Wilfred,

I have removed the packet passwords...as I don't see a need for them.

Do you ultimately trust your secure links? Is incoming unsecure mail WVV>automatically processed on your system? Does the same apply to the systems WVV>your links?

If they are not in my connects, they don't get in...because I've told Internet Rex to DENY connections to those who don't have session
passwords, or are not in my connections list.

Daryl

---
� OLX 1.53 � I dropped out of communism class because of lousy Marx.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org

On 2017 Dec 31 12:17:00, you wrote to WILFRED VAN VELZEN:

I have removed the packet passwords...as I don't see a need for
them.

Do you ultimately trust your secure links? Is incoming unsecure mail
automatically processed on your system? Does the same apply to the
systems your links?

If they are not in my connects, they don't get in...because I've told Internet Rex to DENY connections to those who don't have session passwords, or are not in my connections list.

that is *not* a GoodIdea<tm>... we're seeing the effects of this in region18 where the *C can connect but cannot drop off netmail for regional business... chasing and eliminating systems flying invalid domains (NXDOMAIN) in their nodelist entry is one thing because they can be removed since there's no known way to get netmail to them... the others that are specifically blocking all other systems except those with session level passwords or listed in the remote's connections... well... this is especially complicated when the *C hat changes from one person to another and no records are available for transfer as
well... i don't like the idea that i may have to remove viable systems because of this particular configuration... i'm still waiting, after numerous weeks, for information from other sysops on how to contact several of these NOANSWER systems... i really really really hate the thought that they may have to be removed...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Cats like "Pro-Cat-Stinating"---it's the "Cats-Meow!"--jkb
---
* Origin: (1:3634/12.73)
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Hi Daryl,

On 2017-12-31 12:17:00, you wrote to me:

Do you ultimately trust your secure links? Is incoming unsecure mail
automatically processed on your system? Does the same apply to the
systems your links?

If they are not in my connects, they don't get in...because I've told Internet Rex to DENY connections to those who don't have session passwords, or are not in my connections list.

Bad idea! Any fido system should be able to receive crash mail from any other system, otherwise you are just a Pvt system. And you can't be Pvt when you are a RIN.

Bye, Wilfred.

--- FMail-lnx64 2.1.0.18-B20170815
* Origin: FMail development HQ (2:280/464)
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

On 2018 Jan 01 01:56:26, you wrote to Daryl Stout:

Do you ultimately trust your secure links? Is incoming unsecure
mail automatically processed on your system? Does the same apply to
the systems your links?

If they are not in my connects, they don't get in...because I've told
Internet Rex to DENY connections to those who don't have session
passwords, or are not in my connections list.

Bad idea! Any fido system should be able to receive crash mail from
any other system, otherwise you are just a Pvt system.

agreed...

And you can't be Pvt when you are a RIN.

ORLY? says who? "Pvt" fits easily on to a RIN's nodelist entry with no problems... the RC, in that case, simply becomes a NC at that point... nothing really any "worse" than a NC with a net that has several "Hubs" with some folks
feeding from the NC instead of a "Hub"... "Hub" as in network mail hub... not anything like a backbone hub... in any case, the RC would be where "host routed" netmail would be delivered by default for RINs...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Ahh, fuck the bozos!
---
* Origin: (1:3634/12.73)
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Hello Daryl,

On Sun Dec 31 2017 12:17:00, Daryl Stout wrote to WILFRED VAN VELZEN:

If they are not in my connects, they don't get in...because I've
told Internet Rex to DENY connections to those who don't have session passwords, or are not in my connections list.

You do know that Internet Rex is probably the buggiest software out there right
now, right?

