• modems and community BBSes..hot again

    From Ogg@VERT/CAPCITY2 to poindexter FORTRAN on Sat Mar 20 09:57:00 2021
    @VIA: CAPCITY2
    @MSGID: <605604DB.53497.dove-gen@capitolcityonline.net>
    @REPLY: <604CCE63.46549.dove.dove-gen@realitycheckbbs.org>
    @TZ: ff10
    Hello poindexter FORTRAN!

    ** On Friday 12.03.21 - 06:38, poindexter FORTRAN wrote to Ogg:

    The internet is awash with too much junk code to make
    using it at 56K bearable.

    What if you strip out the junk? I noticed that my web host
    that also hosts mail for my primary domain has an option to
    strip out HTML. I was tempted to try it and see.

    The trouble is that the sources or servers are feeding all that
    junk. We are left "processing" it client-side to get rid of it.

    I have an option to configure email to be Text-only too, but
    sometimes the internal images and links could be handy.

    Some people go overboard and include huge images in their email
    signatures. :(

    But my main beef is that even my modest XP T60 laptop struggles
    to process all the embedded shit in lavish websites. This trend
    of bloated code on websites is sad.

    I use a combination uBlock and script killers, but the
    performance still seems to be more sluggish than ever. Even
    loading Firefox for the first time seems to stall and take
    anywher from 15 - 30 seconds before it responds to my typing
    anything in the Address bar. Maybe it's processing the
    "History" thing during that time? Anyway, this is why I never
    [X] close FireFox anymore and just put my PCs to Sleep or
    Hibernate.


    You'd have to strip it out at the source, so you weren't
    transferring megs of images for a mail. At least flash is
    dead now.

    I was a hold-out with Flash until recently. I thought it was
    rather well conceived. I had a couple of favorite flash-based
    games sites that I would visit in blue moon. I liked the smooth
    rendering of action over a live connection. But, I finally
    capitulated and conceeded to the Adobe Flash reminder to
    "Uninstall now?"

    Part of me is hoping that the cruft won't be missed.

    It seems that we, as consumers, are expected to keep buying more
    and more powerful computers just to be able to deal with the
    cruft added to websites.

    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Arelor@VERT/PALANT to Ogg on Sat Mar 20 14:51:04 2021
    @VIA: PALANT
    @MSGID: <60565228.21964.dove-general@palantirbbs.ddns.net>
    @REPLY: <605604DB.53497.dove-gen@capitolcityonline.net>
    @TZ: c168
    Re: modems and community BBSes..hot again
    By: Ogg to poindexter FORTRAN on Sat Mar 20 2021 09:57 am

    The trouble is that the sources or servers are feeding all that
    junk. We are left "processing" it client-side to get rid of it.


    Yes, and I find this disgusting.

    I think it makes economic sense to have a dedicated filtering proxy working at LAN level to scrubb
    the bloat away. It takes a lot of effort to get it right, though. Ad blockers and scripts that run
    locally in your computer are also great, but they also consume your resources.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From Warpslide@VERT/NRBBS to Ogg on Sat Mar 20 16:53:13 2021
    @VIA: NRBBS
    @MSGID: <605660E2.1587.dove-dovegen@nrbbs.net>
    @REPLY: <605604DB.53497.dove-gen@capitolcityonline.net>
    @TZ: ff10
    *** Quoting Ogg from a message to poindexter FORTRAN ***

    What if you strip out the junk? I noticed that my web host that also
    hosts mail for my primary domain has an option to strip out HTML.
    I was tempted to try it and see.

    The trouble is that the sources or servers are feeding all that
    junk. We are left "processing" it client-side to get rid of it.

    Maybe try out a service like nextdns.io - You set your computer to use their DNS servers and any hostnames for trackers get an IP address of 0.0.0.0 which fails immedietly. No downloading/processing required.

    When I first set it up it was kind of doing *too* good of a job, my bank's website while working was blocking a lot of the images, so looked kind of strange.

    They have a free tier which I tried at first and was kind of impressed so pulled the plug on the yearly plan ($2.79 /mo or $27.90 /year).

    Jay

    ... Everybody should believe in something: I believe I'll have another drink.

    --- Telegard v3.09.g2-sp4/mL
    * Origin: Northern Realms | 289-424-5180 | bbs.nrbbs.net (99:99/2)
  • From poindexter FORTRAN@VERT/REALITY to Ogg on Sun Mar 21 07:10:00 2021
    @VIA: REALITY
    @MSGID: <60575E07.46834.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605604DB.53497.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Subject: Re: modems and community BBSes..hot again
    @MSGID: <60575E07.46834.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605604DB.53497.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Ogg wrote to poindexter FORTRAN <=-

    But my main beef is that even my modest XP T60 laptop struggles
    to process all the embedded shit in lavish websites. This trend
    of bloated code on websites is sad.

    My BBS is running on a T60; I'm running Windows 10 32-bit. A couple of suggestions - use mydefrag if you have a spinning drive. It makes a big difference in speed, or switch out to an SSD. That made a world of
    difference. The T60 still has a weird SATA to PATA bridge, so it's running SATA drives at PATA speeds, but the SSD can still speed up the drive.

    If you're on a tight budget, find an old hybrid SATA drive - those are spinning drives with a 512MB - 4GB cache slapped on the side. Once you load
    up your apps the first time, they're fed out of the cache and it feels like
    a SSD.

    For a web browser, I started using K-Meleon, it's a lot smaler/faster than Firefox. There was a Firefox light I used to use, but it's not updated
    often.


    ... Abandon normal instruments
    --- MultiMail/DOS v0.52
    Synchronet realitycheckBBS -- http://realitycheckBBS.org
  • From MRO@VERT/BBSESINF to poindexter FORTRAN on Sun Mar 21 14:16:49 2021
    @VIA: BBSESINF
    @MSGID: <60579BA1.3900.dove-gen@bbses.info>
    @REPLY: <60575E07.46834.dove.dove-gen@realitycheckbbs.org>
    @TZ: c168
    Re: Re: modems and community BBSes..hot again
    By: poindexter FORTRAN to Ogg on Sun Mar 21 2021 07:10 am

    If you're on a tight budget, find an old hybrid SATA drive - those are spinning drives with a 512MB - 4GB cache slapped on the side. Once you load up your apps the first time, they're fed out of the cache and it feels like a SSD.


    so i made an ssd my main drive recently. the only improvement i see is windows loading up faster and also i had a toolbar with shortcuts on my task bar that loads up faster. usually i would wait like 10 seconds to see the names and icons.

    it's good that they're so cheap now.

    if people dont care about windows starting up pretty fast i would say get a hybrid drive. i wonder if they still make them. the one i have has worked out well and i'm still using it.
    ---
    Synchronet ::: BBSES.info - free BBS services :::
  • From Ogg@VERT/CAPCITY2 to Warpslide on Sun Mar 21 19:06:00 2021
    @VIA: CAPCITY2
    @MSGID: <6057D521.53559.dove-gen@capitolcityonline.net>
    @REPLY: <605660E2.1587.dove-dovegen@nrbbs.net>
    @TZ: ff10
    Hello Warpslide!

