Subj : Re: Bug in Renegade's Renemail
To   : Sean Dennis
From : Nick Andre
Date : Tue Jun 26 2018 03:09 pm

On 26 Jun 18  13:13:15, Sean Dennis said the following to Nick Andre:

SD>  NA> I'm using the Y2KA2 source, with a ton of my own modifications.
SD> 
SD> I think that's the source code I have.  I don't remember where I put it now
SD> but I'll have to dig it up and see.  I admit, would be fun to hack at Reneg
SD> a bit just for S&G.

Off the top of my head, the two fundimental modifications I made were to 
remove the message-database limitations and remove some new-user questions 
I didn't feel like asking callers... but the most interesting change was a 
few lines of code to add a hook to catch script kiddies. I had no choice; 
my network was getting totally slammed with rogue Telnet traffic but I did not
want to inconvenience BBS callers by having to call on a different port.

If a non-ANSI user calls here, I know that 99% of the time its a script-kid. 
So I added a CAPTCHA; meaning, type the phrase you see. If you answer wrong, 
your IP address is blacklisted in the NET2BBS "kill" file. A blacklisted 
system is trapped and disconnected before the BBS loads. I write a 
seperate process that resets the kill file once a week in the case of a 
false-positive.

That has significantly reduced the amount of rogue Telnet traffic here and 
because the BBS does not load on blacklisted connections, the daily stats and 
logs are much more accurate.

Nick

--- Renegade vY2Ka2
 * Origin: Joey, do you like movies about gladiators? (1:229/426)

.