Active Topics

 


Reply
Thread Tools
pichlo's Avatar
Posts: 6,445 | Thanked: 20,981 times | Joined on Sep 2012 @ UK
#21
Wiki, you have a point. There is only one teeny-weeny problem with "blocking for the duration of an attack". How do you know when the attack has finished? When do you know you can take an IP off the black list? Behaviour-based protection takes care of that automatically.

As for you, endso, sorry, your post was waaaay too long. About 3x over the acceptable limit. So, you may have a point too but I did not bother digging through the huge haystack looking for it
 

The Following 6 Users Say Thank You to pichlo For This Useful Post:
Posts: 638 | Thanked: 1,692 times | Joined on Aug 2009
#22
I can see how this thing about protect one community forum could seem a fantastic world of power, decisions and choices...
And i can understand that everyone has a better solution for the world's problems while having a beer in the bar with his friends..

Here a few words to explain the points of the situation:
0 - Your are debating about a report without any relevant information (which is the ip address of the exit point? If it was reported everyone could cross check if there is a clear reason or not for the block)
1 - blacklist is not composed using human choices
2 - blacklist is composed merging more automatic malicious reporting sources
3 - there is no will to block tor exit nodes or common privacy proxies
4 - if one tor exit node has been reported in those reporting systems i think it would be a non-sense to add it in a white list giving them a different priority
4bis - if your privacy proxy has been reported for bad activity why should we take care of it if you don't care to apperar just like a spammer?
5 - blacklist could become more aggressive during an evidence of attack (like it happened some month ago) to block the subnets used by attackers since reporting systems are slow and before a new ip in the same subnet is listed there it could take 6/12 hours. Normal behavior is more relaxed
6 - often those attacks activity is not limited in posting and create new threads, but also in trying any possible attack against vbb/apache/php and the point is not only take care of spam posts
7 - if it wasn't clear, our human resources are not unlimited and we have to make _real_ choices to reach a good security level without forgetting the man power involved.

Last edited by xes; 2015-06-28 at 13:42. Reason: Typo
 

The Following 11 Users Say Thank You to xes For This Useful Post:
peterleinchen's Avatar
Posts: 4,117 | Thanked: 8,901 times | Joined on Aug 2010 @ Ruhrgebiet, Germany
#23
Thanks xes.
I believe now this thread shcould be closed.
__________________
SIM-Switcher, automated SIM switching with a Double (Dual) SIM adapter
--
Thank you all for voting me into the Community Council 2014-2016!

Please consider your membership / supporting Maemo e.V. and help to spread this by following/copying this link to your TMO signature:
[MC eV] Maemo Community eV membership application, http://talk.maemo.org/showthread.php?t=94257

editsignature, http://talk.maemo.org/profile.php?do=editsignature

Last edited by peterleinchen; 2015-06-29 at 18:10. Reason: correction of language misuse should --> could
 

The Following 5 Users Say Thank You to peterleinchen For This Useful Post:
pichlo's Avatar
Posts: 6,445 | Thanked: 20,981 times | Joined on Sep 2012 @ UK
#24
Originally Posted by peterleinchen View Post
I believe now this thread should be closed.
With that attitude, I believe this forum should now be closed
 
chemist's Avatar
Administrator | Posts: 1,036 | Thanked: 2,019 times | Joined on Sep 2009 @ Germany
#25
Originally Posted by nieldk View Post
While I sort of understand the reasoning for not allowing access from tor exit nodes, I have to agree with Jukey.
My God to honest opnion - blocking tor exit nodes is a violation of our privacy rights on this forum, and completely the oposite as supporting SFOS and opensource.
If we had blocked all tor exit nodes yes, but we actually don't. We are not blocking tor, we are blocking some specific exit nodes that have caused serious trouble. It is your privacy (actually not it is just your comfort) vs DDOS & spam attacks, guess what we chose.

Last edited by chemist; 2015-07-06 at 08:57.
 

