Subj : Re: fsxNet Feedback
To   : Warpslide
From : deon
Date : Mon May 10 2021 12:03 am

  Re: Re: fsxNet Feedback
  By: Warpslide to Avon on Sun May 09 2021 06:02 am

 Wa>  *** Quoting Avon from a message to All ***
 Av>> Security / Privacy ==================
 Av>> Binkp secure encryption for all hubs.
 Av>> Better privacy.
 Av>> SSH officially supported.
 Av>> SSH for specific echos.

 Wa> There would probably need to be more discussion around this.  I'm all for  adding privacy/encryption to things, but it's only as
 Wa> strong as its weakest  link.  I'm not sure echomail was ever designed with privacy in mind.

 Wa> Sure there could be a policy put in place that FSX_SECURE is only to be made  available over SSH connections, e.g: s20OS on Mystic,
 Wa> which would mean my Telegard system couldn't carry it it all, but then how can you enforce that  it's only distributed over secure
 Wa> bink connections?

There is actually (I think) a very easy way to secure "the network", and I believe that will work for any BBS (new and old) that is using an IP transport. Which is something like ZeroTier. I have it on my BBS, and an othernet has it active between the hubs (my hub being binkd/hpt, and the other hubs being mystic.)

But security/privacy comes with an extra level of maintenance - which is, as you say, only as secure/private as the weakest link. So while I think we can offer it, its all in, if you want to have the comfort of it being it.

(The other benefit of something like ZeroTier, is it, by implementation knocks out all the script kiddies polling and hammering your ports - but then you add an extra level configuration required if you want a wandering visitor to visit your BBS.)

....лоеп

.... Be wary of strong drink.  It can make you shoot at tax collectors and miss
--- SBBSecho 3.14-Linux
 * Origin: I'm playing with ANSI+videotex - wanna play too? (21:2/116)

.