I could be totally missing this. Any idea what I'm doing wrong?
You also cannot stop the "spam train" once you have a BBS user's e-mail address on marketing mailing lists, etc. You could end up with constant connections to your server with the purpose of spam e-mail being sent
and there is little you can do to stop the connections.
You may not be doing anything wrong. Mystic doesn't allow unknown
e-mails into the BBS system. Your BBS users can send e-mail back and forth, but it doesn't allow outside random Internet e-mail in.
But like I said, I am leaning towards removing this restriction. Part
of the reasons its there in addition to it just falling outside of my philosophy is that e-mail doesn't translate well to an 80x25 text interface. E-mail often has html for example and you end up getting a
BBS mailbox full of gibberish.
Send all incoming email through spamassassin and let that do the work. That's what I do with Synchronet now and it works pretty well. Also,
don't allow unauthenticated relays, that's just asking for trouble.
As far as html in emails, I'm sure that could be stripped out, and you could even use python to do the preprocessing if you wanted to cheat a bit. Here's some snippets of code:
All of my BBSes get slammed on every open port with connections from script kiddies. Thank goodness for IP blocking and the fact that none
use a standard known server, except for sshd on a non-standard port.
into that when I was playing around with synchronet. Does the SMTP
server need to be active to be able to do password resets and such?
I won't let it relay at all and I can't see a situation where I would allow for it. But I may open up the allowance of incoming e-mail very soon! I have to turn off the domain restriction and investigate to see what else doing so breaks lol :)
The old Mystic server used to have e-mail spam service support using Blacklist DNS but I removed support for it because I couldn't find a service that supported IPV6 at the time. I will absolutely revisit this if I open up incoming e-mail!
Yes it can be stripped but the resulting e-mail still ends up being nonsense because of the way the raw text is formatted by the HTML and images. Quoting of course is also majorly broken, etc.
Its nice if you're using it with someone whose only using text e-mail
like to another BBS user or something.
All of my BBSes get slammed on every open port with connections from script kiddies. Thank goodness for IP blocking and the fact that none use a standard known server, except for sshd on a non-standard port.
I don't even seem to have that problem except on port 23. I usually use
a non-standard port though for things, but for stability testing I've
had my BBS up for about 2 weeks with port 23 open. Its getting spammed constantly and I just let Mystic auto-ban them.
Sysop: | echicken |
---|---|
Location: | Toronto, Ontario |
Users: | 2,224 |
Nodes: | 6 (0 / 6) |
Uptime: | 208:43:20 |
Calls: | 14,142 |
Files: | 295 |
Messages: | 551,092 |