Subj : Telnet, TelnetS, and SSH Connections
To   : Scott Street
From : Rob Swindell
Date : Mon Aug 11 2025 03:27 pm

 Re: Telnet, TelnetS, and SSH Connections
 By: Scott Street to All on Mon Aug 11 2025 03:50 pm

> To my fellow Sysop's with Telnet, TelnetS, and SSH ports open to the
> Internet:
>
> A question, perhaps even a poll,  what kind of 'protection' do you have in
> place for abusive connections?
>
> For example, I already have entire country IP assignments blocked and if a
> host (IP) connects more then 5 times in a 60 second window, that IP is
> blocked, and added to my firewall's drop rules.  These seems to have reduced
> the number of unwanted connections over the last year or so.
>
> Does anyone have a better scheme?

Synchronet has support for multiple schemes:

- limiting the number of concurrent connections from the same IP address
 (authenticated connnections, e.g. logged-in users, are exempt from this)
- auto-throttling and temp-blocking IPs with multiple consecutive failed login   attempts
- short inactivity timeout for dumb (e.g. non-ANSI) terminals

For more info: https://wiki.synchro.net/howto:block-hackers

You are viewing proxied material from vert.synchro.net. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.