1. Forum
  2. DOVE-Net
  3. Synchronet Discussion

  • Blocking

    From DesotoFireflite@VERT/VALHALLA to All on Wed Dec 14 11:55:39 2016
    Just to be sure I'm reading the Wiki correctly on Hacking and blocking, I want to verify some info.

    LoginAttemptDelay: 5000

    Time to wait for another login from same ip address if attempt failed

    LoginAttemptThrottle: 2000

    2 seconds added for each additional failed login attempt

    LoginAttemptHackThreshold: 4

    after 4 failed attempts, enter ip address in hack.log. Informational only

    LoginAttemptTempBanThreshold: 10

    Temp ban ip address if failed login 10 times

    LoginAttemptTempBanDuration: 30M

    Don't allow temp banned ip address for 30 minutes

    LoginAttemptFilterThreshold: 8

    If after 8 more failed logins, place ip address in ip.can for permanent ban
    from bbs. This is the one I don't understand, is it additional attempts or
    is this an either or, as I can permanently ban them or I can temp ban them
    using above settings, but not both?

    MaxConcurrentConnections: 2

    can only have 2 additional logins or attempts from same ip address at any one time, not counting a successful login for same ip address.



    SysOp: C.G. Learn, AKA: DesotoFireflite
    Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
    Valhalla II! - (GAP) - bbs.valhallabbs.com:24
    A Gamers Paradise - Over 150 Registered Online Game Doors!

  • From Digital Man@VERT to DesotoFireflite on Wed Dec 14 12:22:27 2016
    Re: Blocking
    By: DesotoFireflite to All on Wed Dec 14 2016 11:55 am

    Just to be sure I'm reading the Wiki correctly on Hacking and blocking, I want to verify some info.

    LoginAttemptDelay: 5000

    Time to wait for another login from same ip address if attempt failed

    Sort of. It's a delay before the server(s) responds with a "unsuccesful login" reponse. So if the client is waiting for the response, they'll have to wait 5 seconds per failure.

    LoginAttemptThrottle: 2000

    2 seconds added for each additional failed login attempt

    A 2 second delay (mulitiplied by the current number of consecutive unique failed login attempts from this client) before any authentication attempt. This is often called a backoff delay.

    LoginAttemptHackThreshold: 4

    after 4 failed attempts, enter ip address in hack.log. Informational only

    LoginAttemptTempBanThreshold: 10

    Temp ban ip address if failed login 10 times

    LoginAttemptTempBanDuration: 30M

    Don't allow temp banned ip address for 30 minutes

    LoginAttemptFilterThreshold: 8

    If after 8 more failed logins, place ip address in ip.can for permanent ban
    from bbs. This is the one I don't understand, is it additional attempts or
    is this an either or, as I can permanently ban them or I can temp ban them
    using above settings, but not both?

    MaxConcurrentConnections: 2

    can only have 2 additional logins or attempts from same ip address at any

    one time, not counting a successful login for same ip address.

    The rest is pretty much correct.

    digital man

    Synchronet "Real Fact" #8:
    Synchronet was originally intended as a replacement for WWIV BBS software. Norco, CA WX: 67.8øF, 61.0% humidity, 1 mph SSE wind, 0.00 inches rain/24hrs ---
    þ Synchronet þ Vertrauen þ Home of Synchronet þ telnet://vert.synchro.net
  • From DesotoFireflite@VERT/VALHALLA to Digital Man on Thu Dec 15 12:26:36 2016
    Re: Blocking
    By: Digital Man to DesotoFireflite on Wed Dec 14 2016 12:22 pm

    Time to wait for another login from same ip address if attempt failed

    Sort of. It's a delay before the server(s) responds with a "unsuccesful login" reponse. So if the client is waiting for the response, they'll have to wait 5 seconds per failure.

    LoginAttemptThrottle: 2000

    2 seconds added for each additional failed login attempt

    A 2 second delay (mulitiplied by the current number of consecutive unique failed login attempts from this client) before any authentication attempt. This is often called a backoff delay.

    LoginAttemptHackThreshold: 4

    after 4 failed attempts, enter ip address in hack.log. Informational
    only
    LoginAttemptTempBanThreshold: 10

    Temp ban ip address if failed login 10 times

    LoginAttemptTempBanDuration: 30M

    Don't allow temp banned ip address for 30 minutes

    LoginAttemptFilterThreshold: 8

    If after 8 more failed logins, place ip address in ip.can for
    permanent ban from bbs. This is the one I don't understand, is it
    additional attempts or is this an either or, as I can permanently ban
    them or I can temp ban them using above settings, but not both?

    MaxConcurrentConnections: 2

    can only have 2 additional logins or attempts from same ip address at
    any
    one time, not counting a successful login for same ip address.

    The rest is pretty much correct.

    digital man

    Awesome, Thanks. The one I was really concerned about was LoginAttemptFilterThreshold, and you answered my question. I thought it may be a either or propisition, bit it's nice to know it's in addition to the LoginAttemptTempBanThreshold and it works in conjunction with it. Thanks as always.


    SysOp: C.G. Learn, AKA: DesotoFireflite
    Valhalla Home Services! - (Synchronet) - bbs.valhallabbs.com
    Valhalla II! - (GAP) - bbs.valhallabbs.com:24
    A Gamers Paradise - Over 150 Registered Online Game Doors!

    --- Don't You Know, Can't You See, Don't You Understand!
    þ Synchronet þ Valhalla Home Services þ USA þ http://valhalla.synchro.net