1. Forum
  2. FidoNet
  3. SYNC SYSOPS

  • BOTS AND PORTS

    From Daryl Stout@1:19/33 to ALL on Thu Apr 11 11:41:00 2019
    After being slammed by bots on both the SSH and QOTD ports, I ended up changing the SSH one to a non-conventional value. I discovered with
    logging on via SyncTerm, the CAPTCHA logon sequence setup (from Lord
    Blackfair) is bypassed, going right into the BBS...but the Sysop
    Password is still asked for.

    I had to disable the QOTD option, as I was getting slammed even worse
    by bots...yet folks, can logon to the BBS and still view the
    Automessage.

    I may eventually set a non-conventional port for the QOTD deal, but
    right now, don't see the need to...all of the other "services" are
    enabled.

    Daryl

    ===
    þ OLX 1.53 þ Make Friends With The Sysop: Page Them At 3am. NOT!!
    --- SBBSecho 3.07-Win32
    * Origin: FIDONet: The Thunderbolt BBS - tbolt.synchro.net (1:19/33)
  • From Mike Powell@1:103/705 to DARYL STOUT on Thu Apr 11 17:23:00 2019
    I may eventually set a non-conventional port for the QOTD deal, but
    right now, don't see the need to...all of the other "services" are
    enabled.

    What is QOTD?

    ---
    þ SLMR 2.1a þ Did you expect mere proof to sway my opinion?
    þ Synchronet þ CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Digital Man@1:103/705 to Mike Powell on Thu Apr 11 17:21:12 2019
    Re: BOTS AND PORTS
    By: Mike Powell to DARYL STOUT on Thu Apr 11 2019 05:23 pm

    I may eventually set a non-conventional port for the QOTD deal, but right now, don't see the need to...all of the other "services" are enabled.

    What is QOTD?

    http://bfy.tw/Lz0y

    digital man

    This Is Spinal Tap quote #24:
    David St. Hubbins: You're a haughty one, saucy Jack.
    Norco, CA WX: 67.0øF, 32.0% humidity, 2 mph NNW wind, 0.00 inches rain/24hrs --- SBBSecho 3.07-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Daryl Stout@1:19/33 to MIKE POWELL on Thu Apr 11 22:19:00 2019
    I may eventually set a non-conventional port for the QOTD deal, but
    right now, don't see the need to...all of the other "services" are
    enabled.

    What is QOTD?

    Quote Of The Day, or the Auto-Message. The secure socket handle (SSH)
    logons were also getting slammed by bots. So, I've made them both a non-conventional value. Verified Users In Good Standing can Email
    Feedback To Sysop if they want the data.

    Daryl

    ===
    þ OLX 1.53 þ Married by a judge; should've asked for a jury. -Groucho
    --- SBBSecho 3.07-Win32
    * Origin: FIDONet: The Thunderbolt BBS - tbolt.synchro.net (1:19/33)
  • From Denn@1:103/705 to Daryl Stout on Thu Apr 11 23:28:23 2019
    Re: BOTS AND PORTS
    By: Daryl Stout to ALL on Thu Apr 11 2019 11:41 am

    After being slammed by bots on both the SSH and QOTD ports, I ended up changing the SSH one to a non-conventional value. I discovered with
    I had to disable the QOTD option, as I was getting slammed even worse
    by bots...yet folks, can logon to the BBS and still view the


    I also got slamed on the QOTD port and had to disable it.
    was qoing to mess around with QOTD but now I shut it down.

    ---
    þ Synchronet þ outwestbbs.com - the Outwest BBS
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Va7aqd@1:103/705 to Denn on Fri Apr 12 09:52:51 2019
    Re: BOTS AND PORTS
    By: Denn to Daryl Stout on Thu Apr 11 2019 11:28 pm

    I also got slamed on the QOTD port and had to disable it.
    was qoing to mess around with QOTD but now I shut it down.

    That's really unfortunate (though, I am not sure I fully understand the value of the QOTD service yet). Was
    rate limiting not an option in your case?

    ---
    þ Synchronet þ VA7AQD's Tavern - bbs.isurf.ca
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Daryl Stout@1:19/33 to DENN on Fri Apr 12 22:12:00 2019
    I also got slamed on the QOTD port and had to disable it.
    was qoing to mess around with QOTD but now I shut it down.

