I've been getting hit by bots on Lunatics. Never seen it this bad and
it's getting a bit ridiculous. I've blacklisted some countries but I'm still getting hit pretty hard.
What are sysops using to combat this? What are my options besides
changing my port. (i'not using port 23). What mods or programs are you
all using?
I've been getting hit by bots on Lunatics. Never seen it
this bad and it's getting a bit ridiculous. I've
blacklisted some countries but I'm still getting hit
pretty hard.
What are sysops using to combat this? What are my
options besides changing my port. (i'not using port 23).
What mods or programs are you all using?
I saw Phenom Productions mentioned, I haven't used their mods but
there's some neat stuff there for sure. ThreatSentry is always eye catching, with the geo-location on the world map. BotCheck seems to be
in use on loads of boards. https://www.phenomprod.com/Mods
On my own board, I implemented some simple bot detection into a 'telnet ringdown' server I use. It watches for automated login attempts, based
on a list of keywords, and temporarily bans IPs. It's worked pretty
well at greatly reducing the number of bots that reach the login
sequence of the BBS, while being invisible to callers. https://github.com/akacastor/ringdown
A lot of boards seem to use a system that requires users to press Escape twice after connecting, before passing them to the BBS. From what I gather it works quite well.
I saw Phenom Productions mentioned, I haven't used their mods but
there's some neat stuff there for sure. ThreatSentry is always eye
I've been getting hit by bots on Lunatics. Never seen it this bad and
it's getting a bit ridiculous. I've blacklisted some countries but I'm still getting hit pretty hard.
What are sysops using to combat this? What are my options besides
changing my port. (i'not using port 23). What mods or programs are you
all using?
What are sysops using to combat this? What are my options besides changing my port. (i'not using port 23). What mods or programs are you all using?
I've been getting hit by bots on Lunatics. Never seen it this bad and
it's getting a bit ridiculous. I've blacklisted some countries but I'm What are sysops using to combat this? What are my options besides
changing my port. (i'not using port 23). What mods or programs are you
I've been getting hit by bots on Lunatics. Never seen it this bad and it's getting a bit ridiculous. I've blacklisted some countries butI'm
What are sysops using to combat this? What are my options besides changing my port. (i'not using port 23). What mods or programs areyou
What I did was, I switched to that "Matrix menu" as it is called and
I changed the prompts to read "If you are human, press 1" - This
forces someone to actually press 1 before they are taken to the
actual logon screen. Bots still hit all the time but they never get anywhere.
What are sysops using to combat this? What are my options besides
changing my port. (i'not using port 23). What mods or programs are you
all using?
I saw Phenom Productions mentioned, I haven't used their mods but
there's some neat stuff there for sure. ThreatSentry is always eye catching, with the geo-location on the world map. BotCheck seems to be
in use on loads of boards. https://www.phenomprod.com/Mods
A lot of boards seem to use a system that requires users to press Escape twice after connecting, before passing them to the BBS. From what I gather it works quite well.
I saw Phenom Productions mentioned, I haven't used their mods but
there's some neat stuff there for sure. ThreatSentry is always eye catching, with the geo-location on the world map. BotCheck seems to be
in use on loads of boards. https://www.phenomprod.com/Mods
That IS the ESC TWICE TO LOGIN. It was a separate instance, but now included with Msystic.
I'm running port 23 and no bot check and seemingly doing OK... I have blocked (from memory) about 3 countries ... but asides that I just rely
on the auto blocker in Mystic that kicks in after the third attempt by a bot to connect and this is within the time allowed for that triggers an auto-ban.
I also use haproxy in front of my mail servers (for mail clients), together with ssl certs so a connection needs to use the a SNI enabled client to connect to the appropriate server - an IP address wont make
it. This is pretty effective.
What I did was, I switched to that "Matrix menu" as it is called
and I changed the prompts to read "If you are human, press 1"
- This forces someone to actually press 1 before they are
taken to the actual logon screen. Bots still hit all the time
but they never get anywhere.
Change your port if you can.
I don't seem to have the auto blocker in my version of Mystic. I'm using A48. I have blocked some countries but like I said it's been pretty bad lately.
I don't seem to have the auto blocker in my version of Mystic. I'm
using A48. I have blocked some countries but like I said it's been
pretty bad lately.
That IS the ESC TWICE TO LOGIN. It was a separate instance, but now included with Msystic.
It is? Is it a MPL?
I'm not using the standard port 23 for telnet I use 2333. I don't relly want to change ports idf i don't have to.
That is correct. You had to download, compile, and setup before, but now it is included within the .rar package.
from the WHATS NEW .TXT :
By request: Added a "botcheck.mps" which is a small MPL script to force the user to press escape twice immediately after connecting. Rename
to connect.mps and compile in your scripts directory (assuming you
are not already using a connect script) if you wish to use it.
--
I don't seem to have the auto blocker in my version of Mystic. I'm us A48. I have blocked some countries but like I said it's been pretty b lately.
Hmm perhaps try the A49 pre-alpha version. I am not at home at the
moment but can look when I get home if you don't beat me to it.
Nice, didn't know that.
Sysop: | tracker1 |
---|---|
Location: | Phoenix, AZ |
Users: | 54 |
Nodes: | 25 (0 / 25) |
Uptime: | 180:02:00 |
Calls: | 367 |
Files: | 1,364 |
Messages: | 36,299 |