Probably not. It has a fancy GUI so you'll continue to use it. :(

Regards,
Nick

... "Не знаю. Я здесь только работаю."
--- GoldED+/LNX 1.1.5-b20170303
* Origin: thePharcyde_ distribution system (Wisconsin) (723:1/1)
� Synchronet � thePharcyde_ telnet://bbs.pharcyde.org (Wisconsin)

Hello mark,

On Sun Dec 31 2017 18:38:34, mark lewis wrote to Daryl Stout:

that is *not* a GoodIdea<tm>... we're seeing the effects of this in region18 where the *C can connect but cannot drop off netmail for
regional business... chasing and eliminating systems flying invalid domains (NXDOMAIN) in their nodelist entry is one thing because they
can be removed since there's no known way to get netmail to them...
the others that are specifically blocking all other systems except
those with session level passwords or listed in the remote's connections... well... this is especially complicated when the *C hat changes from one person to another and no records are available for transfer as well... i don't like the idea that i may have to remove
viable systems because of this particular configuration... i'm still waiting, after numerous weeks, for information from other sysops on
how to contact several of these NOANSWER systems... i really really
really hate the thought that they may have to be removed...

Remove them, and stop their feed. If they give two shits and actually notice.. they'll figure out a way to contact you or someone that can pass on the information to you (filegate.net and many others).

If they don't care, they just don't care. That's the way it is these days.

Regards,
Nick

... "Не знаю. Я здесь только работаю."
--- GoldED+/LNX 1.1.5-b20170303
* Origin: thePharcyde_ distribution system (Wisconsin) (723:1/1)
� Synchronet � thePharcyde_ telnet://bbs.pharcyde.org (Wisconsin)

On 2018 Jan 01 00:16:24, you wrote to me:

i don't like the idea that i may have to remove viable systems
because of this particular configuration... i'm still waiting, after
numerous weeks, for information from other sysops on how to contact
several of these NOANSWER systems... i really really really hate the
thought that they may have to be removed...

Remove them, and stop their feed. If they give two shits and actually notice.. they'll figure out a way to contact you or someone that can
pass on the information to you (filegate.net and many others).

If they don't care, they just don't care. That's the way it is these days.

removing their entries is exactly what is being done... how that affects the systems of those providing the removed ones a feed is unknown... that's up to the folks providing the feed... part of the problem with contacting these folks
is not knowing where they get their feed in the first place :(

in any case, it is a done deal... 30+ days should have been enough for them to see or find out about their "Down" status...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Treat her like a lady and she'll always bring you home.
---
* Origin: (1:3634/12.73)
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Mark,

If they are not in my connects, they don't get in...because I've told Internet Rex to DENY connections to those who don't have session passwords, or are not in my connections list.

that is *not* a GoodIdea<tm>... we're seeing the effects of this in region18

I usually also email my connects, so if they can't reach me via
netmail, they can do so via email. Besides, I can reply via email much quicker...and I advise them if there may be a period of downtime due to
a winter storm or thunderstorm potential...adding I will poll them when
power is restored.

Ironically, power went out here overnight, but I was so exhausted,
that even though the power was back on after a couple of hours, I left everything down until I got up this morning. No, I didn't go out and party...too cold to do that.

Daryl
---
� OLX 1.53 � I tried to catch some fog. I mist.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org

Wilfred,

Bad idea! Any fido system should be able to receive crash mail from any oth WVV>system, otherwise you are just a Pvt system. And you can't be Pvt when you WVV>a RIN.

They can route FIDONet Netmail to my regional hub, Marc Lewis, who
will send it to me. I was getting repeated crash connects that weren't
leaving any mail or picking anything up. If there is a need for such,
since I'm a Regional Independent (no other FIDONet BBS's in Arkansas),
they can contact me via email. Or they can telnet into the BBS, and use
the Feedback option to leave me a message, and I'll get back with them.

Or, I'll change it to requiring being a nodelisted system. According
to the docs in Internet Rex, having it "standard" (open to all) is not considered a good idea.

Daryl

---
� OLX 1.53 � I used to be a banker, but then I lost interest.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org

Nick,

You do know that Internet Rex is probably the buggiest software out there rig A>now, right?

It has worked for me in nearly 30 years of being a Sysop.