    ** On Saturday 20.03.21 - 16:53, you wrote:

    Maybe try out a service like nextdns.io - You set your
    computer to use their DNS servers and any hostnames for
    trackers get an IP address of 0.0.0.0 which fails
    immedietly. No downloading/processing required.

    Thanks for the tip. The program doesn't run in my XP T60 :( The
    installation seems to go well. But when I try to launch
    NextDNS, I get "not a valid Win32 application".

    When I first set it up it was kind of doing *too* good of a
    job, my bank's website while working was blocking a lot of
    the images, so looked kind of strange.

    But I see that specific sites can be configured to unblock that
    stuff if needed.

    They have a free tier which I tried at first and was kind of
    impressed so pulled the plug on the yearly plan ($2.79 /mo
    or $27.90 /year).

    Right now, I can manage my 5GB mobile limit. But it sure is a
    shame to waste data on tracking and images that I don't care
    about.

    About 10 months ago I discovered that if I access Facebook from
    my laptop using the mobile doorway: m.facebook.com, the page
    load is only 200K. When I visit FB the usual way, the data
    usage is 2MB before things settle down. Big difference. I stick
    with m.facebook.com whenever I can.

    When I am at the shop where my internet is unlimited DSL, I
    don't care about the extra crap so much.

    Thanks for the nextdns.io tip. I may like to install it on my
    Win7 T540p laptop that usually sits right next to me but I
    rarely use.


    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Ogg@VERT/CAPCITY2 to Arelor on Sun Mar 21 19:11:00 2021
    @VIA: CAPCITY2
    @MSGID: <6057D521.53560.dove-gen@capitolcityonline.net>
    @REPLY: <60565228.21964.dove-general@palantirbbs.ddns.net>
    @TZ: ff10
    Hello Arelor!

    ** On Saturday 20.03.21 - 14:51, you wrote to me:

    The trouble is that the sources or servers are feeding all
    that junk. We are left "processing" it client-side to get
    rid of it.


    Yes, and I find this disgusting.

    I think it makes economic sense to have a dedicated
    filtering proxy working at LAN level to scrubb the bloat
    away. It takes a lot of effort to get it right, though. Ad
    blockers and scripts that run locally in your computer are
    also great, but they also consume your resources.

    Would installing Pi-Hole on a "spare" computer in the network be
    a good solution? I get the impression that once Pi-Hole is
    installed, then it is a simple matter to point the other
    computer's DNS-lookup to the Pi-Hole pc. A quick look though
    seems indicate that Pi-Hole is only available for linux or
    win10. I would need a win7 solution.


    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Warpslide@VERT/NRBBS to Ogg on Sun Mar 21 21:10:02 2021
    @VIA: NRBBS
    @MSGID: <6057EEDF.1641.dove-dovegen@nrbbs.net>
    @REPLY: <6057D521.53559.dove-gen@capitolcityonline.net>
    @TZ: ff10
    *** Quoting Ogg from a message to Warpslide ***

    Thanks for the tip. The program doesn't run in my XP T60 :( The installation seems to go well. But when I try to launch NextDNS, I
    get "not a valid Win32 application".

    You don't *have* to use the application. I think you can set your DNS settings manually to:

    45.90.28.33
    45.90.30.33

    And then click the "link ip" button on https://my.nextdns.io

    But I see that specific sites can be configured to unblock that
    stuff if needed.

    Yup, that's what I ended up doing. I was kind of amazed with how many
    domains I needed to allowlist (6 or 7 I think).

    Thanks for the nextdns.io tip. I may like to install it on my Win7
    T540p laptop that usually sits right next to me but I rarely use.

    I ended up using the method above and adding the IPv4 & IPv6 DNS servers to
    my router so the whole house has the benefit of ad/tracker filtering.

    Jay

    ... What was Forrest Gump's email password? 1forrest1

    --- Telegard v3.09.g2-sp4/mL
    * Origin: Northern Realms | 289-424-5180 | bbs.nrbbs.net (99:99/2)
  • From Ogg@VERT/CAPCITY2 to poindexter FORTRAN on Sun Mar 21 23:50:00 2021
    @VIA: CAPCITY2
    @MSGID: <605815B8.53571.dove-gen@capitolcityonline.net>
    @REPLY: <60575E07.46834.dove.dove-gen@realitycheckbbs.org>
    @TZ: ff10
    Hello poindexter!

    ** On Sunday 21.03.21 - 07:10, you wrote:

    My BBS is running on a T60; I'm running Windows 10 32-bit.

    Wow. What GHz? Mine is the T2400 at 1.83GHz ..and 3GB of RAM
    which is the max for my model.

    I can't imagine putting Win10 on mine.

    But I really liked the way Mint performed on it when I tested it
    with a live install.

    A couple of suggestions - use mydefrag if you have a
    spinning drive. It makes a big difference in speed, or
    switch out to an SSD. That made a world of difference.

    Ok... I'll admit that I haven't done a defrag for several
    months. The T60 was 2nd hand, and arrived with the drive
    partitioned into C and H.

    C = 35GB (5.5GB free),
    H = 200GB (59GB free)

    I think part of slowness is probably due to my preferring
    Hibernation mode. The hiberfil.sys is 3.1GB on the C drive.

    I've studied the option of converting to SSD citing the PATA/
    SATA issue you mention next.

    The T60 still has a weird SATA to PATA bridge, so it's
    running SATA drives at PATA speeds, but the SSD can still
    speed up the drive.

    That might be viable. I'd really like to continue using this T60
    a little while longer (I recently replaced the fan and applied
    fresh heatsink goop to the CPU) ..and, the keyboard just feels
    so great! A larger SSD could provide a nice upgrade path.

