Just a sample of the Echomail archive
[ << oldest | < older | list | newer > | newest >> ]
| Message 15793 |
| Christian Sacks to Scott Street |
| Re: Linux, MIS, and Automatic IP Blockin |
| 02 Jul 24 16:59:18 |
TID: Mystic BBS 1.12 A49 MSGID: 2:250/5 71729cb9 REPLY: 1:266/625 78a8d8fb TZUTC: 0100 On 01 Jul 2024, Scott Street said the following... SS> So the basic flow of this process. SS> 1) MIS decides to block a given IP because it violates the connection SS> attempt rules set in the individual server configuration table. SS> 2) MIS executes the "IP Blocked" event, which adds the IP to the list SS> 3) Every 5 mins, the cron job runs and adds all the queued IPs to the SS> iptables input filter, and after the new list of IPs have been added, SS> makes them persistent across restarts with netfilter-persistent. SS> SS> You can track the activity of this process using your system log - SS> journalctl for me, I'm on Debian 12 (bookworm). SS> SS> I hope you find this useful, especially those of you running some SS> flavor of Linux. Also: some filename and directories have been changed SS> from my actual to simplify this message. I think on the whole this is a nice approach, however what happens when Mystic accidentally blacklists your own IP, or it'self? Then you have iptables blocking you out and you won't be able to get back in =) Can you modify that to only block on the ports you have for telnet/ssh to the BBS (assuming SSH to the bbs is different to SSH to the cli). ... Redundant book title: DOS For Dummies --- Mystic BBS v1.12 A49 2023/04/30 (Linux/64) * Origin: thE qUAntUm wOrmhOlE, rAmsgAtE, uK. bbs.erb.pw (2:250/5) SEEN-BY: 1/120 10/0 1 18/0 25/0 21 50/109 90/1 102/401 103/1 705 105/81 SEEN-BY: 106/201 116/116 123/0 25 180 200 525 755 1185 3001 124/5016 SEEN-BY: 128/260 129/305 135/115 153/757 7715 154/10 214/22 218/0 SEEN-BY: 218/1 215 601 700 720 810 840 850 860 870 880 930 940 220/6 SEEN-BY: 221/1 6 222/2 226/30 227/114 229/110 111 112 113 206 275 SEEN-BY: 229/300 307 317 400 426 428 470 550 664 700 240/1120 250/0 SEEN-BY: 250/1 2 3 4 5 6 7 8 11 13 14 15 263/0 5 266/512 275/1000 SEEN-BY: 280/464 282/1038 291/111 292/854 301/1 113 708 320/219 322/757 SEEN-BY: 335/364 341/66 342/200 396/45 460/58 467/4 888 633/280 712/848 SEEN-BY: 712/1321 3634/0 12 27 56 57 58 119 5000/111 5001/100 5005/49 SEEN-BY: 5020/715 830 1042 4441 5030/49 5053/51 5054/8 5061/133 5075/35 SEEN-BY: 5075/128 5083/1 444 PATH: 250/5 1 3634/12 5020/1042 301/1 218/700 229/426 |
[ << oldest | < older | list | newer > | newest >> ]