The Following 4 Users Say Thank You to chemist For This Useful Post:
Posts: 1,288 | Thanked: 4,316 times | Joined on Oct 2014
#26
Originally Posted by chemist View Post
It is your privacy vs DDOS & spam attacks, guess what we chose.
Somehow I dont like that statement.....
 

The Following 2 Users Say Thank You to nieldk For This Useful Post:
chemist's Avatar
Administrator | Posts: 1,036 | Thanked: 2,019 times | Joined on Sep 2009 @ Germany
#27
Updated, it is actually not even your privacy vs something... it is just your comfort vs attacks - as said, we do not block tor in general.
 

The Following 6 Users Say Thank You to chemist For This Useful Post:
endsormeans's Avatar
Posts: 3,139 | Thanked: 8,156 times | Joined on Feb 2013 @ From my Gabriola Island hermitage, near the Edge of the World
#28
It isn't even a thought to entertain guys...
If measures aren't taken... those ddos attacks would take the whole place down...period.
there is no nefarious or insidious agenda to strip people of their privacy.
this isn't about any individual "right" or "privilege" to something...
this is about the survival of this place.... Flat out ...full stop.
__________________
Lurker since 2007, Member since 2013, Certifiable since 1972

Owner of :
1-n770 (in retirement), 3-n800's / 3-n810's (still in daily use), 5-n900's ((3 are flawless, 1 loose usb ( parts), 1 has no telephony (parts))
3-nexus 5's : 1 w/ Floko Pie 9.1 (running beautifully) waiting for Stable Droid 10 rom, 1 w/ ̶Ubuntu Touch, 1 with Maru OS (intend maemo leste when ready)

1/2 - neo900 pre- "purchased" in 2013. N̶o̶w̶ ̶A̶w̶a̶i̶t̶i̶n̶g̶ ̶r̶e̶f̶u̶n̶d̶ ̶p̶r̶o̶c̶e̶s̶s̶ ̶l̶a̶s̶t̶ ̶f̶e̶w̶ ̶y̶e̶a̶r̶s̶ - neo900 start up declared officially dead -
Lost invested funds.


PIMP MY N8X0 (Idiot's Guide and a video walkthrough)http://talk.maemo.org/showthread.php?t=94294
THE LOST GRONMAYER CATALOGShttp://talk.maemo.org/showthread.php...ight=gronmayer
N8X0 VIDEO ENCODING THE EASY WAYhttp://talk.maemo.org/showthread.php...ght=mediacoder
242gb ON N800http://talk.maemo.org/showthread.php?t=90634
THE PAIN-FREE MAEMO DEVELOPMENT LIVE DISTRO-ISO FOR THE NOOB TO THE PROhttp://talk.maemo.org/showthread.php?t=95567
AFFORDABLE MASS PRODUCTION FOR MAEMO PARTShttp://talk.maemo.org/showthread.php?t=93325

Meateo balloons now available @ Dave999's Meateo Emporium
 

The Following 4 Users Say Thank You to endsormeans For This Useful Post:
Posts: 175 | Thanked: 210 times | Joined on Mar 2013
#29
Ok, I also have problems checking the forum from my work place where I HAVE to use a proxy to go out on the Internet as the company blocks a lot of things. But the thing is that I just want to check the forum, not get in my account and post something (I'm not that stupid and now that the free proxies on the Internet are saving all the data, even user and password, which in this case is easy to get as talk.maemo.org is plain http).

So the ideal would be to block any registering or connecting from the ips that spammers use but not block the entire forum. I would like to check the forum and read what's new even if I use a proxy (because I have to). And as I'm most of the time at work (except when I'm sleeping) this doesn't help.
 

The Following 5 Users Say Thank You to Malakai For This Useful Post:
chenliangchen's Avatar
Posts: 1,478 | Thanked: 9,871 times | Joined on Dec 2008 @ Shanghai / London
#30
Got the same message today while using public WiFi "O2 WiFi" (A popular service in the UK) in All Bar One. Guess some public connection IP is in blacklist as well?
Attached Images
 
 
Reply

Tags
https, legal hell

Thread Tools

 
Forum Jump


All times are GMT. The time now is 05:20.