1. Forum
  2. FidoNet
  3. SYNC SYSOPS

  • cloudflare

    From Rick Smith@1:105/81 to echicken on Tue Mar 7 15:32:06 2023
    Hello echicken!

    Monday March 06 2023 03:38, you wrote to me:

    Re: cloudflare
    By: Rick Smith to echicken on Sun Mar 05 2023 07:29:18

    Ports supported by Cloudflare, but with caching disabled

    as I mentioned though I have their proxying turned off for
    wh2bbs.us and it allows 2321 for telnet and 24555 for binkp, so I
    wonder if I change to one of those https ports for ftelnet wss?

    So I moved away from cloudflare and it fixed most of my issues, I am not ssl anymore but things work... Maybe just not meant to be ssl


    Regards,

    Rick

    ... BBSing is terminal
    --- GoldED+/LNX 1.1.5-b20220504
    * Origin: Awesome Net- Oregon FTN Hub - www.awesomenet.us (1:105/81)
  • From echicken@1:103/705 to Rick Smith on Wed Mar 8 00:10:45 2023
    Re: cloudflare
    By: Rick Smith to echicken on Tue Mar 07 2023 15:32:06

    So I moved away from cloudflare and it fixed most of my issues, I am not ssl anymore but things work... Maybe just not meant to be ssl

    Glad to hear it's working, but don't give up. Check out 'letsyncrypt' on the wiki. Free and pretty straightforward way to get a cert and secure your site.

    ---
    echicken
    electronic chicken bbs - bbs.electronicchicken.com
    ---
    þ Synchronet þ electronic chicken bbs - bbs.electronicchicken.com
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From poindexter FORTRAN@1:103/705 to Rick Smith on Tue Mar 7 18:08:49 2023
    Re: cloudflare
    By: Rick Smith to echicken on Tue Mar 07 2023 03:32 pm

    So I moved away from cloudflare and it fixed most of my issues, I am not ssl anymore but things work... Maybe just not meant to be ssl

    There's that voice in the back of my head that wonders why bother with encryption on BBSes. The platform is notoriously insecure, it runs on insecure protocols by default, and so on...

    Then, someone configures all of their message bases to allow crawlers access from a web interface, and any attempt at privacy you make goes out the door.

    I'd love it if they made a SSL-enabled telnet, where you could see a matrix screen, log in, create a new user and so on just like you do in a cleartext telnet session. SSH works, but you miss the logon visuals and the new user process is a challenge.
    ---
    þ Synchronet þ .: realitycheckbbs.org :: scientia potentia est :.
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Digital Man@1:103/705 to poindexter FORTRAN on Tue Mar 7 20:21:41 2023
    Re: cloudflare
    By: poindexter FORTRAN to Rick Smith on Tue Mar 07 2023 06:08 pm

    I'd love it if they made a SSL-enabled telnet, where you could see a matrix screen, log in, create a new user and so on just like you do in a cleartext telnet session. SSH works, but you miss the logon visuals and the new user process is a challenge.

    "telnets" (Telnet over TLS) is a thing. Synchronet doesn't support it, but it is on the todo list.
    --
    digital man (rob)

    Breaking Bad quote #24:
    If I had to guess, I'd say that [Tortuga] is Spanish for asshole. - Hank
    Norco, CA WX: 48.5øF, 63.0% humidity, 8 mph SE wind, 0.00 inches rain/24hrs
    --- SBBSecho 3.20-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From echicken@1:103/705 to poindexter FORTRAN on Wed Mar 8 05:04:45 2023
    Re: cloudflare
    By: poindexter FORTRAN to Rick Smith on Tue Mar 07 2023 18:08:49

    There's that voice in the back of my head that wonders why bother with encryption on BBSes. The platform is notoriously insecure, it runs on insecure protocols by default, and so on...

    It secures the hop between you and the BBS, which is better than nothing. The rest depends on exact usage scenarios.

    I connect to my BBS using SSH for no particular reason. I don't care about obscuring that traffic in and of itself. If somebody *was* monitoring that traffic, I'd be concerned for other reasons, like wtf are they doing on my network.

    Then, someone configures all of their message bases to allow crawlers access from a web interface, and any attempt at privacy you make goes out the door.

    When message networks are in the mix, forget about privacy. You're putting stuff out there, and anyone could do anything with it. It's often not even against the rules of a net to put it on the web. People have gotten mad at me in the past about 'violating their privacy' in this way, and it always leaves me stunned at the assumption. There's a bizarre misconception among BBSers that this medium is somehow private and underground, when it's at best obscure.

    I'd love it if they made a SSL-enabled telnet, where you could see a matrix screen, log in, create a new user and so on just like you do in a cleartext telnet session. SSH works, but you miss the logon visuals and the new user process is a challenge.

    It exists, but is very rarely implemented - because SSH - but you have a point.

    I think it's possible to send a pre-login banner to an SSH client, but not every server does this and probably not every client supports it. Could be a thing to explore though.

    ---
    echicken
    electronic chicken bbs - bbs.electronicchicken.com
    ---
    þ Synchronet þ electronic chicken bbs - bbs.electronicchicken.com
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From poindexter FORTRAN@1:103/705 to Digital Man on Wed Mar 8 06:32:00 2023
    Digital Man wrote to poindexter FORTRAN <=-

    "telnets" (Telnet over TLS) is a thing. Synchronet doesn't support it,
    but it is on the todo list. --

    That's great; there's need to be client support, too, but I like the
    idea of being able to duplicate the matrix/ANSI art elements of logging
    in over telnet, but doing it more securely.



    ... Imagine the music as a set of disconnected events
    --- MultiMail/Win v0.52
    þ Synchronet þ .: realitycheckbbs.org :: scientia potentia est :.
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From Digital Man@1:103/705 to poindexter FORTRAN on Thu Mar 9 10:17:37 2023
    Re: Re: cloudflare
    By: poindexter FORTRAN to Digital Man on Wed Mar 08 2023 06:32 am

    Digital Man wrote to poindexter FORTRAN <=-

    "telnets" (Telnet over TLS) is a thing. Synchronet doesn't support it, but it is on the todo list. --

    That's great; there's need to be client support, too, but I like the
    idea of being able to duplicate the matrix/ANSI art elements of logging
    in over telnet, but doing it more securely.

    SyncTERM already supports telnets. <shrug>
    --
    digital man (rob)

    Synchronet "Real Fact" #117:
    Synchronet v1b r0 (for MS-DOS) was released on September 25, 1992
    Norco, CA WX: 61.2øF, 54.0% humidity, 0 mph NE wind, 0.00 inches rain/24hrs
    --- SBBSecho 3.20-Linux
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)
  • From poindexter FORTRAN@1:103/705 to Digital Man on Sat Mar 11 08:43:00 2023
    Digital Man wrote to poindexter FORTRAN <=-

    SyncTERM already supports telnets. <shrug>

    I did not know that - cool!



    ... Back in the stream that feeds the ocean that feeds the stream.
    --- MultiMail/Win v0.52
    þ Synchronet þ .: realitycheckbbs.org :: scientia potentia est :.
    * Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)