Subj : .RUL files
To : Ben Ritchey
From : mark lewis
Date : Fri Mar 31 2017 10:15 am
On 2017 Mar 30 23:12:14, you wrote to me:
BR> * An ongoing debate between mark lewis and Ben Ritchey rages on ...
BR> ml { the main thing i was pointing out is that those files need to be
BR> ml { removed and should have been a long time ago...
BR> I got that, and a mechanism for pruning the files will be implemented,
BR> eventually.
ok... so in the mean time they languish or will they be removed because the
moderator asked?
BR> ml { have numerous concerns but i'm not sure when/if i'll have time to
BR> ml { write them down for you... the main thing, though, is security
BR> and
BR> The Echolist belongs to FIDONet
so this is a complete change in the echolist? the echolist never belonged to
any network...
BR> and is being re-built from the ground up.
we can see that ;)
BR> If constructive feedback is lacking or missing altogether then it'll
BR> be what I perceive as best practice, period.
i do the same...
BR> ml { what happens if someone drops off a file with an existing name
BR> that ml { shouldn't be dropped off by them... in other words, someone
BR> pretending ml { to be authorized to drop off that particular file...
BR> kinda rings of
BR> If someone spoofs the address of a valid user, there's not much I can
BR> do for now. I validate each .RUL submission to a valid user.
ahhh... i must have missed something else, then... i only saw something about
sending RUL files but didn't see anything about how they are identified other
than the RUL extension on them...
)\/(ark
Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it
wrong...
... See what you get for thinking.
---
* Origin: (1:3634/12.73)
