Subj : Re: ACiD Underworld
To   : deon
From : The Godfather
Date : Sat Oct 11 2025 07:30 pm

 de> * You could change your ports to "less used" ports - it doesnt stop
 de> them, but means they need to do more work to find the port you are
 de> using. I've never been in favour of this option.

This is typically what I do and don't have an issue (much) with BOT's but for this project I want to stick to standard.  Is there a reason you avoid using non standard ports?

 de> * You could put something like haproxy in front (which is what I do),
 de> with haproxy you can use default ports (or not), but put in rules like 1
 de> concurrent connection from the same IP address, 2 connections in the
 de> last 60 seconds, add a CIDR list to exclude IP address ranges (although

Sounds like a lot of work / trial and error.  But I'll look into it for sure.  I was surprised just how bad the bots are now compared to when I put up my BBS back in 2020.  The telnet server gets hit pretty hard.

 de> * Another things I looked at and there are pro's and con's, is having
 de> your BBS behind a VPN of sorts. I've played with zerotier and yggdrasil,
 de> and then limiting inbound connections from other users who are also
 de> inside the VPN.

I had to chuckle here.  I went a few months with ZERO (fortunately last summer during the slower months ..) Turns out I had my VPN turned on.  Do those VPN's have the equivalent of port forwarding?  And if so, does that make your browsing privacy / different country hopping more vulnerable?

|15-|12t|04G
|15www|08.|15theun|07dergrou|08nd|07.|08us|15:|0810023

.... No honey, I can't eat with the family. My computer gets lonely!

--- Mystic BBS v1.12 A49 2023/04/30 (Linux/64)
 * Origin: www.theunderground.us Telnet 10023 SSH 7771 (21:3/165)

.