Subj : blocking IPs  was:FidoGaz
To   : NANCY BACKUS
From : Mike Miller
Date : Fri Jul 27 2018 01:25:02

   Hello NANCY!

18 Oct 16 11:38, you wrote to me:

 NB> -=> Quoting Mike Miller to Daryl Stout on 10-08-16  01:54 <=-

 DS>>   Other Sysops have changed their telnet ports as well...but I'm
 DS>> not sure how other telnet BBS software is handling these bots.

 MM>> I set up a script that blacklists any IP that connects to a port
 MM>> more than 5 times in a couple minutes.  iptables blocks the
 MM>> address for a few hours.  If it continues trying after 3
 MM>> temporary blocks, the IP is permanently blocked.

 NB> That can backfire on a legitimate caller, though... If my telnet
 NB> "dialer" times out on me, I will retry a time or two, possibly within
 NB> that couple of minutes.... certainly again within the next hour or
 NB> two, just in case things are just being slow... I think in some cases,
 NB> it may actually connect but so close to the timeout that I couldn't
 NB> tell for sure.... I'm using a DOS telnet client, Conex....

There may be fringe cases, but I believe I have it tweaked enough that 
something like that won't be caught.

And I can always whitelist certain IP addresses.

Mike


.... Who is General Failure, and *WHY* is he reading my disk?
--- GoldED+/LNX 1.1.5-b20160322
 * Origin: War Ensemble - warensemble.com - Appleton, WI (1:154/30)

.