    If you're on a tight budget, find an old hybrid SATA drive
    - those are spinning drives with a 512MB - 4GB cache
    slapped on the side. Once you load up your apps the first
    time, they're fed out of the cache and it feels like a SSD.

    I've heard of the hybrids. But I think SSD would be better. I
    like the idea that the pc would runner cooler and extend battery
    life with an SSD.

    I have a T540p (Win7) with a 1TB SSD right next to my T60. The
    T540p doesn't come out of hibernate any faster than the T60 does
    right now.

    For a web browser, I started using K-Meleon, it's a lot
    smaler/faster than Firefox. There was a Firefox light I
    used to use, but it's not updated often.

    Thanks for the K-Meleon tip. Sounds worth trying out.

    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Rampage@VERT/SESTAR to Ogg on Mon Mar 22 03:53:17 2021
    @VIA: SESTAR
    @MSGID: <60584CED.22551.dove-general@sestar.synchro.net>
    @REPLY: <6057D521.53560.dove-gen@capitolcityonline.net>
    @TZ: c12c
    Re: modems and community BBSes..hot again
    By: Ogg to Arelor on Sun Mar 21 2021 19:11:00

    Would installing Pi-Hole on a "spare" computer in the network be
    a good solution?

    yes...

    I get the impression that once Pi-Hole is
    installed, then it is a simple matter to point the other
    computer's DNS-lookup to the Pi-Hole pc.

    exactly...

    A quick look though
    seems indicate that Pi-Hole is only available for linux or
    win10. I would need a win7 solution.

    i don't know what you are looking at but any system can use the pi-hole's services once the pi-hole is installed and set up... winwhatever, linux, macos, iphone, android device, etc...


    )\/(ark

    ---
    Synchronet The SouthEast Star Mail HUB - SESTAR
  • From Arelor@VERT/PALANT to Ogg on Mon Mar 22 03:57:46 2021
    @VIA: PALANT
    @MSGID: <60585C0A.22028.dove-general@palantirbbs.ddns.net>
    @REPLY: <6057D521.53560.dove-gen@capitolcityonline.net>
    @TZ: c168
    Re: modems and community BBSes..hot again
    By: Ogg to Arelor on Sun Mar 21 2021 07:11 pm

    Hello Arelor!

    ** On Saturday 20.03.21 - 14:51, you wrote to me:

    The trouble is that the sources or servers are feeding all
    that junk. We are left "processing" it client-side to get
    rid of it.


    Yes, and I find this disgusting.

    I think it makes economic sense to have a dedicated
    filtering proxy working at LAN level to scrubb the bloat
    away. It takes a lot of effort to get it right, though. Ad
    blockers and scripts that run locally in your computer are
    also great, but they also consume your resources.

    Would installing Pi-Hole on a "spare" computer in the network be
    a good solution? I get the impression that once Pi-Hole is
    installed, then it is a simple matter to point the other
    computer's DNS-lookup to the Pi-Hole pc. A quick look though
    seems indicate that Pi-Hole is only available for linux or
    win10. I would need a win7 solution.

    The Pi-Hole thing is intended to run on a low power device that runs in your network 24/7 (eg a Raspberry). If your only spare
    is a Windows 7 computer, you can probably run an emulated Linux in it and attach it to the network, but I think it is more
    trouble than it is worth.

    Also, power consumption won't be great.

    And DNS filters scrubb a lot of the bad traffic, but a certain percentage of bad traffic does not use DNS and depends on
    hardcoded IPs instead.

    My personal solution is to run a FULL OpenBSD server with a FULL DNS server that pulls its data directly from the root DNS
    servers, and an http(s) proxy in addition to that. When you run your own DNS server and you have power enough, you can do
    anything you want with it, including setting your caches to obscenely high TTLs (for saving bandwidth) or using blacklists for
    advertisers.

    If you only have 1 computer to protect in your network, setting a Pi-Hole or any other server is overkill IMO. It is better to
    check which filters you can install on the computer you are trying to protect.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From Ogg@VERT/CAPCITY2 to Warpslide on Mon Mar 22 08:20:00 2021
    @VIA: CAPCITY2
    @MSGID: <60588B80.53577.dove-gen@capitolcityonline.net>
    @REPLY: <6057EEDF.1641.dove-dovegen@nrbbs.net>
    @TZ: ff10
    Hello Warpslide!

    ** On Sunday 21.03.21 - 21:10, you wrote to me:

    Thanks for the tip. The program doesn't run in my XP T60 :( The
    installation seems to go well. But when I try to launch NextDNS, I
    get "not a valid Win32 application".

    You don't *have* to use the application. I think you can set your DNS settings manually to:

    45.90.28.33
    45.90.30.33

    That's how I interpreted the operation the first time. Then,
    when the changes didn't seem to take effect (I had not rebooted
    yet) ..I thought that I needed the app when I saw its website
    status check telling me that I wasn't using the DNS.

    I will reboot (which I hate to do - cuz I always have to undo
    some things when I that happens - and .: prefer Hibernate).

    And then click the "link ip" button on https://my.nextdns.io

    Stay tuned.

    I ended up using the method above and adding the IPv4 & IPv6 DNS servers
    to my router so the whole house has the benefit of ad/tracker filtering.

    Nextdns.io seems to have figured out the right thing to do in
    this world of people trying to phish and circumvent other
    security layers.

    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Warpslide@VERT/NRBBS to Ogg on Mon Mar 22 09:23:24 2021
    @VIA: NRBBS
    @MSGID: <60589AB5.1655.dove-dovegen@nrbbs.net>
    @REPLY: <60588B80.53577.dove-gen@capitolcityonline.net>
    @TZ: ff10
    *** Quoting Ogg from a message to Warpslide ***

    Nextdns.io seems to have figured out the right thing to do in this
    world of people trying to phish and circumvent other security
    layers.

    Yup, I played around with using a pihole for a bit, nextdns is kind of like a "pihole in the cloud" and works on my iPhone even when I'm out & about and even at work.

    Jay

    ... Whosoever diggeth a pit shall falleth therein.

    --- Telegard v3.09.g2-sp4/mL
    * Origin: Northern Realms | 289-424-5180 | bbs.nrbbs.net (99:99/2)
  • From Ogg@VERT/CAPCITY2 to Warpslide on Mon Mar 22 17:40:00 2021
    @VIA: CAPCITY2
    @MSGID: <60590EC1.53605.dove-gen@capitolcityonline.net>
    @REPLY: <6057EEDF.1641.dove-dovegen@nrbbs.net>
    @TZ: ff10
    Hello Warpslide!

