Hi Guys..

Just letting you know over the next few weeks I probably wont be as
active as I have been the last couple. I'm going to visit my mum on
Saturday for two weeks.

I don't want to start anything particularly big this week, and then go
away and leave you all with broken systems or anything like that.

Sending old messages to DoveNet as Blue White reported is not good, and
I've not been able to figure out why it did that... Hopefully it doesn't
do it again, but if you're on any qwk networks, please keep an eye on
them.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

Just letting you know over the next few weeks I probably wont be as
active as I have been the last couple. I'm going to visit my mum on Saturday for two weeks.

I hope you have good visit and time away.. :)

Sending old messages to DoveNet as Blue White reported is not good, and I've not been able to figure out why it did that... Hopefully it
doesn't do it again, but if you're on any qwk networks, please keep an
eye on them.

I haven't noticed any dupe or old messages here so I think they got
caught as dupes before they got to far.

I can't seem to download a QWK packet here. I have tested BW downloads
and replies and they seem to work fine but when I try a QWK download I
get only timeouts. I have only tried with MagiTerm so far.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Just letting you know over the next few weeks I probably wont be as
active as I have been the last couple. I'm going to visit my mum on Saturday for two weeks.

I hope you have good visit and time away.. :)

Thanks :)

I can't seem to download a QWK packet here. I have tested BW downloads
and replies and they seem to work fine but when I try a QWK download I
get only timeouts. I have only tried with MagiTerm so far.

That's odd.. what version of MagiTerm?

I just tried downloading a QWK packet from you, and it downloaded just
fine? Might be a magiterm issue.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

That's odd.. what version of MagiTerm?

0.9.95, I don't think you've made any changes since.

I just tried downloading a QWK packet from you, and it downloaded just fine? Might be a magiterm issue.

I've also tried via telnet and can't seem to get a QWK. BW is fine.

In SyncTERM is see..

Sending ZRINIT
Warning: recv_header_raw: Expected ZDLE, received 'n' (6Eh)

I think the pointers are set as read at that point but I have not
received a QWK packet.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

I think the pointers are set as read at that point but I have not
received a QWK packet.

QWK downloads should be fixed now.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

QWK downloads should be fixed now.

Cool.. I'll go check that out now.

On another note I was just chatting about BBSing securely with ssh or
over th web. Is it possible to use https with Magicka?

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

QWK downloads should be fixed now.

Cool.. I'll go check that out now.

On another note I was just chatting about BBSing securely with ssh or
over th web. Is it possible to use https with Magicka?

Sort of, I use apache as the webserver and proxy through to magicka (so basically magicka listens on 8080, apache is set up with SSL and listens
on 443 and proxys through requests.)

Magicka itself doesn't support https, I think it's better to use apache
(or some other webserver as a front end) as it will give a message if it
can't contact the bbs http, so users know there is a problem and you
haven't dissappeared.

Also, I have magicka at https://magickabbs.com/bbs/ as the root.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

apam wrote to Al <=-

I think the pointers are set as read at that point but I have not
received a QWK packet.

QWK downloads should be fixed now.

Still no joy, but now I do have a 0 byte TRMB.QWK in my home directory so it
is trying. BW seems to be fine though, and this reply is coming via a BW
reply.

Ttyl :-),
Al

... I didn't claw my way to the top of the food chain to eat vegetables!
--- MultiMail/Linux
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Just looking at the web interface, it seems all your file areas are open to anyone to download including your uploads folder. Not sure if any/all of that is intentional for a non-logged in user?

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

Just looking at the web interface, it seems all your file areas are open to anyone to download including your uploads folder. Not sure if any/all of that is intentional for a non-logged in user?

The uploads folder shouldn't be no but there is nothing happening there
right now. I have three (I think) missing message areas here. I dunno how
that happened.. dunno what areas they are.. :)

Once I sort that I'm going to go on to the file areas.

I haven't though much about access to the file areas. Are there areas
that should be open on the BBS but not the web?

Ponder.. ponder.. ponder.. :)

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Sort of, I use apache as the webserver and proxy through to magicka (so basically magicka listens on 8080, apache is set up with SSL and
listens on 443 and proxys through requests.)

Magicka itself doesn't support https, I think it's better to use apache (or some other webserver as a front end) as it will give a message if
it can't contact the bbs http, so users know there is a problem and you haven't dissappeared.

OK, I dunno what you just said there.. :)

I'm going to leave all this for another day.

Just to wrap my head around this, apache is the server answering on port
80 and 443 and passing to magicka listening on port 8080?

So in that case I'd need to setup apache in a way that is ssl or https compatible and it will communicate with magicka on port 8080?

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

On Sun, 3 Nov 2019 23:06:42 -0800
"Al -> apam" <0@106.4.21> wrote:

On another note I was just chatting about BBSing securely with ssh or
over th web. Is it possible to use https with Magicka?

