I have noticed that the DDoS attacks that come in usually come from one hostname or IP and hit all at once and even if you block them they find a new IP/Host. Is it possible to put a feature into Synchronet that will allow only 1 IP on at a time, that way all your nodes don't fill at once.

|08% |15Dribble|08 [|15ACiDiC/nRk|08]|07

---
þ Synchronet þ Lunatic Fringe - lunatic.synchro.net

Re: Feature Request
By: Dribble to Digital Man on Sun Nov 27 2016 05:09 pm

I have noticed that the DDoS attacks that come in usually come from one hostname or IP and hit all at once and even if you block them they find a new IP/Host. Is it possible to put a feature into Synchronet that will allow only 1 IP on at a time, that way all your nodes don't fill at once.

It's definitely possible, but of course, with NAT, it's common to have multiple clients using the same public IP address. So if you had that limit, it's possible that users in common organizations/businesses, might block each other out very easily.

digital man

Synchronet "Real Fact" #38:
Synchronet first supported Windows NT-based operating systems w/v3.00b (2000). Norco, CA WX: 54.3øF, 83.0% humidity, 3 mph W wind, 0.13 inches rain/24hrs
---
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Feature Request
By: Dribble to Digital Man on Sun Nov 27 2016 05:09 pm

I have noticed that the DDoS attacks that come in usually come from one hostname or IP and hit all at once and even if you block them they find a new IP/Host. Is it possible to put a feature into Synchronet that will allow only 1 IP on at a time, that way all your nodes don't fill at once.

that's a very good suggestion.
---
þ Synchronet þ ::: BBSES.info - free BBS services :::

Re: Feature Request
By: Digital Man to Dribble on Sun Nov 27 2016 05:43 pm

It's definitely possible, but of course, with NAT, it's common to have multiple clients using the same public IP address. So if you had that limit, it's possible that users in common organizations/businesses, might block each other out very easily.

So how bout make it an option for the Sysops that want it? I know a ton probably do. Is it not something you can put into sbbs.ini to make it an option?

|08% |15Dribble|08 [|15ACiDiC/nRk|08]|07

---
þ Synchronet þ Lunatic Fringe - lunatic.synchro.net

Re: Feature Request
By: Dribble to Digital Man on Sun Nov 27 2016 07:43 pm

Re: Feature Request
By: Digital Man to Dribble on Sun Nov 27 2016 05:43 pm

It's definitely possible, but of course, with NAT, it's common to have multiple clients using the same public IP address. So if you had that limit, it's possible that users in common organizations/businesses, might block each other out very easily.

So how bout make it an option for the Sysops that want it? I know a ton probably do. Is it not something you can put into sbbs.ini to make it an option?

Ya, I'll work something up. You wouldn't want to enable something like this on the web server though, as browsers normally open lots of connections.

digital man

Synchronet/BBS Terminology Definition #37:
NUP = New User Password
Norco, CA WX: 52.0øF, 63.0% humidity, 3 mph WNW wind, 0.05 inches rain/24hrs ---
þ Synchronet þ Vertrauen þ

Re: Feature Request
By: Digital Man to Dribble on Sun Nov 27 2016 09:22 pm

Re: Feature Request
By: Dribble to Digital Man on Sun Nov 27 2016 07:43 pm

Re: Feature Request
By: Digital Man to Dribble on Sun Nov 27 2016 05:43 pm

It's definitely possible, but of course, with NAT, it's common to have multiple clients using the same public IP address. So if you had that limit, it's possible that users in common organizations/businesses, might block each other out very easily.

So how bout make it an option for the Sysops that want it? I know a ton probably do. Is it not something you can put into sbbs.ini to make it an option?

Ya, I'll work something up. You wouldn't want to enable something like this on the web server though, as browsers normally open lots of connections.

So it's in there now (in CVS and this morning's build), just set sbbs.ini [BBS] MaxConcurrentConnections to the number like (1 or 2?). The default is 0 (unlimited).

digital man

Synchronet "Real Fact" #18:
Rob Swindell first learned to program in C by hacking on WWIV BBS software. Norco, CA WX: 54.6øF, 75.0% humidity, 0 mph ESE wind, 0.01 inches rain/24hrs ---
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

27 Nov 16 17:09, you wrote to Digital Man:

I have noticed that the DDoS attacks that come in usually come from
one hostname or IP and hit all at once and even if you block them they find a new IP/Host.