    ** On Sunday 21.03.21 - 21:10, Warpslide wrote to Ogg:

    You don't *have* to use the application. I think you can set your DNS settings manually to:

    45.90.28.33
    45.90.30.33

    BTW.. my visit to the site told me to use different numbers:

    45.90.28.177
    45.90.30.177

    Perhaps they want to sort users by their ISP IP addresses or
    service region?






    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Ogg@VERT/CAPCITY2 to Warpslide on Mon Mar 22 18:34:00 2021
    @VIA: CAPCITY2
    @MSGID: <60591B6E.53606.dove-gen@capitolcityonline.net>
    @REPLY: <60589AB5.1655.dove-dovegen@nrbbs.net>
    @TZ: ff10
    Hello Warpslide!

    ** On Monday 22.03.21 - 09:23, Warpslide wrote to Ogg:

    Nextdns.io seems to have figured out the right thing to do in this
    world of people trying to phish and circumvent other security
    layers.

    Yup, I played around with using a pihole for a bit, nextdns is kind of
    like a "pihole in the cloud" and works on my iPhone even when I'm out & about and even at work.

    Yippee.. I'm operating through nextdns now:

    "All good!
    "This device is using NextDNS with this configuration.

    I realized that I had to configure the custom DNS addresses
    through my Thinkpad Connections Manager, and not the TCP/IP one
    in Windows. One I did that (and no reboot required!) ..the
    Link-IP matched my current IP address and then I saw the "All
    good!" message above

    At first, I wasn't really noticing any differences, but then I
    saw all the amazing options under Security, and under Privacy (a
    bunch of a la carte Blocklists!) which I had to select a few.

    Then, after just 5 minutes of use looking around in a couple
    Facebook BBS groups, the analytics page reports 697 queries and
    2 blocked queries.

    I am liking nextdns.io very much so far.

    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Ogg@VERT/CAPCITY2 to Arelor on Mon Mar 22 19:24:00 2021
    @VIA: CAPCITY2
    @MSGID: <60592739.53607.dove-gen@capitolcityonline.net>
    @REPLY: <60585C0A.22028.dove-general@palantirbbs.ddns.net>
    @TZ: ff10
    Hello Arelor!

    ** On Monday 22.03.21 - 03:57, Arelor wrote to Ogg:

    The Pi-Hole thing is intended to run on a low power device
    that runs in your network 24/7 (eg a Raspberry). If your
    only spare is a Windows 7 computer, you can probably run an
    emulated Linux in it and attach it to the network, but I
    think it is more trouble than it is worth.

    Yes.. I was reading that Pi-Hole could operate in a VM on a
    Windows pc. But I don't have the minimum 4GB ram that is
    recommended for Pi-Hole. And.. all the configuration seems like
    a lot of work. Meanwhile, Warpside's recommend'n of nextdns.io
    is a perfect alternative!

    And DNS filters scrubb a lot of the bad traffic, but a
    certain percentage of bad traffic does not use DNS and
    depends on hardcoded IPs instead.

    Nextdns.io offers a whole wack of blocklists. Perhaps there are
    specific IPs in those.

    My personal solution is to run a FULL OpenBSD server with a
    FULL DNS server that pulls its data directly from the root
    DNS servers, and an http(s) proxy in addition to that. When
    you run your own DNS server and you have power enough, you
    can do anything you want with it, including setting your
    caches to obscenely high TTLs (for saving bandwidth) or
    using blacklists for advertisers.

    Sounds noble. You obviously have a network pcs that need
    protection, and you sound well versed in the technical details
    to configure everything.

    If you only have 1 computer to protect in your network,
    setting a Pi-Hole or any other server is overkill IMO. It is
    better to check which filters you can install on the
    computer you are trying to protect.

    I have a "spare" Win7pc (which was originally hoped to be a
    Mangaro pc until I couldn't get Samba to recognize the Win pcs
    on the network). I had also hoped that pc could be my 24/7 fido
    pc until I discovered that port-forwarding was broken in my DSL/
    router. Then, the idea as to make it a Pi-Hole server, and
    maybe an outbound VPN to establish privacy.

    But now, nextdns.io seems to be a much nicer and simpler
    solution for blocking ads and other trash that sucks up
    bandwidth.

    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Warpslide@VERT/NRBBS to Ogg on Mon Mar 22 21:05:55 2021
    @VIA: NRBBS
    @MSGID: <60593F09.1686.dove-dovegen@nrbbs.net>
    @REPLY: <60590EC1.53605.dove-gen@capitolcityonline.net>
    @TZ: ff10
    *** Quoting Ogg from a message to Warpslide ***

    BTW.. my visit to the site told me to use different numbers:

    45.90.28.177 45.90.30.177

    Perhaps they want to sort users by their ISP IP addresses or

    Could be geographic regions as well. Those are the servers they listed for me, so maybe they're in Toronto and yours could be located closer to you?

    One thing you don't want are slow DNS servers...

    Jay

    ... A truly wise man never plays leapfrog with a unicorn.

    --- Telegard v3.09.g2-sp4/mL
    * Origin: Northern Realms | 289-424-5180 | bbs.nrbbs.net (99:99/2)
  • From Warpslide@VERT/NRBBS to Ogg on Mon Mar 22 21:08:40 2021
    @VIA: NRBBS
    @MSGID: <60593FBD.1687.dove-dovegen@nrbbs.net>
    @REPLY: <60591B6E.53606.dove-gen@capitolcityonline.net>
    @TZ: ff10
    *** Quoting Ogg from a message to Warpslide ***

    "All good! "This device is using NextDNS with this configuration.

    Nice!

    Then, after just 5 minutes of use looking around in a couple
    Facebook BBS groups, the analytics page reports 697 queries and 2 blocked queries.

    I am liking nextdns.io very much so far.

    I was surprised how much nextdns blocks even with running ublock origin in
    the browser. I know ublock does quite a bit, but I guess some of it still slips though which the nextdns takes care of.

    Jay

    ... OUT TO LUNCH - If not back at five, OUT TO DINNER!

