Subj : Synology Docker Mystic Test
To   : fusion
From : Accession
Date : Sat Feb 15 2025 09:31 am

Hey fusion!

On Sat, Feb 15 2025 05:52:12 -0600, you wrote:

> they have an incentive not to be a denial of service because they're
> trying to find poorly configured *nix machines with weak
> username/password combos. also why most of them will only make one
> connection at a time. if they manage to log in with a weak password
> from the list they come back to use the machine they've gained access
> to. they really don't want to be banned nor put the target machine
> offline.

Maybe we're not referring to the same thing here..

By one connection at a time, do you mean in succession, very rapidly? As in 20+ attempts in a minute, but one connection at a time which might seem like they're all coming in at once?

I see different types of bots, I guess, and most of them don't try username/password combinations whatsoever. They basically hit as many times as they can until Synchronet temporarily bans them. Most telnet connections just sit there and don't hit a key for 20-30 seconds, but while they're sitting there another from the same IP is usually connecting again, etc..

> but, just as an example, normally that wouldn't be a problem with
> mystic but any unknown username and a password they attempt that
> happens to contain a 'y' will allow them a LOT of time to run through
> a few hundred username/password combos in the new user "full name"
> field (which won't hangup on you no matter how many times you don't
> include a last name. including just holding enter forever)

Wait, in the new user application it doesn't send you back to the matrix if you type in an incorrect full name? I thought it did.

> anyways sorry for the overreaction :/

No worries, and same. I think plenty of people jump on the "it's a bug" train before actually doing any testing, so I questioned it right away. Clearly, that wasn't the case here. I sometimes get a bit defensive when people aren't around to defend themselves or their software at the moment.

Who knows, maybe he did read it. ;P

Regards,
Nick

... He who laughs last, thinks slowest.
--- slrn/pre1.0.4-9 (Linux)
* Origin: The Pharcyde ~ telnet://bbs.pharcyde.org (Wisconsin) (21:1/200)

You are viewing proxied material from cvs.synchro.net. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.