Synchronet now requires the libarchive development package (e.g. libarchive-dev on Debian-based Linux distros, libarchive.org for more info) to build successfully.

  1. 18 Apr, 2021 2 commits
    • Rob Swindell's avatar
      Move all common sound (WAV) file configuration to its own dialog · cb0c1e83
      Rob Swindell authored
      Increment the version in the project file to v3.19a.
      cb0c1e83
    • Rob Swindell's avatar
      Update sound (WAV) file play-on-event support in Windows build · f26a82b0
      Rob Swindell authored
      A "hack attempt" sound file is now supported in the Terminal Server, Mail Server,  and Services.
      
      "login" and "logoff" sound files are now supported in the Terminal Server, FTP Server, Web Server, Mail Server, and Services.
      This enhancement fixes Issue #157
      
      The following sound files may now be configured in the [Global] section of the ctrl/sbbs.ini file, if desired to set the default sound files for all servers/services in on place:
      - AnswerSound
      - LoginSound
      - LogoutSound
      - HangupSound
      - HackAttemptSound
      f26a82b0
  2. 15 Feb, 2021 2 commits
    • Rob Swindell's avatar
      Disable FTP Bounce (FXP) support by default · 635fad77
      Rob Swindell authored
      The Synchronet FTP server has (since 2001) disallowed PORT/EPRT/LPRT commands with a "reserved" port number (i.e. < 1024) as recommended by RFC2577 and when attempted, would log a "SUSPECTED FTP BOUNCE HACK ATTEMPT" in the data/hack.log file.
      
      However, as Karloch (HISPAMSX) pointed out recently, an FTP Bounce Attack to other TCP ports was still possible (and detected/reported by some security scans as a potential vulnerability).
      
      So, reject all PORT/EPRT/LPRT commands that specify an IP address other than that used for the control TCP connection unless the sysop specifically enables the new "ALLOW_BOUNCE" option flag (in the [ftp] section of sbbs.ini) and the user is an authenticated non-guest/anonymous user. And as before, log the attempt as a suspected hack attempt.
      
      This change also removes the "Directory File Access" checkbox from the Synchronet Control Panel for Windows as that feature is "going away" soon (or at least, it won't be an FTP-specific option/feature if it remains).
      635fad77
    • Rob Swindell's avatar
      Disable FTP Bounce (FXP) support by default · ebece39d
      Rob Swindell authored
      The Synchronet FTP server has (since 2001) disallowed PORT/EPRT/LPRT commands with a "reserved" port number (i.e. < 1024) as recommended by RFC2577 and when attempted, would log a "SUSPECTED FTP BOUNCE HACK ATTEMPT" in the data/hack.log file.
      
      However, as Karloch (HISPAMSX) pointed out recently, an FTP Bounce Attack to other TCP ports was still possible (and detected/reported by some security scans as a potential vulnerability).
      
      So, reject all PORT/EPRT/LPRT commands that specify an IP address other than that used for the control TCP connection unless the sysop specifically enables the new "ALLOW_BOUNCE" option flag (in the [ftp] section of sbbs.ini) and the user is an authenticated non-guest/anonymous user. And as before, log the attempt as a suspected hack attempt.
      
      This change also removes the "Directory File Access" checkbox from the Synchronet Control Panel for Windows as that feature is "going away" soon (or at least, it won't be an FTP-specific option/feature if it remains).
      ebece39d
  3. 30 Dec, 2020 1 commit
  4. 22 Dec, 2020 1 commit
    • Rob Swindell's avatar
      Remove dynamic HTML index support from FTP server · 0d01544d
      Rob Swindell authored
      The days of browsers rendering HTML served-up via FTP are over, so remove this feature. This also removes all JavaScript support from the FTP server and that is a bit odd as it was one of the first Synchronet components for which I added JS support.
      
      Removing this feature was pretty painless; much easier than adding it was. The main motivation was less cruft to port to the file base in the works. There should be no more references to 00index.html anywhere at this point. Bye bye cool feature, we'll miss you.
      0d01544d
  5. 16 Aug, 2020 1 commit
  6. 27 May, 2016 1 commit
    • rswindell's avatar
      Server listening interfaces can now be configured again using the various · 25ccb605
      rswindell authored
      - "Configure" menus (not working since the IPv6 commit) - both IPv4 and IPv6
         addresses may be specified (comma-separated), or multiple IPv4 addresses!
      - Added new "Temp Ban" settings to Properites->Security tab.
      - Added context (tab) sensitive "Help" button to Properties page
        (links to section on relevant wiki page).
      - Every log window has a new right-click pop-up menu with 2 options:
        1. Copy Selected
        2. Copy All
        Hopefully it's obvious what these menu options do. :-)
      25ccb605
  7. 20 Aug, 2015 1 commit
    • deuce's avatar
      Update to 3.17a · dbbfabf1
      deuce authored
      New Features:
      - Multiple bindings for each service
        Use comma-separated interfaces on Interface= lines in the ini file.
        Default is now "0.0.0.0,::"
      - IPv6 support
      - TLS support for the webserver and (non-static) services
        New TLS option in services.ini (ie: Options=TLS)
      - Decrease LEN_SCAN_CMD to 35 chars, increase the CID field to 45 chars,
        and rename the MAIL_CMD string to IPADDR.  I think this frees up the
        note field for SysOp use.
      dbbfabf1
  8. 20 Nov, 2014 1 commit
  9. 10 May, 2006 1 commit
    • rswindell's avatar
      Added FTP server option: Lookup Passive IP · dcd3ad43
      rswindell authored
      (enabled by adding LOOKUP_PASV_IP to the "Options" value in the [ftp] section
      of your ctrl/sbbs.ini.
      This option tells the FTP server to perform a hostname lookup (on the BBS's
      hostname) to determine the correct/current public IP address to use in
      PASV responses. This is one more kludge to work around stupid NAT devices
      (consumer firewalls/routers).
      dcd3ad43
  10. 07 May, 2005 1 commit
  11. 26 Apr, 2005 1 commit
  12. 18 Feb, 2005 1 commit
  13. 17 Apr, 2002 1 commit
  14. 21 Jul, 2001 1 commit
  15. 11 Jul, 2001 1 commit
  16. 02 Nov, 2000 1 commit
  17. 12 Oct, 2000 1 commit
  18. 10 Oct, 2000 1 commit