    --- Telegard v3.09.g2-sp4/mL
    * Origin: Northern Realms | 289-424-5180 | bbs.nrbbs.net (99:99/2)
  • From Arelor@VERT/PALANT to Ogg on Tue Mar 23 03:41:25 2021
    @VIA: PALANT
    @MSGID: <6059A9B5.22072.dove-general@palantirbbs.ddns.net>
    @REPLY: <60592739.53607.dove-gen@capitolcityonline.net>
    @TZ: c168
    Re: modems and community BBSes..hot again
    By: Ogg to Arelor on Mon Mar 22 2021 07:24 pm

    Nextdns.io offers a whole wack of blocklists. Perhaps there are
    specific IPs in those.


    If Nextdns is only offering DNS services, you cannot block IPs using DNS alone. You need either a proxy, a firewall or routing
    rules for blocking IPs.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From poindexter FORTRAN@VERT/REALITY to Ogg on Mon Mar 22 11:02:00 2021
    @VIA: REALITY
    @MSGID: <605A5975.46927.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605815B8.53571.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Subject: Re: modems and community BBSes..hot again
    @MSGID: <605A5975.46927.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605815B8.53571.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Ogg wrote to poindexter FORTRAN <=-

    My BBS is running on a T60; I'm running Windows 10 32-bit.

    Wow. What GHz? Mine is the T2400 at 1.83GHz ..and 3GB of RAM
    which is the max for my model.

    I can't imagine putting Win10 on mine.

    Mine's the same, same memory, but with a 256 GB SSD. It runs the BBS, Winamp and shoutcast just fine, with Mozilla Seamonkey for web/mail/news/irc.

    It runs decently, I can log onto it remotely and do work on it and not feel like it's running doggedly.

    Ok... I'll admit that I haven't done a defrag for several
    months. The T60 was 2nd hand, and arrived with the drive
    partitioned into C and H.

    The T60 still has a weird SATA to PATA bridge, so it's
    running SATA drives at PATA speeds, but the SSD can still
    speed up the drive.

    I just did an HDTUNE on the C: drive, and I got around 100 mb/sec - not
    great, but comparable to SATA-2.


    That might be viable. I'd really like to continue using this T60
    a little while longer (I recently replaced the fan and applied
    fresh heatsink goop to the CPU) ..and, the keyboard just feels
    so great! A larger SSD could provide a nice upgrade path.

    If you're on a tight budget, find an old hybrid SATA drive
    - those are spinning drives with a 512MB - 4GB cache
    slapped on the side. Once you load up your apps the first
    time, they're fed out of the cache and it feels like a SSD.

    I've heard of the hybrids. But I think SSD would be better. I
    like the idea that the pc would runner cooler and extend battery
    life with an SSD.

    Hybrids are definitely second-place to an SSD, and the prices have dropped
    now to the point that I'd go straight to an SSD.


    ... Is it finished?
    --- MultiMail/DOS v0.52
    Synchronet realitycheckBBS -- http://realitycheckBBS.org
  • From Ogg@VERT/CAPCITY2 to Arelor on Tue Mar 23 17:13:00 2021
    @VIA: CAPCITY2
    @MSGID: <605A5A26.53633.dove-gen@capitolcityonline.net>
    @REPLY: <6059A9B5.22072.dove-general@palantirbbs.ddns.net>
    @TZ: ff10
    Hello Arelor!

    ** On Tuesday 23.03.21 - 03:41, Arelor wrote to Ogg:

    If Nextdns is only offering DNS services, you cannot block IPs using DNS alone. You need either a proxy, a firewall or routing rules for blocking IPs.

    But can't nextdns.io be doing that very thing in THEIR end?

    I suppose nextdns is just doing the blocking on the OUTBOUND
    from the client pc?


    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Ogg@VERT/CAPCITY2 to poindexter FORTRAN on Tue Mar 23 21:35:00 2021
    @VIA: CAPCITY2
    @MSGID: <605A97D5.53648.dove-gen@capitolcityonline.net>
    @REPLY: <605A5975.46927.dove.dove-gen@realitycheckbbs.org>
    @TZ: ff10
    Hello poindexter FORTRAN!

    My BBS is running on a T60; I'm running Windows 10 32-bit.

    Wow. What GHz? Mine is the T2400 at 1.83GHz ..and 3GB of
    RAM which is the max for my model.

    I can't imagine putting Win10 on mine.

    Mine's the same, same memory, but with a 256 GB SSD. It
    runs the BBS, Winamp and shoutcast just fine, with Mozilla
    Seamonkey for web/mail/news/irc.

    I would have thought that Win7 would be a better match for our
    T60s if an upgrade was considered. It's not always wise to just
    upgrade to the next OS just because MS says that Win7 is
    nolonger supported. A pc's CPU speed and RAM could be very
    limiting issues.

    It runs decently, I can log onto it remotely and do work on
    it and not feel like it's running doggedly.

    Is the CPU fan running constantly? ;)

    Have you had to replace the CPU fan yet?

    According to Speccy, the CPU temp is 53-56C and the HDD temp is
    34C. I'm not doing anything else with this T60 except operating
    OpenXP with Firefox open in the background. WinXP here.

    Ok... I'll admit that I haven't done a defrag for several
    months. The T60 was 2nd hand, and arrived with the drive
    partitioned into C and H.

    BTW.. the defrag for the C partition (35GB) took about 2 hours!
    The H partition ran over 6 hours. :( But, I *do* perceive a
    modest improvement of progs loading a bit faster.

    I just did an HDTUNE on the C: drive, and I got around 100
    mb/sec - not great, but comparable to SATA-2.

    My results:

    HD Tune: WDC WD2500BEVS-08VAT Benchmark

    Transfer Rate Minimum : 11.1 MB/sec
    Transfer Rate Maximum : 71.6 MB/sec
    Transfer Rate Average : 55.1 MB/sec
    Access Time : 16.8 ms
    Burst Rate : 81.8 MB/sec
    CPU Usage : 4.1%


    Hybrids are definitely second-place to an SSD, and the
    prices have dropped now to the point that I'd go straight
    to an SSD.

    I would definately consider a SSD, and I'd love to boost up the
    storage from 236GB to atleast double that 'cuz it's already
    quite full. Would the T60 support a 1GB SSD?


