Subj : Re: hackers
To   : Mewcenary
From : esc
Date : Sat Jan 07 2023 05:57 pm

 Me> TBH, nothing on the BBS side.  Just let the bots try and fail at doing
 Me> their thing.

I block countries and also let Mystic figure out its own allow/denylist - it works pretty well. Additionally I have a "press escape twice" thing as a frontend doing some sort of human detection. These things combined tend to work rather well for me.

 Me> I do a bit more on the home firewall side of things, however.  There are
 Me> various deny-lists and other tools that can prevent 'Known Bad' IPs from
 Me> getting as far as your BBS, and also heuristically block repeated
 Me> attempts.

My home firewall is closed, I host all my services which are open to the internet on cloud infrastructure. I have a healthy paranoia of letting people into my home firewall :) Even though a VLAN would probably work just fine, I still nevertheless prefer cloud hosting.

 Me> Defense in depth also means taking regular full backups, so in the event
 Me> of a successful hack, I can restore to something Known Good.

Yep, same. I take daily backups for a week, weeklies for a month, monthlies for a year, and yearlies.

--- Mystic BBS v1.12 A48 (Linux/64)
 * Origin: m O N T E R E Y b B S . c O M (21:4/173)

.