'm letting Synchronet take care of it all. Twea D>the settings, and give it time, it will straighten itself out, I promise. You D>have 4 nodes, I only have 5. In SBBS.INI, set MaxConcurrentConnections to 2, D>that way no ip address can tie up anymore than 2 nodes at one time trying to D>get in. See http://wiki.synchro.net/howto:block-hackers for the other setting D>I assure you, the program does work. You will still get hit, but it won't shu D>your system down, and your users can still get in. Since I let synchronet tak D>care of it all, my callers are starting to slowly come back. I'll be glad to D>help you on this, and you have my email, so shoot me a message if you need mo D>info.

I have the max concurrent connects at 2 -- and I lowered the number of
failed logon attempts from 10 to 5. Yes, that's being stingy, but the
logon screen notes "If you've lost or forgotten your password, Email
Feedback to the Sysop, with your user details, and your address if you
want a reply.

Ashamedly, I've forgotten my password to my own BBS at times!!
<BLUSH!>

Daryl

---
þ OLX 1.53 þ Ethernet (n): Something used to catch the etherbunny.
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

On 2017 Aug 29 13:33:00, you wrote to KK4QBN:

drop your temp block down to ten minutes or whatever it was, after
they have many login attempts they go into the IP.can.

I dropped it to 5...yes, I'm being stingy, but I don't want or need
those idiots.

you cannot stop them*... this is why the reigning recommendation is to get (the
eff off of) port 23 for telnet... don't use 2323, either, because they are there as well... post a note to your users and let it run for several weeks so that they all know when your switchover date is and then do it on that date... also move SSH to another port for the same reasons... staying on the default telnet and SSH ports and complaining is just ludicris... at best it helps one to fill their blocking lists but if "you" move off the default ports, you don't
have to deal with the shite at all...

* you cannot stop them unless you alter your setup and start using a preimeter firewall instead of whetever thing the ISP has given you... a perimeter firewall with an IDS/IPS is the way to go... just ask any of the big guys hosting and carrying all the internet traffic these days...

FWIW: my setup...

-> net1
/
internet -> ISP modem in bridge mode -> perimeter firewall --> net2
\
-> net3


there's actually more internal networks than those three but we'll stop there as ASCII drawings are a PITA... just understand that each net is separate and distinct from the others and there are strict rules as to what can access what on the other nets...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... I can see clearly now, my brain is gone...
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

On 2017 Aug 29 20:51:30, I wrote to you:

* you cannot stop them unless you alter your setup and start using a preimeter firewall instead of whetever thing the ISP has given you... a perimeter firewall with an IDS/IPS is the way to go... just ask any of the big guys hosting and carrying all the internet traffic these days...

clarification: it only takes one more machine dedicated to the firewall task...
some do it in a VM but that isn't the best way... a dedicated firewall machine connected to a bridged ISP modem gives you unlimited portforwarding capabilities as well as so much more in the way of protections... i would try to write more but i'm being hampered by family demanding my attention but i did
want to get this part out about having a dedicated perimeter firewall machine to protect your internal network(s)...


)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... 9. Don't dumb it down.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Re: Wildcards In IP.CAN file
By: mark lewis to Daryl Stout on Tue Aug 29 2017 08:51 pm

you cannot stop them*... this is why the reigning recommendation is to get (the
eff off of) port 23 for telnet... don't use 2323, either, because they are there as well... post a note to your users and let it run for several weeks so that they all know when your switchover date is and then do it on that

i recommend blocking entire countries in a software firewall.

not a fan of running on non standard ports. just makes it harder
for the users.
---
þ Synchronet þ ::: BBSES.info - free BBS services :::

Daryl Stout wrote to KK4QBN <=-

However, I carry no electrical charge, and can be handled safely. <G>

I dunno, handling you still sounds shocking. :P


... The rich will do anything for the poor but get off their backs.
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - freeway.apana.org.au (3:633/410)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

mark lewis wrote to Daryl Stout <=-

firewall machine connected to a bridged ISP modem gives you unlimited portforwarding capabilities as well as so much more in the way of

Well, not quite, but far more than anyone is going to use. :) Your setup is definitely the way to go, if security is the prime consideration. In reality, while security should always be a high priority, there may be other considerations that influence one's network design, such as cost (both up front and ongoing), technical requirements, administrator skill (whoever owns/manages the network needs to know how to configure it), user base, services offered, etc.