    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From fusion@VERT/CFBBS to Ogg on Wed Mar 24 09:01:00 2021
    @VIA: CFBBS
    @MSGID: <605B387D.118196.dove-gen@vert.synchro.net>
    I would have thought that Win7 would be a better match for our
    T60s if an upgrade was considered. It's not always wise to just
    upgrade to the next OS just because MS says that Win7 is
    nolonger supported. A pc's CPU speed and RAM could be very
    limiting issues.

    tbh it's actually kind of nice to install win7 nowadays. one service pack and one update rollup i believe. if you go into the programs and features section (or whatever it's called) it looks basically *empty*. i remember i always dreaded an os refresh because windows 7 would be updating for the better part of a day.

    microsoft edge (the latest chrome based one not the m$ engine) even works perfectly.

    i think the only gotchas i had for my clean new system trying it out was needing the visual studio runtime for a few of the open source softwares you might use (including probably syncterm, and i know netrunner and synchronet for sure .. because of cryptlib according to the wiki?) and possibly a version of .Net 4 for a handful of things (e.g. PabloDraw)

    but if as it sounds the use case for the machine is fairly modest, that makes for a pretty slick install.

    --- Mystic BBS v1.12 A46 2020/08/26 (Windows/32)
    * Origin: cold fusion - cfbbs.net - grand rapids, mi
  • From Arelor@VERT/PALANT to Ogg on Wed Mar 24 09:13:25 2021
    @VIA: PALANT
    @MSGID: <605B4905.22106.dove-general@palantirbbs.ddns.net>
    @REPLY: <605A5A26.53633.dove-gen@capitolcityonline.net>
    @TZ: c168
    Re: nextdns
    By: Ogg to Arelor on Tue Mar 23 2021 05:13 pm

    Hello Arelor!

    ** On Tuesday 23.03.21 - 03:41, Arelor wrote to Ogg:

    If Nextdns is only offering DNS services, you cannot block IPs using DNS alone.
    You need either a proxy, a firewall or routing rules for blocking IPs.

    But can't nextdns.io be doing that very thing in THEIR end?

    I suppose nextdns is just doing the blocking on the OUTBOUND
    from the client pc?

    If they are just a DNS provider, they can just manipulate DNS traffic. If some software in your computer uses hardcoded IPs, its requests won t make use of DNS and
    will go straight to their destination without no DNS provider able to stop it.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From poindexter FORTRAN@VERT/REALITY to Ogg on Wed Mar 24 06:59:00 2021
    @VIA: REALITY
    @MSGID: <605B5308.46944.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605A97D5.53648.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Subject: Re: modems and community BBSes..hot again
    @MSGID: <605B5308.46944.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605A97D5.53648.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Ogg wrote to poindexter FORTRAN <=-

    I would have thought that Win7 would be a better match for our
    T60s if an upgrade was considered. It's not always wise to just
    upgrade to the next OS just because MS says that Win7 is
    nolonger supported. A pc's CPU speed and RAM could be very
    limiting issues.

    I could have put 7 on it, but I'm a little leery of the lack of updates -
    and I had a spare Windows 10 license laying around.


    It runs decently, I can log onto it remotely and do work on
    it and not feel like it's running doggedly.

    Is the CPU fan running constantly? ;)

    No, I'm running a fan utility on it, and keep an eye on the fan usage and temp. It runs OK, what I'm sure helps is that it's running in a storage
    space that runs about 10 degrees cooler than my house.

    Have you had to replace the CPU fan yet?

    I bought a new fan on eBay for $6, but it didn't report fan speed. I took
    the old fan, cleaned the blades and gave it a drop of 3-in-1 oil on the spindle an it quieted down nicely. Took the oppporunity to replace the CPU grease as well, which dropped the temp nicely.


    I would definately consider a SSD, and I'd love to boost up the
    storage from 236GB to atleast double that 'cuz it's already
    quite full. Would the T60 support a 1GB SSD?

    1TB? I don't see why it wouldn't. It seems that 2-3 TB is the limit on old machine BIOSes where they fail on bigger drives. Windows on my old T3400
    could use a 8TB drive, but the BIOS couldn't display it.


    ... Where is the edge?
    --- MultiMail/DOS v0.52
    Synchronet realitycheckBBS -- http://realitycheckBBS.org
  • From poindexter FORTRAN@VERT/REALITY to Arelor on Wed Mar 24 07:06:00 2021
    @VIA: REALITY
    @MSGID: <605B5308.46945.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <6059A9B5.22072.dove-general@palantirbbs.ddns.net>
    @TZ: c1e0
    Arelor wrote to Ogg <=-

    Nextdns.io offers a whole wack of blocklists. Perhaps there are
    specific IPs in those.

    If Nextdns is only offering DNS services, you cannot block IPs using
    DNS alone. You need either a proxy, a firewall or routing rules for blocking IPs.

    What they do is host the block list on their end, and return a bogus DNS result for items in the blocklist. I'm playing with them now.

    I'm noticing a lot of broken images, wonder if there's a client side way to clean that up. I'm assuming they're all resolving to 127.0.0.something,
    might be interesting to find a way to resolve any image link to a 1 pixel
    gif.


    ... Where is the edge?
    --- MultiMail/DOS v0.52
    Synchronet realitycheckBBS -- http://realitycheckBBS.org
  • From Arelor@VERT/PALANT to poindexter FORTRAN on Wed Mar 24 15:02:49 2021
    @VIA: PALANT
    @MSGID: <605B9AE9.22113.dove-general@palantirbbs.ddns.net>
    @REPLY: <605B5308.46945.dove.dove-gen@realitycheckbbs.org>
    @TZ: c168
    Re: Re: nextdns
    By: poindexter FORTRAN to Arelor on Wed Mar 24 2021 07:06 am

    Arelor wrote to Ogg <=-

    Nextdns.io offers a whole wack of blocklists. Perhaps there are
    specific IPs in those.

    If Nextdns is only offering DNS services, you cannot block IPs using DNS alone. You need either a proxy, a firewall or routing rules for blocking IPs.

    What they do is host the block list on their end, and return a bogus DNS result for items in the blocklist. I'm playing with them now.

    I'm noticing a lot of broken images, wonder if there's a client side way to clean that up. I'm assuming they're all resolving to 127.0.0.something, might be interesting to find a way to resolve any image link to a 1 pixel gif.


    ... Where is the edge?

    Ok, so they are a DNS provider with a blacklist for bad domains. Nice.

    Resolving image links to bogus 1x1 images does not work well because some websites will try to scale the images and you will get funky results. If you want that sort of procesing without breaking the layout, you need something like Privoxy, which replaced blocked known resources with placeholders of the apropiate dimensions. In fact I think that is what some browser-based adblockers do.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From Ogg@VERT/CAPCITY2 to poindexter FORTRAN on Thu Mar 25 00:35:00 2021
    @VIA: CAPCITY2
    @MSGID: <605C133D.53662.dove-gen@capitolcityonline.net>
    @REPLY: <605B5308.46944.dove.dove-gen@realitycheckbbs.org>
    @TZ: ff10
    Hello poindexter!