FWIW: if you are talking about the MIRAI stuff, what you are seeing are not DDOS attacks... they are simply infestation attempts... the reason you see more
than one from an IP is because there's either several IOT devices running on that one IP or the IOT device on that IP is running multiple infestation forks... the /only/ reason we see these infestation attempts as DOSes is because they consume all available nodes for a time... nothing more... and it is a temporary consumption, too... no different than having numerous people hitting you all at once from behind a NAT IP...

Is it possible to put a feature into Synchronet that will allow only 1
IP on at a time, that way all your nodes don't fill at once.

IIRC, it is already there but it only counts after a successful login... what you propose would block multiple users on one NAT IP...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Check your mind at the door... NONE allowed in this echo! ;*)
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

27 Nov 16 21:22, you wrote to Dribble:

So how bout make it an option for the Sysops that want it? I know a ton
probably do. Is it not something you can put into sbbs.ini to make it
an option?

Ya, I'll work something up. You wouldn't want to enable something like this on the web server though, as browsers normally open lots of connections.

FTP does similar with multiple connections, as well ;)

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Amish Spring Break Activity: Buttermilk kegger.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Feature Request
By: mark lewis to Digital Man on Mon Nov 28 2016 01:08 pm

27 Nov 16 21:22, you wrote to Dribble:

So how bout make it an option for the Sysops that want it? I know a ton
probably do. Is it not something you can put into sbbs.ini to make it
an option?

Ya, I'll work something up. You wouldn't want to enable something like this on the web server though, as browsers normally open lots of connections.

FTP does similar with multiple connections, as well ;)

2 is normal for FTP (one for control and one for data).

digital man

Synchronet "Real Fact" #72:
Synchronet CIOXTRN (created by Deuce) is a 32-bit replacement for DOORWAY. Norco, CA WX: 54.4øF, 72.0% humidity, 0 mph SE wind, 0.01 inches rain/24hrs
---
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Feature Request
By: Digital Man to Dribble on Mon Nov 28 2016 11:09 am

So it's in there now (in CVS and this morning's build), just set sbbs.ini [BBS] MaxConcurrentConnections to the number like (1 or 2?). The default is 0 (unlimited).

DM, you kick ass, now I'm goig to have to get VC or borland or something since I'm running from a windows machine at the moment.. I hav Linux on my Laptop, but dont want to leave it on 24/7 it also don't have a modem to accept pots calls, but this is an excellent options for us who don't have this in our routers (could'nt find it on mine).

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
þ Synchronet þ KK4QBN BBS - (706)422-9538 - kk4qbn.synchro.net, Chatsworth GA US

Re: Feature Request
By: kk4qbn to Digital Man on Mon Nov 28 2016 18:57:24

DM, you kick ass, now I'm goig to have to get VC or borland or something since I'm running from a windows machine at the moment.. I hav Linux on my

FWIW you don't necessarily have to build it yourself; DM makes nightly builds available here:

ftp://synchro.net/Synchronet/sbbs_dev.zip

And a daily up-to-date archive of scripts etc. can be had here:

ftp://synchro.net/Synchronet/sbbs_run.zip

Laptop, but dont want to leave it on 24/7 it also don't have a modem to accept pots calls, but this is an excellent options for us who don't have

Fun but probably not-very-useful-to-you fact: you don't necessarily have to run SEXPOTS on the same machine that hosts your BBS. Just configure the outbound telnet address to wherever you wish to forward callers to.

---
echicken
electronic chicken bbs - bbs.electronicchicken.com - 416-273-7230
þ Synchronet þ electronic chicken bbs - bbs.electronicchic

Re: Feature Request
By: kk4qbn to Digital Man on Mon Nov 28 2016 06:57 pm

Re: Feature Request
By: Digital Man to Dribble on Mon Nov 28 2016 11:09 am

So it's in there now (in CVS and this morning's build), just set sbbs.ini [BBS] MaxConcurrentConnections to the number like (1 or 2?). The default is 0 (unlimited).

DM, you kick ass, now I'm goig to have to get VC or borland or something since I'm running from a windows machine at the moment.. I hav Linux on my Laptop, but dont want to leave it on 24/7 it also don't have a modem to accept pots calls, but this is an excellent options for us who don't have this in our routers (could'nt find it on mine).

