-
deimosBSD
> deimosBSD, experienced then. What software do you use? prosody? for family/friend servers, i switched to snikket because it was so much easier, otherwise ejabberd at work and probably for public/open registration ↺
-
ij
!info 5222.de
-
f_
there it is!
-
f_
Looks like XEP-0157 works now :)
-
f_
and I thought authbot no longer worked.. glad to be proven wrong.
-
f_
Hi all, has anyone tried using Slidge? If so then how's the experience and how easy is it to maintain?
-
f_
I'm considering hosting it, but I want to know what the drawbacks would be before doing so.✎ -
f_
I'm considering hosting it, but I want to know about the drawbacks before doing so. ✏
-
MSavoritias (fae,ve)
is this jid known for abuse and such? -> brokenhunt@5222.de
-
MSavoritias (fae,ve)
was told its the person that did the invite spam earlier
-
MattJ
Not known to me
-
admin
MSavoritias (fae,ve): afaik he is a normal user. He had been messaging in some of my muc's.
-
admin
Only annoyance is double posting across multiple muc's
-
MSavoritias (fae,ve)
what did they post
-
Licaon_Kter
admin: set a proper nick pls, everyone is `admin` here
-
MSavoritias (fae,ve)
i am asking to see if there is pattern especially since they posted across group chats
-
Loqi.im
Licaon_Kter: my bad, I'm normally here as 'Strix' but had to switch accounts due to the channel being moderated
-
Loqi.im
> what did they post MSavoritias (fae,ve): something about sharing classified information to media outlets ↺
-
MSavoritias (fae,ve)
right. same here. i also learned that the invite spam in the morning was coming from that server
-
jonas’
Polarian, no, having a proper abuse contact is good even if you are the only user. Consider that a service may be malfunctioning and being abused from the outside (common with services like DNS, for instance, less common with XMPP). It's good practice to have a human contact for things which do automated actions.
-
ogechukwukamma
Wasn't xmpp av stuff being abused a while back?
-
ogechukwukamma
Still ongoing?
-
jonas’
referring to the reflection abuse on STUN servers?
-
ogechukwukamma
Yes that
-
jonas’
I have monitoring for that for my own STUN server, but since I changed its port, it's been mostly quiet.
-
jonas’
I suspect that is kind of unavoidable as it's a flaw in the protocol
-
jonas’
(and/or a feature, like with DNS)
-
moparisthebest
jonas’: what kind of monitoring?
-
jonas’
moparisthebest, the specific attack wave back then had patterns clearly distinguishable from legitimate traffic
-
jonas’
I have nftables rules which count matching packets and I get emails when they increase significantly
-
jonas’
(and I think I also have "more packets/second than usual" alerts for both STUN and DNS)
-
moparisthebest
Are they in a shape you can share perhaps ?
-
jonas’
yes, not publicly though
-
moparisthebest
I'm still using iptables... Probably will have to rewrite everything one day :'(
-
jonas’
f_, authbot was indeed broken for a long time, we brought it back a while ago when things got messier here.
-
f_
nice