1. Forum
  2. FidoNet
  3. BBS INTERNET

  • WEB Access, false BBS ID

    From MICHEL SAMSON@1:379/1200 to ANDY BALL on Monday, October 25, 2004 17:21:00
    Hi Andy,

    About "WEB Access BBSes" of October 24:

    ~WEB~ BBSes are new to me, i thought i could tolerate this interface
    but the obvious lack of security is what i'd call a deterrent, in
    favour of plain old DialUp/~TelNet~ BBSing, i mean...
    How is this any more secure than an unencrypted HTTP connection?

    You're invited to discuss that issue with concerned SysOps. I'm in
    favour of migrating from ~TelNet~ toward ~SSH~ interactive sessions, but
    right now BBSers like me who don't know how to steal PassWords do have a
    way to steal identities! :( I made sure the SysOp was advised, thanks.

    A text-based BBS could be made less insecure by enabling SSH...

    We're in perfect agreement over ~SSH~, not the removal of ~TelNet~.

    Salutations,

    Michel Samson
    a/s Bicephale


    ... Sometimes, the cost of new features is too high, really! Is it not?
    -!- MultiMail/MS-DOS v0.45 - Using DOS+TCP/IP+TelNet+ZMoDem/Kermit+.QWK!
    --- Mail-ennium/32 v2.0-beta-r1
    * Origin: Mail-ennium/32 v2 Beta Coming Soon! (1:379/1200.0)
  • From Andy Ball@1:10/345 to Michel Samson on Wednesday, October 27, 2004 02:08:26
    Hello Michel,

    MS> You're invited to discuss that issue with concerned
    > SysOps. I'm in favour of migrating from ~TelNet~
    > toward ~SSH~ interactive sessions...

    Sysops seem pretty thin on the ground these days, but it's "out there" as a suggestion. If I were to set up a BBS with Internet access, SSH is probably the approach that I would take. Web-based BBS have their place too.

    MS> We're in perfect agreement over ~SSH~...

    It was bound to happen eventually ;-)

    MS> ...not the removal of ~TelNet~.

    Telnet clients are ubiquitous, the fact that they come as standard equipment with most operating system software, and are available for more besides (including DOS) counts in favour of telnet. Whether to allow the use of an insecure protocol to access the BBS is ultimately the sysop's decision.

    - Andy Ball

    * SLMR 2.1a *
    --- BBBS/NT v4.01 Flag-5
    # Origin: FamilyNet Sponsored by http://www.christian-wellness.net (8:8/2)
    * Origin: BBS Networks @ www.bbsnets.com 808-839-6036 (1:10/345)