Actually, I'm having hassles with one network I use, because it was setup without any consultation, and things have broken as a result. So far, correspondence to management of the company concerned haven't yielded any results. :/


... COFFEE.COM not found: (A)bort, (R)eheat, (S)nooze
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - freeway.apana.org.au (3:633/410)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Mro wrote to mark lewis <=-

not a fan of running on non standard ports. just makes it harder
for the users.

I agree, that's something I only do when there's no other alternative.


... Science is nothing but trained and organized common sense.
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - freeway.apana.org.au (3:633/410)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Re: Wildcards In IP.CAN file
By: mark lewis to Daryl Stout on Tue Aug 29 2017 09:10 pm

protections... i would try to write more but i'm being hampered by family demanding my attention but i did want to get this part out about having a dedicated perimeter firewall machine to protect your internal network(s)...

I miss the days when I had a cheaptastic P90 box running firewall software. Lots of potential on a single core system with something like 64 mb of RAM. :)

---
þ Synchronet þ realitycheckBBS -- http://realitycheckBBS.org

poindexter FORTRAN wrote to mark lewis <=-

I miss the days when I had a cheaptastic P90 box running firewall software. Lots of potential on a single core system with something like
64 mb of RAM. :)

Those were the days - a recycled PC running Linux made an excellent router/firewall. :)


... */ \* <- Tribbles having a swordfight.
--- MultiMail/Win32 v0.49
* Origin: Freeway BBS - freeway.apana.org.au (3:633/410)
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Re: Wildcards In IP.CAN file
By: poindexter FORTRAN to mark lewis on Fri Sep 01 2017 01:08 pm

I miss the days when I had a cheaptastic P90 box running firewall software. Lots of potential on a single core system with something like 64 mb of RAM. :)

I have an older AMD Athlon X64 box that I run pfSense on. That functions as my home router/firewall, and works quite well. It does require a little networking knowledge to use, however.

There is a fork of it called "OpenSense" also available, but IMHO it seems a little wonky and shady.

Both run off FreeBSD, and have a web "GUI" interface that makes configuring them fairly straightforward.

---
þ Synchronet þ War Ensemble BBS - The sport is war, total war - warensemble.com

Mark,

clarification: it only takes one more machine dedicated to the firewall task ML>some do it in a VM but that isn't the best way... a dedicated firewall machi ML>connected to a bridged ISP modem gives you unlimited portforwarding ML>capabilities as well as so much more in the way of protections... i would tr ML>to write more but i'm being hampered by family demanding my attention but i ML>want to get this part out about having a dedicated perimeter firewall machin ML>to protect your internal network(s)...

I was using PeerBlock, and that helped stop a bunch of them. But, is
there a "list of bad countries", per se?? If so, I can put them into
PeerBlock, and that'll stop them from accessing at all.

I do have one user from one of the countries in the "list", so I have
to look and see how to "allow his IP", etc.

Daryl

---
þ OLX 1.53 þ Eyewitnesses were on the scene in minutes.
þ Synchronet þ The Thunderbolt BBS - wx1der.dyndns.org

Re: Wildcards In IP.CAN file
By: Daryl Stout to MARK LEWIS on Wed Sep 06 2017 09:51 pm

I was using PeerBlock, and that helped stop a bunch of them. But, is
there a "list of bad countries", per se?? If so, I can put them into PeerBlock, and that'll stop them from accessing at all.

ipdeny.com has country blocks.

someone quote me so daryl can see. he probably blocked me because
i'm going to hell and the devil and the demons are laughing at me.
---
þ Synchronet þ ::: BBSES.info - free BBS services :::

Re: Wildcards In IP.CAN file
By: Mro to Daryl Stout on Thu Sep 07 2017 05:21 pm

Re: Wildcards In IP.CAN file
By: Daryl Stout to MARK LEWIS on Wed Sep 06 2017 09:51 pm

I was using PeerBlock, and that helped stop a bunch of them. But, is there a "list of bad countries", per se?? If so, I can put them into PeerBlock, and that'll stop them from accessing at all.

ipdeny.com has country blocks.

someone quote me so daryl can see. he probably blocked me because
i'm going to hell and the devil and the demons are laughing at me.

There you go Mro. LOL

---
þ Synchronet þ StarFlight BBS - bbs.starflightbbs.com