I also think it's best to use a reverse proxy in front of Magicka. The easiest one to configure might be Caddy:

https://github.com/caddyserver/caddy/wiki/v2:-Documentation#reverse-proxy

Nginx is also very good as a proxy.

---
* Origin: (21:1/151)

On Sun, 3 Nov 2019 23:52:56 -0800
"Al -> apam" <0@106.4.21> wrote:

Just to wrap my head around this, apache is the server answering on port
80 and 443 and passing to magicka listening on port 8080?

So in that case I'd need to setup apache in a way that is ssl or https compatible and it will communicate with magicka on port 8080?

Yes. See: https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html
(you can ignore the cluster and balancing stuff)

Don't forget to enable mod_proxy.

With nginx it's also easy: https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/

---
* Origin: (21:1/151)

Just looking at the web interface, it seems all your file areas are open to anyone to download including your uploads folder. Not sure if any/all of that is intentional for a non-logged in user?

Uploads have to be approved by the sysop first, so it's not possible to unintentionally have an upload in the upload folder that hasn't been
vetted by the sysop first.

File areas need to be configured to show on the web server, so Al would
have done that intentionally, by default no file areas show up.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

apam wrote to Al <=-

I think the pointers are set as read at that point but I have not
received a QWK packet.

QWK downloads should be fixed now.

Still no joy, but now I do have a 0 byte TRMB.QWK in my home directory
so it is trying. BW seems to be fine though, and this reply is coming
via a BW reply.

Ok, I'm going to assume you tried with SSH and lrzsz...

It's fixed now (at least should be) it turned out to be a series of
problems (not just qwk related).

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

I also think it's best to use a reverse proxy in front of Magicka. The easiest one to configure might be Caddy:

https://github.com/caddyserver/caddy/wiki/v2:-Documentation#reverse-prox
y

Nginx is also very good as a proxy.

When you say proxy that is different than a web server, or is nginx a
server and proxy together?

I'll have to get into the docs and figure this out.

I have used apache by itself before ssh was a thing. The proxy part I
don't uderstand at all.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

On Sun, 3 Nov 2019 23:52:56 -0800
"Al -> apam" <0@106.4.21> wrote:

Just to wrap my head around this, apache is the server answering on port
80 and 443 and passing to magicka listening on port 8080?

So in that case I'd need to setup apache in a way that is ssl or https compatible and it will communicate with magicka on port 8080?

Yes. See: https://httpd.apache.org/docs/2.4/howto/reverse_proxy.html
(you can ignore the cluster and balancing stuff)

Yep, that's how I have it set up. Port 8080 is firewalled off to the
world, and apache talks to localhost.

I could add ssl support to magicka (libmicrohttpd supports it) but I
think it's better to use a proper webserver and forward them.

Plus the added bonus is you can serve other things with apache at the
same time.

Andrew



--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

With nginx it's also easy: https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/

nginx may not be all that apache is but I'm not putting up amazon.com
either.

Do you think nginx is a good route to follow? I'll look at both but just looking for ideas & opinions.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Still no joy, but now I do have a 0 byte TRMB.QWK in my home directory
so it is trying. BW seems to be fine though, and this reply is coming
via a BW reply.

Ok, I'm going to assume you tried with SSH and lrzsz...

It's fixed now (at least should be) it turned out to be a series of problems (not just qwk related).

I think I tried both but I've been all over the place.. :)

I'll git pull and go over telnet/ssh and zmodem/lrzsz.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

On 04 Nov 2019 at 06:13p, apam pondered and said...

Uploads have to be approved by the sysop first, so it's not possible to unintentionally have an upload in the upload folder that hasn't been vetted by the sysop first.

OK thanks. Still seems strange to me that that directory/folder would be publicly downloadable in any regard.

File areas need to be configured to show on the web server, so Al would have done that intentionally, by default no file areas show up.

OK but should they not be downloadable only if logged in, much like you can only view messages if logged in? Or some bases flagged as freely downloadable such as infopacks etc. but the rest locked out until logged in?

Just some thoughts...

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

Yep, that's how I have it set up. Port 8080 is firewalled off to the world, and apache talks to localhost.

I could add ssl support to magicka (libmicrohttpd supports it) but I
think it's better to use a proper webserver and forward them.

Plus the added bonus is you can serve other things with apache at the
same time.

K, if you think a web server in front is better then that's the way we'll
go. I've used apache before. It hogged a lot of resources that I had
available at the time and didn't care about. I have limits where I am
now.

What do you think about apache/nginx with the above in mind?

May not be much difference, I'm not sure and haven't used a web server
for about 15 years or so.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

On 03 Nov 2019 at 11:39p, Al pondered and said...

The uploads folder shouldn't be no but there is nothing happening there right now. I have three (I think) missing message areas here. I dunno how

there was a lot when I check an hour ago... some ansi for you etc...