Probably not. It has a fancy GUI so you'll continue to use it. :(

I paid the full fee to register it...why should I throw away software
that does the job?? I didn't even change the colors for it.

It's like Microsoft bugging me to upgrade to Windows 10?? I am a firm believer in "If It Ain't Broke...Don't Fix It!!".

Daryl

---
� OLX 1.53 � I used to have an open mind; my brains kept falling out.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org

Mark,

ORLY? says who? "Pvt" fits easily on to a RIN's nodelist entry with no ML>problems... the RC, in that case, simply becomes a NC at that point... nothi ML>really any "worse" than a NC with a net that has several "Hubs" with some fo ML>feeding from the NC instead of a "Hub"... "Hub" as in network mail hub... no ML>anything like a backbone hub... in any case, the RC would be where "host ML>routed" netmail would be delivered by default for RINs...

Plus, I'm the ONLY FIDONet BBS in Arkansas that I'm aware of. There is
one other BBS in Little Rock running Synchronet, but he's not part of
FIDONet or any other FTN Network (he does get Dove-Net, though).

I changed the deal to require it being a nodelisted entry for
access...and I get the nodelists direct from my connects that are
already in my IREX Node Manager.

I have a bulletin on the BBS of several long gone BBS's...mainly in
the Little Rock area.

Daryl

---
� OLX 1.53 � I watch what I eat...from the plate to the mouth.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org

Hello mark,

On Mon Jan 01 2018 12:56:36, mark lewis wrote to Accession:

removing their entries is exactly what is being done... how that
affects the systems of those providing the removed ones a feed is unknown... that's up to the folks providing the feed... part of the problem with contacting these folks is not knowing where they get
their feed in the first place :(

Yep, and you or I didn't make those rules.

in any case, it is a done deal... 30+ days should have been enough for them to see or find out about their "Down" status...

Agreed.

Regards,
Nick

... "Не знаю. Я здесь только работаю."
--- GoldED+/LNX 1.1.5-b20170303
* Origin: thePharcyde_ distribution system (Wisconsin) (723:1/1)
� Synchronet � thePharcyde_ telnet://bbs.pharcyde.org (Wisconsin)

Hello Daryl,

On Mon Jan 01 2018 12:03:00, Daryl Stout wrote to ACCESSION:

You do know that Internet Rex is probably the buggiest software out
there rig now, right?

It has worked for me in nearly 30 years of being a Sysop.

And during that entire time, just about every other mailer in use today had to add special code and workarounds to deal with Irex and it's bad binkp implementation.

I paid the full fee to register it...why should I throw away
software that does the job?? I didn't even change the colors for it.

Good thing it does the job for you on your end, while everyone else (including other programmers) had to suffer. ;)

It's like Microsoft bugging me to upgrade to Windows 10?? I am a
firm believer in "If It Ain't Broke...Don't Fix It!!".

That happens with just about every software out there. If there's a new version, the author or company that made said new version are going to promote it as much as they can. In the end, it's still your choice what you do with your own system.

Regards,
Nick

... "Не знаю. Я здесь только работаю."
--- GoldED+/LNX 1.1.5-b20170303
* Origin: thePharcyde_ distribution system (Wisconsin) (723:1/1)
� Synchronet � thePharcyde_ telnet://bbs.pharcyde.org (Wisconsin)

Re: Passwords
By: Accession to Daryl Stout on Mon Jan 01 2018 12:14 am

You do know that Internet Rex is probably the buggiest software out there right now, right?

I used to use Internet Rex. I didn't realize it was very buggy.. I don't use it anymore because I decided to switch to another mailer (Radius), which was recomended in a setup guide.

Nightfox

---
� Synchronet � Digital Distortion: digitaldistortionbbs.com

Re: Passwords
By: Accession to Daryl Stout on Mon Jan 01 2018 07:18 pm

It's like Microsoft bugging me to upgrade to Windows 10?? I am a
firm believer in "If It Ain't Broke...Don't Fix It!!".