    ** On Wednesday 24.03.21 - 06:59, you wrote to me:

    I would have thought that Win7 would be a better match for our
    T60s..

    I could have put 7 on it, but I'm a little leery of the
    lack of updates -and I had a spare Windows 10 license
    laying around.

    I operate another Lenovo laptop, a G530 or something like that,
    and it only has XP. I use that one at one far end of my counter
    at the retail shop. It's on the internet all day, every day. I
    don't use any virus checker with it. Never a problem for over 10
    years. The key is to simply avoid visiting unknown sites on a
    whim.

    Is the CPU fan running constantly? ;)

    No, I'm running a fan utility on it, and keep an eye on the
    fan usage and temp. It runs OK, what I'm sure helps is that
    it's running in a storage space that runs about 10 degrees
    cooler than my house.

    I have a fan utility on the T60, but I forgot what package it is
    included with. Anyway, the new fan runs much quieter than the
    original. I *think* 56C is on the high end for CPU temp, but it
    seems to be steady and does not go higher.

    Have you had to replace the CPU fan yet?

    I bought a new fan on eBay for $6, but it didn't report fan speed. I took the old fan, cleaned the blades and gave it a drop of 3-in-1 oil on the spindle an it quieted down nicely. Took the oppporunity to replace the
    CPU grease as well, which dropped the temp nicely.

    I have SpeedFan 4.52, but it does not report a fan speed. :(

    I think I already threw out the old fan. I read about the easy
    clean+oil fix and was gung-ho to try it. But I decided to get a
    new fan first. When I took out the old fan, there was a lot of friction/resistance in the spin. But the new one spun very
    freely. I decided not to waste any more time than I already had
    having gutted the T60 on my kitchen counter.. and I wanted my
    T60 back and operational ASAP.

    I would definately consider a SSD, and I'd love to boost
    up the storage from 236GB to atleast double that 'cuz it's
    already quite full. Would the T60 support a 1GB SSD?

    1TB? I don't see why it wouldn't. It seems that 2-3 TB is the limit on
    old machine BIOSes where they fail on bigger drives. Windows on my old T3400 could use a 8TB drive, but the BIOS couldn't display it.

    There's a 1TB here for $100:

    https://www.crucial.com/compatible-upgrade-for/lenovo/thinkpad- t60-series-(type-6371)

    ..except mine is a type 2008VRQ. ..and the Type 2008 there
    shows "no compatible devices"

    Will have to revisit my account at thinkpad-forums and see what
    1TB brands/models other people are using for an SSD upgrade.


    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Nelgin@VERT/EOTLBBS to Ogg on Thu Mar 25 02:27:39 2021
    @VIA: EOTLBBS
    @MSGID: <605C3B6B.23793.dove-general@endofthelinebbs.com>
    @REPLY: <604A155D.53153.dove-gen@capitolcityonline.net>
    @TZ: c168
    Ogg wrote:
    Hello IB Joe!

    ** On Wednesday 10.03.21 - 20:57, IB Joe wrote to Boraxman:

    ... Something catastrophic is in the working. Analog
    modems and community BBSes are about to become real hot
    again.

    The copper has been pulled from a significant portion of the
    network. The internet is awash with too much junk code to make
    using it at 56K bearable.

    No kidding. Just as an example, I pulled down a marketwatch.com webpage. It
    had over 18,000 lines and came in at 2.6mb. That's without the images.
    Webpages have become so bloated due to all the standards they have to support.

    ---
    Synchronet End Of The Line BBS - endofthelinebbs.com
  • From Ogg@VERT/CAPCITY2 to Nelgin on Thu Mar 25 09:20:00 2021
    @VIA: CAPCITY2
    @MSGID: <605C8FA2.53673.dove-gen@capitolcityonline.net>
    @REPLY: <605C3B6B.23793.dove-general@endofthelinebbs.com>
    @TZ: ff10
    Hello Nelgin!

    ** On Thursday 25.03.21 - 02:27, Nelgin wrote to Ogg:

    The copper has been pulled from a significant portion of the
    network. The internet is awash with too much junk code to
    make using it at 56K bearable.

    No kidding. Just as an example, I pulled down a
    marketwatch.com webpage. It had over 18,000 lines and came
    in at 2.6mb. That's without the images. Webpages have become
    so bloated due to all the standards they have to support.

    I just hopped over there.

    With AdBlocker active, it blocked 12 items, and with nextdns.io
    activated.. ..the data stream was 0.8MB SENT, and 3MB RCVD for
    a total of 3.8MB before everything settled down. I still had
    most images.

    Interesting website though. Are you watching stock news for the
    stocks you own?

    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From poindexter FORTRAN@VERT/REALITY to Ogg on Fri Mar 26 06:42:00 2021
    @VIA: REALITY
    @MSGID: <605DE870.46978.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605C8FA2.53673.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Subject: Re: modems and community BBSes..hot again
    @MSGID: <605DE870.46978.dove.dove-gen@realitycheckbbs.org>
    @REPLY: <605C8FA2.53673.dove-gen@capitolcityonline.net>
    @TZ: c1e0
    Ogg wrote to Nelgin <=-

    No kidding. Just as an example, I pulled down a
    marketwatch.com webpage. It had over 18,000 lines and came
    in at 2.6mb. That's without the images. Webpages have become
    so bloated due to all the standards they have to support.

    I just hopped over there.

    With AdBlocker active, it blocked 12 items, and with nextdns.io activated.. ..the data stream was 0.8MB SENT, and 3MB RCVD for
    a total of 3.8MB before everything settled down. I still had
    most images.

    Part of what I like about tilde-space is bare-bones web sites, the revival
    of Gopherspace and now gemini pages.

    At home, I'm playing with nextdns.io, but lacking the time to fine-tune it. What I should do is find a way to make split-DHCP, so my kids get one set of DNS and network settings and the TVs and the "adult" PCs get Google DNS.