Or you could just download ftp://vert.synchro.net/Synchronet/sbbs_dev.zip

digital man

Synchronet "Real Fact" #4:
Synchronet version 3 is written mostly in C, with some C++, x86 ASM, and Pascal.
Norco, CA WX: 55.5øF, 72.0% humidity, 5 mph SE wind, 0.00 inches rain/24hrs
---
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Feature Request
By: Digital Man to Dribble on Mon Nov 28 2016 11:09 am

So it's in there now (in CVS and this morning's build), just set sbbs.ini [BBS] MaxConcurrentConnections to the number like (1 or 2?). The default is 0 (unlimited).

Thanks! this will definately help with the attacks I have been getting.

|08% |15Dribble|08 [|15ACiDiC/nRk|08]|07

---
þ Synchronet þ Lunatic Fringe - lunatic.synchro.net

Re: Feature Request
By: echicken to kk4qbn on Mon Nov 28 2016 07:51 pm

FWIW you don't necessarily have to build it yourself; DM makes nightly builds available here:

crap, forgot about that, think he did that back in the day, dunno for sure.. either way, THANKS! I try my best to do all the research myself, but, you know how stuff can get missed, especially with all the new changes :)

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
þ Synchronet þ KK4QBN BBS - (706)422-9538 - kk4qbn.

Re: Feature Request
By: Digital Man to kk4qbn on Mon Nov 28 2016 05:03 pm

Or you could just download ftp://vert.synchro.net/Synchronet/sbbs_dev.zip

Lol, was just reminded by echicken of the same, it's all coming back slowly.. I try to RTFM.. or wiki that is.. but.. su many features, so little time :)

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
þ Synchronet þ KK4QBN BBS - (706)422-9538 - kk4qbn.synchro.net, Chatsworth GA US

Re: Feature Request
By: Digital Man to Dribble on Mon Nov 28 2016 11:09 am

DM,

Re: Feature Request
By: Digital Man to Dribble on Sun Nov 27 2016 09:22 pm

So it's in there now (in CVS and this morning's build), just set sbbs.ini [BBS] MaxConcurrentConnections to the number like (1 or 2?). The default is 0 (unlimited).

Thanks for that. I have added it to my system. With TempBan/Perm Ban on top of a limited connection from an IP, this should reduce the amount of callers listed in my Waiting for Callers list. I appreciate it.
---

Sincerely,
Jon Justvig
Stepping Stone BBS
http://vintagebbsing.com:81
telnet://vintagebbsing.com
ssh://vintagebbsing.com
---
þ Synchronet þ Stepping Stone BBS -- telnet://v

28 Nov 16 11:41, you wrote to me:

FTP does similar with multiple connections, as well ;)

2 is normal for FTP (one for control and one for data).

right but i was talking about some ftp clients that open multiple connections to the ftp server... i've seen as many as 5 or 6 from certain GUI clients...

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... All of us work for the government. The trick is to get paid for it.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Feature Request
By: mark lewis to Digital Man on Tue Nov 29 2016 05:55 pm

28 Nov 16 11:41, you wrote to me:

FTP does similar with multiple connections, as well ;)

2 is normal for FTP (one for control and one for data).

right but i was talking about some ftp clients that open multiple connections to the ftp server... i've seen as many as 5 or 6 from certain GUI clients...

Ah, I hadn't seen that. Well FTP connections are cheap, while BBS nodes aren't (as cheap), so I've implemented the MaxConcurrentConnections feature only for the Terminal Server, at least for now.

digital man

Synchronet/BBS Terminology Definition #51:
TCP = Transmission Control Protocol
Norco, CA WX: 59.2øF, 22.0% humidity, 6 mph W wind, 0.00 inches rain/24hrs
---
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net

Re: Feature Request
By: Digital Man to mark lewis on Tue Nov 29 2016 07:33 pm

Ah, I hadn't seen that. Well FTP connections are cheap, while BBS nodes aren't (as cheap), so I've implemented the MaxConcurrentConnections feature only for the Terminal Server, at least for now.

And it's working well for me DM, I was one of the folks getting NAILED by miria, or whatever the b*itch bots name is, well.. she still nailing me, but not for long.. a couple nodes will fire up for just a couple seconds than boom, she got duct tape over her mouth.. haha.. works beautifully..