That happens with just about every software out there. If there's a new version, the author or company that made said new version are going to promote it as much as they can. In the end, it's still your choice what you do with your own system.

In their defense, the author or company know what they've fixed better than anyone and always want the most-safe/secure/reliable version of their software to be in use, as much as possible. Certainly to help their reputation. But this also reflects the author/company's (probably misplaced) faith that all the new code (features and fixes) didn't introduce some new reliability or security issue that was not there previously.

It's a delicate balance. Sure, you know all the holes you've plugged, but you don't know how many new holes you've created... until later.

digital man

This Is Spinal Tap quote #27:
As long as there's, y'know, sex and drugs, I can do without the rock and roll. Norco, CA WX: 55.9�F, 72.0% humidity, 0 mph S wind, 0.00 inches rain/24hrs

---
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Hi Daryl,

On 2018-01-01 12:00:00, you wrote to me:

Bad idea! Any fido system should be able to receive crash mail from
any oth system, otherwise you are just a Pvt system. And you can't
be Pvt when you a RIN.

They can route FIDONet Netmail to my regional hub, Marc Lewis, who
will send it to me.

The point of crash mail is that it's delivered direct!

I was getting repeated crash connects that weren't leaving any mail or picking anything up.

So deal with those. Ask them to stop doing that, or block their ip's in your firewall.

If there is a need for such, since I'm a Regional Independent (no
other FIDONet BBS's in Arkansas), they can contact me via email. Or
they can telnet into the BBS, and use the Feedback option to leave me
a message, and I'll get back with them.

Those connection methods are outside of fidonet. And how could they know your email address?

Or, I'll change it to requiring being a nodelisted system.

If you keep your nodelist up to date?

According to the docs in Internet Rex, having it "standard" (open to
all) is not considered a good idea.

If your other security messures (like using pkt passwords), are in order, there
is nothing wrong it.

Bye, Wilfred.

--- FMail-lnx64 2.1.0.18-B20170815
* Origin: FMail development HQ (2:280/464)
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

On 2018 Jan 02 10:59:42, you wrote to Daryl Stout:

Bad idea! Any fido system should be able to receive crash mail from
any oth system, otherwise you are just a Pvt system. And you can't
be Pvt when you a RIN.

They can route FIDONet Netmail to my regional hub, Marc Lewis, who
will send it to me.

The point of crash mail is that it's delivered direct!

immediately, not direct... DIRect was created to ensure mail went DIRectly ;)

I was getting repeated crash connects that weren't leaving any mail
or picking anything up.

So deal with those. Ask them to stop doing that, or block their ip's
in your firewall.

exactly...

If there is a need for such, since I'm a Regional Independent (no
other FIDONet BBS's in Arkansas), they can contact me via email. Or
they can telnet into the BBS, and use the Feedback option to leave me
a message, and I'll get back with them.

Those connection methods are outside of fidonet. And how could they
know your email address?

that, too... it was my first thought...

Or, I'll change it to requiring being a nodelisted system.

If you keep your nodelist up to date?

if his system even uses a nodelist... binkd and similar systems don't even know
what a nodelist is :(

According to the docs in Internet Rex, having it "standard" (open to
all) is not considered a good idea.

If your other security messures (like using pkt passwords), are in
order, there is nothing wrong it.

to a point, agreed :)

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Apple Turnover - Command given by an apple trainer.
---
* Origin: (1:3634/12.73)
� Synchronet � Vertrauen � Home of Synchronet � [vert/cvs/bbs].synchro.net

Hello Digital,

On Mon Jan 01 2018 23:37:44, Digital Man wrote to Accession:

That happens with just about every software out there. If there's a
new version, the author or company that made said new version are
going to promote it as much as they can. In the end, it's still
your choice what you do with your own system.

In their defense, the author or company know what they've fixed better than anyone and always want the most-safe/secure/reliable version of
their software to be in use, as much as possible.

Exactly!

