pmdBadIP v1.0 The IP Address Banning Utility for Wildcat! 5.

DISCLAIMER:  

             I hope this program works on your system. <grin>  If it doesn't, please
             send me any information you can and I'll try and get it fixed as soon as I
             can.  I have tested it on Windows 95 and Windows NT v4.0 and haven't
             experienced anything out of the ordinary.  However I will not be held 
             responsible for any damage done to your software or hardware if some
             demon takes over this software and it goes haywire.  There isn't anything
             in this software that mucks with user or file databases, so I can't see it
             doing any such damage anyhow, afterall I run it on my system (telnet:
             pmd.parrett.net).  If this program activates nuclear weapons in the U.S or
             Russia and causes a Nuclear War, I will take total responsibility.


Quick and Easy Setup:

1.  Unzip the files "bad ip add.wcx" and "Pmdip.wcx" to your Wildcat! 5 home directory.

2.  Add the menu choice for "bad ip add.wcx" to your sysop menu.  I use 'I' for this.

3.  Add the command to the logon.wcx file:
    If you copy the "logon.wcx" file to your Wildcat! 5 home directory the program will
    run everytime someone logs in.  If you have a special logon.wcx file that you do not
    want to over-write for whatever reason (and I know that there are a lot of reasons),
    simply put the command: run "pmdip" (with quotes) at the beginning of your logon.wcc file
    and re-compile it using the Wildcat! 5 compiler.  The logon.wcx that is included in this
    distribution is the standard login sequence included in the WC5 distribution with the
    above mentioned command added to it.

4.  Login to the system with the sysop account, go to the sysop menu and run the menu
    function that you assigned to "bad ip add.wcx" and add the IP address or domain you
    want to ban.  It will now kick off anyone that logs in from that IP or Domain name.

5.  It seems if you just use the simple add command to add an IP/Domain for the first time it
    doesn't add it to the first line of the file, but the second line in some situations.  
    This is undesirable since the Unregistered version only checks the first line of the file.
    To fix this either add the first IP/Domain using the 'EDIT' command or edit the file with
    your text editor.  I'm looking into this behavior and hope to have a fix soon.

Some things to consider:

When adding an IP address, you can ban a specific IP Address, such as 204.70.128.1, this
will ban anyone from just 204.70.128.1 from your site.  If you want to ban all IP's from
204.70.128.1 to 204.70.128.255 then just put in 204.70.128.  If you want to ban an entire
Domain Name put the domain name in the field, such as mydomain.com.  If you want to only
ban a specific machine from a site put in the machine name as well, such as
machine.mydomain.com.  This will only ban that machine name from your system and anyone
coming in from mydomain.com would still be able to log in.  There might be instances when
you accidentally ban a Domain that you had not intended to do so by using the above methods.
If you come across such a situation, please let me know so I can try and find a way around
it in the code.  If your system doesn't do a reverse dns lookup it may not work with Domain
Names opposed to IP Addresses.  This program checks the security level of the person logging
in, if it is "SYSOP" then it will not check the IP Address against the Bad IP data file.  This
is just so you don't accidentally lock yourself out if your testing something.  Test this
program using a test account that you have setup.  The "SYSOP" security profile must be typed
exactly as it spelled above in the Profiles section of wcConfig.  It is actually testing for
an exact match of this field, if doesn't match, it will not by-pass the IP Check for that
security level.  I am thinking of making some changes to that in the future for people with
different setups.

If something doesn't make sense in the program, or this documentation, please write me email
and tell me about it.  I'm not a big shareware author, I write several applications for my
own use, but not many for the general public, meaning my documentation may really stink, but
I understand it!  I did write a program when I was running a WC4 system that was distributed
quite a bit, it was a last twenty callers program.  I released it as freeware.  Somebody 
thought it was so good, they de-compiled it, changed a few lines, re-released it and charged
people for it.  Needless to say I felt a bit disturbed.  If you have any comments or 
suggestions for this program I really want to hear them.  Send all comments to me on my BBS
at par@pmd.parrett.net.  I have an e-mail auto-response set up at info@pmd.parrett.net.

This program only checks for telnet logins, it doesn't restrict HTTP, wcNavigator, or FTP 
logins at this time.  I'm checking on ways to implement these as well.

Registration Stuff:

This copy of pmdBadIP is limited to banning only the first IP or Domain in the list.  The list
can be as long as you want (there may be some limit to file length, haven't seen one yet), but
it will only take the first entry.  All the functions besides that work just fine.   When/If
you register, your BBS name will be placed in the [BBS] field in the logon screen (below) and
it will not just check the first IP/Domain in the list.  I plan on implementing new features
and/or bug fixes to this as they are needed, all upgrades will be free of course.  New
released versions will be available from my system (PMD BBS) and information on these will
be placed in the auto-response e-mail at info@pmd.parrett.net.  Registration is $5.00 in U.S.
funds only, check or money order, sending cash through the mail isn't a good idea.  I may be
able to process a credit card order soon, check the auto-response mailer for more info.  Send
registration to:

Bryan Parsons
2441 Pipestone Rd.
Benton Harbor, MI 49022

Include the following:

A Check or Money Order
BBS Name  (will be placed in [BBS] field)
BBS Telnet Address
BBS Phone Number
Your Name and Address
Your E-Mail Address
Your Phone Number (optional)


Registered versions will be e-mailed to you.  Other arrangements can be made if e-mail is 
unavailable, telnet to pmd.parrett.net and leave a message to the sysop.  Sorry, snail mail
is not an option for distribution of the registered version.  

If your a non-profit organization or educational institution, registration is free.


Screen Shots:

Normal Logon Screen after user enters name and password:
--------------------------------------------------------

Validating IP Address...

Welcome to [BBS] from localhost [127.0.0.1]

Good morning Par, you are caller number 4,270.


Logon Screen of Banned IP Address:
----------------------------------

Validating IP Address...
Your IP Address appears to be banned from this system, sorry.
It may or may not be allowed at a later date.
<click>


Sysop Edit Bad IP Address Menu:
-------------------------------

Enter the Offending IP Address, Name or Domain.

There a several ways to ban an IP or domain:

1.  Enter the domain name you want to ban: mydomain.com
    This will ban anyone from mydomain.com from your system.
2.  Enter the IP Address you want to ban:  204.70.128.1
    This will ban anyone from just 204.70.128.1 from your system.
3.  Enter the IP Address of an entire domain: 204.70.128.
    Notice there is nothing placed in the last field, this
    bans anyone with 204.70.128 in their IP from your site.
4.  Just typing the word 'PRINT' w/out the quotes will print the
    list of Bad IP's you have so far.
5.  Just typing the word 'EDIT' w/out the quotes will allow you
    manually edit the list.
6.  Just typing 'LOG' w/out the quotes will allow you to view
    the Bad IP Login Logfile.

[                                                                      ]


pmdBadIP written by:  Bryan Parsons

E-Mail:  par@pmd.parrett.net
telnet:  pmd.parrett.net
WWWW:    http://pmd.parrett.net

