Subj : Block admin and root access attempts
To   : Digital Man
From : nightcrawler
Date : Tue Oct 28 2014 09:04 pm

  Re: Block admin and root access attempts
  By: Digital Man to nightcrawler on Mon Oct 27 2014 04:38 pm

 DM>  Re: Block admin and root access attempts
 DM>  By: nightcrawler to All on Sat Oct 25 2014 12:08 am

 >> Hey guys.

 >> Can someone tell me something I can add to my login script that will
 >> automatically add Ip's to the IP.can file that try to log in as root
 >> or admin. It is becoming a full time job adding all the hack attempt
 >> IP's manually. There was some discussion on the Facebook group about
 >> this, but wasn't given a definitive answer. Also, I figured it would
 >> be more helpful to other Sysops if it was asked and answered on here.

 DM> There's an auto-filtering capability built-into Synchronet. See
 DM> "LoginAttemptFilterThreshold" at http://wiki.synchro.net/config:sbbs.ini
 DM> for details.

 DM>  digital man

Thanks.

I set the LoginAttemptFilterThreshold to 3, but doesn't seem to be having any
effect.I've noticed a dozen or more attempts from an IP and it isn't being
added to the ip.can. Do you have any idea what I am doing wrong?

This is what I have:

LoginAttemptDelay=5000
LoginAttemptThrottle=1000
LoginAttemptHackThreshold=3
LoginAttemptFilterThreshold=3
TempDirectory=
HostName=
Interface=0.0.0.0
LogLevel=Debugging
BindRetryCount=2
BindRetryDelay=15

Nightcrawler +o Dark Sanctuary
darksanctuary.darktech.org 

---
 þ Synchronet þ Dark Sanctuary darksanctuary.darktech.org

.