Certainly to help their reputation.

And of course there's a lot of the "to make money" aspect as well.

But this also reflects the author/company's (probably misplaced) faith that all the new code (features and fixes) didn't introduce some new reliability or security issue that was not there previously.

Oh come now. That doesn't happen! ;)

It's a delicate balance. Sure, you know all the holes you've plugged,
but you don't know how many new holes you've created... until later.

Yep. Though I personally feel that keeping up with current code is a better option, because even if there is a new hole it can and probably will be fixed. Whereas old code usually won't be messed with anymore (ie: EOL cycles and LTS versions and whatnot).

Regards,
Nick

... "Не знаю. Я здесь только работаю."
--- GoldED+/LNX 1.1.5-b20170303
* Origin: thePharcyde_ distribution system (Wisconsin) (723:1/1)
� Synchronet � thePharcyde_ telnet://bbs.pharcyde.org (Wisconsin)

Re: Passwords
By: Accession to Digital Man on Tue Jan 02 2018 08:10 am

In their defense, the author or company know what they've fixed
better than anyone and always want the most-safe/secure/reliable
version of their software to be in use, as much as possible.

Exactly!

Certainly to help their reputation.

And of course there's a lot of the "to make money" aspect as well.

Microsoft was giving the Windows 10 update for free for a period of time.. But I agree though, companies are out to make money.

Nightfox

---
� Synchronet � Digital Distortion: digitaldistortionbbs.com

The point of crash mail is that it's delivered direct!

What was your first clue??

I was getting repeated crash connects that weren't leaving any mail or picking anything up.

So deal with those. Ask them to stop doing that, or block their ip's in you WVV>firewall.

But, it only takes one sent malware file to destroy things. I'd rather
be safe than sorry. My IP trashcan file is bulging as it is, and
increasing by the day.

Those connection methods are outside of fidonet. And how could they know yo WVV>email address?

Because I sent a netmail message to them, asking for it, in case the
BBS was down for power outages, thunderstorms, etc. Florida may be the lightning capitol of the world...but during our spring and fall tornado
season, Arkansas is a close second.

Having been a 2 time lightning strike survivor myself, and seeing what lightning strikes do to equipment, I am NOT going to be online when
storms threaten...and sometimes, that lasts for several days. With the
email, I can send them a quick note from my smartphone, advising I'm
going to be offline for a time due to a power failure, thunderstorms,
system repairs, etc. I don't go out of central Arkansas on vacations
anymore, due to health and financial issues.

If you keep your nodelist up to date?

Considering I get an updated nodelist from FIDONet when it comes
out...plus copies of the FIDONews (which I rarely read), and the
FIDOGazette (which I prefer)...I do keep the nodelist up to date. Plus,
I get the files from one of the regional hubs. Basically, they're on the
system within 24 hours after being hatched out...unless my system is
offline due to thunderstorms, power outages, etc.

If your other security messures (like using pkt passwords), are in order, t WVV>is nothing wrong it.

Some of my connects don't use the packet passwords...they feel the
session passwords are sufficient. Besides, I don't use regular words...I
use a combination of letters, numbers, and symbols. And, if I could use
high ascii characters in it, I would.

If it works for me, and I feel it's sufficient (I've been a Sysop for
nearly 30 years), why should it matter to you?? I surely am not
questioning you or other Sysops on how they run their BBS...that's
strictly their business.

Daryl

---
� OLX 1.53 � I'm always late. My ancestors arrived on the June Flower.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org

Mark,

in any case, it is a done deal... 30+ days should have been enough for them ML>see or find out about their "Down" status...

And, I notify my hubs via email, in case the system is down from a
power outage, thunderstorms for an extended time, etc. That way, they
know what's going on. Email is usually quicker than netmail anyway.

Daryl

---
� OLX 1.53 � I'm Dyslexia Of Borg. Prepare To Have Your Ass Laminated.
� Synchronet � The Thunderbolt BBS - wx1der.dyndns.org