--

Tim Smith (KK4QBN)
KK4QBN BBS

---
þ Synchronet þ KK4QBN BBS - (706)422-9538 - kk4qbn.synchro.net, Chatsworth GA US

29 Nov 16 19:33, you wrote to me:

right but i was talking about some ftp clients that open multiple
connections to the ftp server... i've seen as many as 5 or 6 from
certain GUI clients...

Ah, I hadn't seen that. Well FTP connections are cheap, while BBS
nodes aren't (as cheap), so I've implemented the
MaxConcurrentConnections feature only for the Terminal Server, at
least for now.

true, true and GoodDeal<tm> ;)

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... Things are more like they are now than they ever were before.
---
* Origin: (1:3634/12.73)
þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.sync

Is there a way you could implement a @-CODE for the Comment Field in the user database. I use this field often for notes, and I would like a way to display it. If you agree, can you put it on your todo list. Thanks in advance.

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
Valhalla III! - (RemoteAccess) - bbs.valhallabbs.com:5023
Valhalla Home Services Web! - http://bbs.valhallabbs.com
A Gamers Paradise - Over 150 Registered Online Game Doors!

Home Of Odin's Maze Game Server!
Come Play Trade Wars On Valhalla's T.W.G.S!

--- SENILE.COM found...Out of Memory...
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net

Re: Feature Request
By: DesotoFireflite to Digital Man on Mon Feb 22 2021 01:00 pm

Is there a way you could implement a @-CODE for the Comment Field in the user database. I use this field often for notes, and I would like a way to display it. If you agree, can you put it on your todo list. Thanks in advance.

It's certainly possible, but maybe consider using the "Note" field instead? The "comment" was intended to be a private (sysop-viewable-only) comment about the user, whereas the Note was intended to be potentially public and hence there is already @-codes for the Note field.

If you find you still need/want the comment field, you can create the feature request at https://gitlab.synchro.net/main/sbbs/-/issues.
--
digital man

This Is Spinal Tap quote #45:
I don't really think the end can be assessed as of itself as being the end Norco, CA WX: 72.5øF, 16.0% humidity, 4 mph S wind, 0.00 inches rain/24hrs
---
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

Re: Feature Request
By: Digital Man to DesotoFireflite on Mon Feb 22 2021 11:37 am

It's certainly possible, but maybe consider using the "Note" field instead? The "comment" was intended to be a private (sysop-viewable-only) comment about the user, whereas the Note was intended to be potentially public and hence there is already @-codes for the Note field.

OK, I see that, and it's populated with the ip address of the users, that's why I wanted the comment field. I'll see if I can change my thinking process on this. Always, thanks

If you find you still need/want the comment field, you can create the feature request at https://gitlab.synchro.net/main/sbbs/-/issues. -- digital man

ok

SysOp: C.G. Learn, AKA: DesotoFireflite
Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
Valhalla II! - (GAP) - bbs.valhallabbs.com:24
Valhalla III! - (RemoteAccess) - bbs.valhallabbs.com:5023
Valhalla Home Services Web! - http://bbs.valhallabbs.com
A Gamers Paradise - Over 150 Registered Online Game Doors!

Home Of Odin's Maze Game Server!
Come Play Trade Wars On Valhalla's T.W.G.S!

--- Old farts never die! They just smell that way...
þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net

Re: Feature Request
By: DesotoFireflite to Digital Man on Tue Feb 23 2021 03:19 pm

Re: Feature Request
By: Digital Man to DesotoFireflite on Mon Feb 22 2021 11:37 am

It's certainly possible, but maybe consider using the "Note" field instead? The "comment" was intended to be a private (sysop-viewable-only) comment about the user, whereas the Note was intended to be potentially public and hence there is already @-codes for the Note field.

OK, I see that, and it's populated with the ip address of the users, that's why I wanted the comment field. I'll see if I can change my thinking process on this. Always, thanks

It used to be used for the IPv4 address of the user, but it isn't any longer (hasn't been used for that purpose for a while now) the "Note" field is again avialable for whatever the sysop wants to use it for.
--
digital man

Synchronet "Real Fact" #115:
Synchronet v3.18b was released on September 20, 2020 (22 months after v3.17b) Norco, CA WX: 79.8øF, 16.0% humidity, 3 mph ESE wind, 0.00 inches rain/24hrs ---
þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net

I'd like a new feature please.

Thank you.

---
echicken
electronic chicken bbs - bbs.electronicchicken.com
---
þ Synchronet þ electronic chicken bbs - bbs.electronicchicken.com