    --- MultiMail/DOS v0.52
    Synchronet realitycheckBBS -- http://realitycheckBBS.org
  • From Arelor@VERT/PALANT to poindexter FORTRAN on Fri Mar 26 15:47:06 2021
    @VIA: PALANT
    @MSGID: <605E484A.22140.dove-general@palantirbbs.ddns.net>
    @REPLY: <605DE870.46978.dove.dove-gen@realitycheckbbs.org>
    @TZ: c168
    Re: Re: modems and community BBSes..hot again
    By: poindexter FORTRAN to Ogg on Fri Mar 26 2021 06:42 am

    Ogg wrote to Nelgin <=-

    No kidding. Just as an example, I pulled down a
    marketwatch.com webpage. It had over 18,000 lines and came
    in at 2.6mb. That's without the images. Webpages have become
    so bloated due to all the standards they have to support.

    I just hopped over there.

    With AdBlocker active, it blocked 12 items, and with nextdns.io activated.. ..the data stream was 0.8MB SENT, and 3MB RCVD for
    a total of 3.8MB before everything settled down. I still had
    most images.

    Part of what I like about tilde-space is bare-bones web sites, the revival of Gopherspace and now gemini pages.

    At home, I'm playing with nextdns.io, but lacking the time to fine-tune it. What I should do is find a way to make split-DHCP, so my kids get one set of DNS and network settings and the TVs and the "adult" PCs get Google DNS.

    You had an OpenWRT router, right? If so, I think that is doable.

    It is certainly doable if you are serving DHCP from a Mikrotik.

    You can also hardcode the DNS each computer is supposed to use in order to skip the need of having to split your DHCP configuration.

    On my network I have the DNS servers assigned manually in the machines I control, and I have my router perform a MITM hijack on the DNS connections of everybody else so I force them to use my DNS servers instead. Many devices IGNORE DNS configuration and will use hardcoded servers (see mobile operating systems) so you have to hijack the connection if you want them to use a different one.

    BTW the exact procedure is docummented in Linux Magazine :-)

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From Ogg@VERT/CAPCITY2 to poindexter FORTRAN on Fri Mar 26 18:08:00 2021
    @VIA: CAPCITY2
    @MSGID: <605E5B5C.53688.dove-gen@capitolcityonline.net>
    @REPLY: <605DE870.46978.dove.dove-gen@realitycheckbbs.org>
    @TZ: ff10
    Hello poindexter!

    ** On Friday 26.03.21 - 06:42, you wrote to me:

    Part of what I like about tilde-space is bare-bones web sites, the
    revival of Gopherspace and now gemini pages.

    Tilde sounds familiar. Is that were all the messaging is pure
    text - put hard to find anything? <BG>

    Not familiar with gemini. Where would I find examples?

    At home, I'm playing with nextdns.io, but lacking the time to fine-tune it. What I should do is find a way to make split-DHCP, so my kids get one set of DNS and network settings and the TVs and the "adult" PCs get
    Google DNS.

    I'm not fine-tuning mine, just yet. I just picked a few
    blacklists for now.

    I let nextdns.io follow me from location to location. I use it
    on my T60 XP laptop at home, and then activate the account on my
    Win7 desktop pc at the shop when I am there. It remembers the
    last IP address that the account was used for.

    Sounds like you would need separate routers for each branch in
    the network: kids vs adult. Then, couldn't you program each
    router with its own set of DNS addresses to use?


    --- OpenXP 5.0.49
    * Origin: Ogg's Dovenet Point (723:320/1.9)
    Synchronet CAPCITY2 * capcity2.synchro.net * Telnet/SSH:2022/Rlogin/HTTP
  • From Arelor@VERT/PALANT to Ogg on Fri Mar 26 20:38:11 2021
    @VIA: PALANT
    @MSGID: <605E8C83.22147.dove-general@palantirbbs.ddns.net>
    @REPLY: <605E5B5C.53688.dove-gen@capitolcityonline.net>
    @TZ: c168
    Re: modems and community BBSes..hot again
    By: Ogg to poindexter FORTRAN on Fri Mar 26 2021 06:08 pm

    Sounds like you would need separate routers for each branch in
    the network: kids vs adult. Then, couldn't you program each
    router with its own set of DNS addresses to use?

    If you use a router for Real Administrators (tm) you can configure it to deliver different DNS settings for different computers in the network.

    If I was doing something like that I would not trust DHCP to enforce the DNS policy. If you are serious you need a packet filter in place to ensure they won't bypass your DNS policies easily. Students bypass DHCP->DNS policies every day.

    That said, users can often tunnel through your rules unless you are more hardcore than most admins. Eliminating unwanted traffic in a LAN is more complex than people thinks. If you end up jumping into that rabbit hole you will find yourself running packet inspectors to check the connections users get are acceptable... When you reach that point you are in it for a lof of technical and ethical issues.


    --
    gopher://gopher.richardfalken.com/1/richardfalken

    ---
    Synchronet Palantir BBS * palantirbbs.ddns.net * Pensacola, FL
  • From Rampage@VERT/SESTAR to Arelor on Sat Mar 27 08:02:43 2021
    @VIA: SESTAR
    @MSGID: <605F1EE3.22673.dove-general@sestar.synchro.net>
    @REPLY: <605E8C83.22147.dove-general@palantirbbs.ddns.net>
    @TZ: c12c
    Re: modems and community BBSes..hot again
    By: Arelor to Ogg on Fri Mar 26 2021 20:38:11


    That said, users can often tunnel through your rules unless you are
    more hardcore than most admins. Eliminating unwanted traffic in a
    LAN is more complex than people thinks. If you end up jumping into
    that rabbit hole you will find yourself running packet inspectors
    to check the connections users get are acceptable... When you reach
    that point you are in it for a lof of technical and ethical issues.

    this is also about the time when admins learn they cannot control social problems with technical restrictions... it takes a combination of technical and contractual implementations with proper enforcement...

    what i'm saying there is tighten the network controls to the level desired plus also have (eg) documentation that has to be agreed to which defines acceptable behavoir and usage of the network... admins would also retain logs
    for evidence of infractions...

    detection without enforcement is useless... by this i mean that, for example, a business would have an employee handbook... this handbook covers the usual employment rules and regulations which also include computer and
    network usage... violations would be handled as described in the handbook...

    so in a situation where unwanted network activity is detected and logged, HR would be brought in for the enforcement side... if the handbook allows for "three strikes", an employee may be terminated for violations... that's
    where the logs come into play for evidence...

    in any case, it can be tricky if the network is not properly managed and monitored... the technical side is one thing but it takes social enforcement also...


    )\/(ark

    ---
    Synchronet The SouthEast Star Mail HUB - SESTAR