I haven't though much about access to the file areas. Are there areas
that should be open on the BBS but not the web?

Ponder.. ponder.. ponder.. :)

I'd suggest if messages have a mediated access via login why not apply the
same to file areas or at least some?

--- Mystic BBS v1.12 A43 2019/03/03 (Windows/32)
* Origin: Agency BBS | Dunedin, New Zealand | agency.bbs.nz (21:1/101)

On Mon, 4 Nov 2019 00:16:48 -0800
"Al -> Oli" <0@106.4.21> wrote:

Nginx is also very good as a proxy.

When you say proxy that is different than a web server, or is nginx a server and proxy together?

Apache, Nginx and Caddy are web servers that can serve content from the hard disk, but also can forward connections to another web server (reverse proxy).

There is other software that only does proxying like haproxy.

I'll have to get into the docs and figure this out.

I have used apache by itself before ssh was a thing. The proxy part I
don't uderstand at all.

Apache just opens a connection as a HTTP client to you localhost server.

There is also the HTTP proxy server that you can configure in your browser, but
that is something different.

---
* Origin: (21:1/151)

OK but should they not be downloadable only if logged in, much like you can only view messages if logged in? Or some bases flagged as freely downloadable such as infopacks etc. but the rest locked out until logged in?

Each directory has to be shared for it to show up, it's not an all or
nothing thing. So the general directory could be hidden, and just
directories with info pack areas shown if that's what the sysop wanted.

Logging in doesn't affect which file areas you see, I suppose I could
add another only if logged in show this directory. I personally don't
like showing any file directories on the web (and have mine all turned
off - which is the default).

Tiny was the one who asked for the files on the web feature so it was
kind of written with his requirements in mind, though I can definitely
add to it if others would like.

Andrew



--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

K, if you think a web server in front is better then that's the way
we'll go. I've used apache before. It hogged a lot of resources that I
had available at the time and didn't care about. I have limits where I
am now.

What do you think about apache/nginx with the above in mind?

I don't really have experience with nginx but I've heard it's lighter. I
think I'm on a similar tier at vultr as you on linode, apache doesn't
seem to to take up that much.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

Avon wrote to apam <=-

OK thanks. Still seems strange to me that that directory/folder would
be publicly downloadable in any regard.

When I first setup magicka I had files I needed to upload because ssh is restricted to public key authentication and I didn't have that on the old
BBBS host, so it was just for my own use.

I don't have that issue now so I'll ponder all that as I'm just a day or
three away from getting the file areas working properly.

Ttyl :-),
Al

... As easy as 3.1415926535897932384626433832795028841
___ MultiMail/Linux v0.52

--- MagickaBBS/QWK v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

On Mon, 4 Nov 2019 00:31:30 -0800
"Al -> apam" <0@106.4.21> wrote:

I've used apache before. It hogged a lot of resources that I had
available at the time and didn't care about. I have limits where I am
now.

What do you think about apache/nginx with the above in mind?

Most resources are hogged by PHP and databases. Apache and nginx itself doesn't
need much. Nginx is better than Apache in that regard. I think Apache <20 MB and Nginx <5MB RAM.

---
* Origin: (21:1/151)

Most resources are hogged by PHP and databases. Apache and nginx itself doesn't need much. Nginx is better than Apache in that regard. I think Apache <20 MB and Nginx <5MB RAM.

That won't pose a problem, I'm currently using 80 out of 987Mb so I do
have some room to move here.

I'll check out the debian repo and try out nginx for a start and see how
it goes.

I'll likely have questions. For example I have no idea how to get the
certs in place to enable ssh but I'll get nginx up and running and go
from there.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

I don't have that issue now so I'll ponder all that as I'm just a day
or three away from getting the file areas working properly.

Well I've just added an option to restrict some file directories to
users logged in.

Display on Web can now be true, false or authenticated.

The directory listing will show authenticated and true directories (authenticated will be marked as restricted - i can't hide them with the current auth system).

file listings for authenticated will require users to be logged in.

Hope that helps.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

apam wrote to Al <=-

I don't have that issue now so I'll ponder all that as I'm just a day
or three away from getting the file areas working properly.

Well I've just added an option to restrict some file directories to
users logged in.

Excellent. I think that covers all the bases. In my case all files will be available to whoever wants to look download. As far as I recall it is all shareware or free to use that I have here but it's good to be able to keep stuff to bbs users only in some cases.

I'll certainly setup the uploads directory so it's unseen by anyone though.

Ttyl :-),
Al

... Misspelled? Impossible. My modem is error correcting.
--- MultiMail/Linux
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Re: RE: Stuff
By: Al to Oli on Mon Nov 04 2019 01:18 am

I'll check out the debian repo and try out nginx for a start and see how it goes.