    I was getting slammed on QOTD and SSH, so I changed both to a "non-conventional value". Verified Users In Good Standing can Email
    Feedback To Sysop if they want the data.

    One can also view the AutoMessage/Quote Of The Day at the BBS's Main
    Menu.

    As for SSH logins, I discovered with using the SyncTerm Telnet client,
    it BYPASSES the CAPTCHA sequence, but it will ask for a Sysop password,
    if the user logging on to the BBS has Sysop access (right now, that's
    just myself).

    If I logon via telnet with SyncTerm, the ALT-L macro enters my name, password, and the Sysop password...once I get past the CAPTCHA sequence.

    Daryl

    ===
    þ OLX 1.53 þ Microsoft Tech Support For Legacy Windows?? FAT Chance!!
    --- SBBSecho 3.07-Win32
    * Origin: FIDONet: The Thunderbolt BBS - tbolt.synchro.net (1:19/33)
  • From Denn@1:103/705 to Va7aqd on Fri Apr 12 22:08:55 2019
    Re: BOTS AND PORTS
    By: Va7aqd to Denn on Fri Apr 12 2019 09:52 am

    I also got slamed on the QOTD port and had to disable it.
    was qoing to mess around with QOTD but now I shut it down.

    That's really unfortunate (though, I am not sure I fully understand the value of the QOTD service yet). Was rate limiting not an option in your case?

    I don't know, I hadn't even looked at the .ini or the wiki to set it up.
    the QOTD port got hit so hard it took the BBS offline "even though I have DDOS set up"
    It only hit the BBS computer and only on the QOTD port.

    ---
    þ Synchronet þ outwestbbs.com - the Outwest BBS
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Va7aqd@1:103/705 to Denn on Sat Apr 13 16:20:21 2019
    Re: BOTS AND PORTS
    By: Denn to Va7aqd on Fri Apr 12 2019 10:08 pm

    I don't know, I hadn't even looked at the .ini or the wiki to set it up.
    the QOTD port got hit so hard it took the BBS offline "even though I have DDOS set up"
    It only hit the BBS computer and only on the QOTD port.

    Nasty... was it distributed?

    ---
    þ Synchronet þ VA7AQD's Tavern - bbs.isurf.ca
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Daryl Stout@1:19/33 to DENN on Sat Apr 13 20:03:00 2019
    Denn,

    It only hit the BBS computer and only on the QOTD port.

    I was getting slammed on both the QOTD and SSH ports. So, I changed
    them to non-conventional values. Verified Users in good standing can
    Email Feedback To Sysop if they want the info.

    I also noted that with the CAPTCHA utility, originally done by Lord Blackfair, with an SSH logon with SyncTerm, the CAPTCHA is bypassed.

    I figured out how to modify the original script, and I made different
    copies of it, switching out every 5 minutes around the clock, to a new 6
    digit random code, that I got from a freeware random number generator
    program for Windows. I just had to be sure I had the identical data in
    all 3 places. With it swapping out every 5 minutes, that gives more the
    look of "randomness". I use batchfiles along with the Windows 7 Task
    Scheduler to swap out the files around the clock. If I had to, I could
    make additional files, etc. to make change every minute.

    Plus, I *LIMIT* the amount of concurrent connections from the same IP
    without an actual BBS logon to ONE.

    Daryl

    ===
    þ OLX 1.53 þ Never have children...only grandchildren. -Unknown
    --- SBBSecho 3.07-Win32
    * Origin: FIDONet: The Thunderbolt BBS - tbolt.synchro.net (1:19/33)
  • From Daryl Stout@1:19/33 to VA7AQD on Sat Apr 13 19:52:00 2019
    It only hit the BBS computer and only on the QOTD port.

    Nasty... was it distributed?

    It hit my system.

    Daryl, WX4QZ

    ===
    þ OLX 1.53 þ Never marry a tennis player; to them, love means nothing.
    --- SBBSecho 3.07-Win32
    * Origin: FIDONet: The Thunderbolt BBS - tbolt.synchro.net (1:19/33)