- Feb 15, 2021
-
-
Rob Swindell authored
The Synchronet FTP server has (since 2001) disallowed PORT/EPRT/LPRT commands with a "reserved" port number (i.e. < 1024) as recommended by RFC2577 and when attempted, would log a "SUSPECTED FTP BOUNCE HACK ATTEMPT" in the data/hack.log file. However, as Karloch (HISPAMSX) pointed out recently, an FTP Bounce Attack to other TCP ports was still possible (and detected/reported by some security scans as a potential vulnerability). So, reject all PORT/EPRT/LPRT commands that specify an IP address other than that used for the control TCP connection unless the sysop specifically enables the new "ALLOW_BOUNCE" option flag (in the [ftp] section of sbbs.ini) and the user is an authenticated non-guest/anonymous user. And as before, log the attempt as a suspected hack attempt. This change also removes the "Directory File Access" checkbox from the Synchronet Control Panel for Windows as that feature is "going away" soon (or at least, it won't be an FTP-specific option/feature if it remains).
-
- Dec 30, 2020
-
-
Rob Swindell authored
Also, disable the QWK packet creation timeout edit when QWK packet download support is disabled.
-
- Dec 22, 2020
-
-
Rob Swindell authored
The days of browsers rendering HTML served-up via FTP are over, so remove this feature. This also removes all JavaScript support from the FTP server and that is a bit odd as it was one of the first Synchronet components for which I added JS support. Removing this feature was pretty painless; much easier than adding it was. The main motivation was less cruft to port to the file base in the works. There should be no more references to 00index.html anywhere at this point. Bye bye cool feature, we'll miss you.
-
- May 27, 2016
-
-
rswindell authored
- "Configure" menus (not working since the IPv6 commit) - both IPv4 and IPv6 addresses may be specified (comma-separated), or multiple IPv4 addresses! - Added new "Temp Ban" settings to Properites->Security tab. - Added context (tab) sensitive "Help" button to Properties page (links to section on relevant wiki page). - Every log window has a new right-click pop-up menu with 2 options: 1. Copy Selected 2. Copy All Hopefully it's obvious what these menu options do. :-)
-
- Oct 30, 2014
-
-
rswindell authored
edit box.
-
- Oct 25, 2009
-
-
rswindell authored
Change answer/hangup to connect/disconnect.
-
- May 10, 2006
-
-
rswindell authored
(enabled by adding LOOKUP_PASV_IP to the "Options" value in the [ftp] section of your ctrl/sbbs.ini. This option tells the FTP server to perform a hostname lookup (on the BBS's hostname) to determine the correct/current public IP address to use in PASV responses. This is one more kludge to work around stupid NAT devices (consumer firewalls/routers).
-
- May 07, 2005
- Mar 10, 2005
-
-
rswindell authored
files from cfg dialogs. Don't add selected sound files to recent documents history.
-
- Feb 28, 2002
-
-
rswindell authored
-
- Jul 21, 2001
-
-
rswindell authored
-
- Jul 11, 2001
-
-
rswindell authored
-
- Jun 22, 2001
-
-
rswindell authored
-
- Nov 17, 2000
-
-
rswindell authored
-
- Oct 24, 2000
-
-
rswindell authored
-
- Oct 12, 2000
-
-
rswindell authored
-
- Oct 10, 2000