Subj : BBBS Online
To   : Kim Heino
From : mark lewis
Date : Mon Aug 06 2018 03:33 pm


 On 2018 Aug 05 11:09:00, you wrote to me:

 >>> If you want to limit connections (block extra connections from same
 >>> IP), you can configure your firewall to do that. At least Shorewall
 >>> can do that.

 >> so what if the guy is using your web server and his mailer attempts a
 >> mail transfer? that won't work if you block in the firewall based on IP
 >> only...

 KH> Firewalls can block per IP per service. So web server / telnet / mail
 KH> are counted on different quotas.

sorry, no... that's an erroneous assumption... the firewall i use doesn't have 
quotas and an IP block is total... not per port...

 KH> Native blocking support inside BBBS(D) would be better,

absolutely...

 KH> but with firewall config you can do it right now, without waiting for
 KH> update.

in some cases... i don't see folks replacing their existing firewall solutions 
with shorewall or similar, though... i know we won't be doing that over here 
because our's is highly customized... then again, it is the perimeter firewall 
for three active networks ;)

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it 
wrong...
.... Ear wax is a terrible thing to taste.
---
 * Origin:  (1:3634/12.73)

.