Message Area
Casually read the BBS message area using an easy to use interface. Messages are categorized exactly like they are on the BBS. You may post new messages or reply to existing messages!

You are not logged in. Login here for full access privileges.

Previous Message | Next Message | Back to The Linux/FreeBSD MBSE BBS Suppo...  <--  <--- Return to Home Page
   Networked Database  The Linux/FreeBSD MBSE BBS Suppo...   [543 / 554] RSS
 From   To   Subject   Date/Time 
Message   James Digriz    All   System issues on bbs.dragonsweb.org   April 5, 2019
 11:48 AM *   

I'm crossposting this from an othernet, and I'm also looking for any pointers
or app-specific rulesets for setting up snort on an MBSE host or its LAN. I'm
just getting back into snort, not sure if there are any MBSE specific rules,
but it appears this new openappID thingy may be of some use. 

I'm also going to aggregate all my hosts' blocklists and have some kind of 
rsync
 script to run from cron to keep them synced. As noted below, I'm using CSF to
generate them. I have fail2ban installed; not using it tho. Trying to keep
the performance impact in check. If anyone has any pointers setting all this 
up,
I'd appreciate it. Willing to share blocklists, etc. Or is there an echo for
this, maybe?
   
Thanks,
jbdigriz

...

Well, it happened again. A spambot managed to find the unpassworded newuser
login, and despite my having disabled email access for new users the last time
this happened, managed to start sending spam by using or forwarding ssh from
there, to port 25 on the localhost address. 

I've blocked IP's the bot was using, and some others that csf hadn't caught,
but to fix
this I'm going have to disable localhost's smtp access except for valid users.
Remains to be see how much is involved there. It's supposed to have already
been done, but apparently I missed something. 
 
So, if you experience any difficulty posting emails from, or sending to,
bbs.dragonsweb.org, that's the reason. The smtp server is turned off while I
modify the configuration and do some testing, till further notice. 

Sorry this happened, but I can't tell you how much I detest apologizing for
someone else being a jerk. 

jbdigriz

ps. it wouldn't have stopped this particular incident, but this is the kind of
thing that also has me seriously considering allowing telnet access through a
TLS tunnel. Only.  So, if you're running old systems and require telnet 
access,
you'll be wise to be able to do so from behind an stunnel or other TLSified
port on your linux or rpi "firewall", portmaster, etc. 

Also why everyone should be sure their netmail is working properly;-) 

    Greetings, James Digriz
    email: jbdigriz@bbs.dragonsweb.org

--- MBSE BBS v1.0.7.12 (GNU/Linux-x86_64)
 * Origin: DragonsWeb Labs BBS 1:123/755 (1:123/755)
  Show ANSI Codes | Hide BBCodes | Show Color Codes | Hide Encoding | Hide HTML Tags | Show Routing
Previous Message | Next Message | Back to The Linux/FreeBSD MBSE BBS Suppo...  <--  <--- Return to Home Page
VADV-PHP
Execution Time: 0.0681 seconds

If you experience any problems with this website or need help, contact the webmaster.
VADV-PHP Copyright © 2002-2024 Steve Winn, Aspect Technologies. All Rights Reserved.
Virtual Advanced Copyright © 1995-1997 Roland De Graaf.
 v2.0.140505

Warning: Unknown: open(c:\Sessions\sess_otjsergq3ndfvefc9lehpushn1, O_RDWR) failed: No such file or directory (2) in Unknown on line 0 Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (c:\Sessions) in Unknown on line 0 PHP Warning: session_start(): open(c:\Sessions\sess_otjsergq3ndfvefc9lehpushn1, O_RDWR) failed: No such file or directory (2) in D:\wc5\http\public\VADV\include\common.inc.php on line 45 PHP Warning: Unknown: open(c:\Sessions\sess_otjsergq3ndfvefc9lehpushn1, O_RDWR) failed: No such file or directory (2) in Unknown on line 0 PHP Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (c:\Sessions) in Unknown on line 0