I use nginx exclusively now - I moved from apache a few years ago. And mostly in proxy mode.

Yell out if you have troubles, and I should be able to help. (I use nginx in docker - with certbot installed, so it auto renews the certificates automatically from Lets Encrypt.)
...δεσπ

... Love is being willing to share your toothbrush with someone else.
--- SBBSecho 3.10-Linux
* Origin: Alterant | An SBBS in Docker on Pi! (21:2/116)

I'll likely have questions. For example I have no idea how to get the certs in place to enable ssh but I'll get nginx up and running and go
from there.

Well, I just added HTTPS support to magicka. Although I'd probably still recommend using apache or nginx.. it's possible to do it with just
magicka.

Checkout the BBS.INI in dist for all the knobs and dials.

You can listen with both http and https, you can listen with only http
or only https, you can listen with both and forward http to https.

You will have to setcap to bind port 80 and 443 if you want.

Andrew


--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

Quoting apam to All <=-

Just letting you know over the next few weeks I probably wont be as
active as I have been the last couple. I'm going to visit my mum on Saturday for two weeks.

Have a good visit! Is it a far drive?

I don't want to start anything particularly big this week, and then go away and leave you all with broken systems or anything like that.

Makes sense. Also good to take a break after the last couple weeks.
Don't want to burn out.

Shawn

... Communism is the opiate of the intellectuals.

--- EzyBlueWave V3.00 01FB001F
* Origin: Tiny's BBS - telnet://tinysbbs.com:3023 (21:1/130)

Quoting apam to Al <=-

I just tried downloading a QWK packet from you, and it downloaded just fine? Might be a magiterm issue.

I've noticed the file transfer issue seems to have reversed here. ie:
uploads now work fine, but downloads are troublesome.

I've just switched back to syncterm for my offline mail packet runs,
and magiterm if I'm calling for anything else.

Shawn

... He's all crown - no filling.

--- EzyBlueWave V3.00 01FB001F
* Origin: Tiny's BBS - telnet://tinysbbs.com:3023 (21:1/130)

Quoting apam to Avon <=-

Tiny was the one who asked for the files on the web feature so it was
kind of written with his requirements in mind, though I can definitely
add to it if others would like.

I still use it, over the years a lot of people have grabbed files that
google indexed. I just didn't want to lose the feature.

Shawn

... As I said before, I never repeat myself.

--- EzyBlueWave V3.00 01FB001F
* Origin: Tiny's BBS - telnet://tinysbbs.com:3023 (21:1/130)

Quoting Alterego to Al <=-

I use nginx exclusively now - I moved from apache a few years ago. And mostly in proxy mode.

I'll check it out as well. I find apache is a bear to configure, when
ubuntu moved it's config files around I am just so damn lost now. I
configured the windows version in about 15 mins for the virtual
domains and everything, but ubuntu has been kicking my ass for 2 weeks
now. Of course I also haven't really looked at it for over a week.
LOL

Shawn

... Failure has gone to his head.

--- EzyBlueWave V3.00 01FB001F
* Origin: Tiny's BBS - telnet://tinysbbs.com:3023 (21:1/130)

Yell out if you have troubles, and I should be able to help. (I use
nginx in docker - with certbot installed, so it auto renews the certificates automatically from Lets Encrypt.)

Thanks, I'll hollar! :)

I need to somehow get a cert created and installed then knowing how to
keep it upto date would be good although I just need to get off the
ground now.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Well, I just added HTTPS support to magicka. Although I'd probably
still recommend using apache or nginx.. it's possible to do it with
just magicka.

OK, if magicka has the ability I'll start there.

Checkout the BBS.INI in dist for all the knobs and dials.

I have run setcap on magicka and changed the port to 80. I'll stop there
until I have a cert ready for magicka to use.

You can listen with both http and https, you can listen with only http
or only https, you can listen with both and forward http to https.

This is an uneducated guess, but I think listening on both is good and forwarding http to https is good practice?

I think I also need a certificate of some kind.. how do I get one?

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Tiny was the one who asked for the files on the web feature so it was
kind of written with his requirements in mind, though I can definitely
add to it if others would like.

I still use it, over the years a lot of people have grabbed files
that google indexed. I just didn't want to lose the feature.

Yep, and google has lead me to your site many times. I had the same sort
of idea for The Rusty MailBox.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Well, I just added HTTPS support to magicka. Although I'd probably
still recommend using apache or nginx.. it's possible to do it with
just magicka.

If one is interested in having other websites (or a static one forthe
BBS as well) you still need apache or nginx anyway. I'll setup Magicka
to help test the https support but once I figure out my apache config I
think I'll go back to the old proxy way of doing it that I did on the pi.

Nice feature add though! I'm sure it will help a lot of people out!

Shawn


--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: Tiny's BBS - telnet://tinysbbs.hopto.org:2023 (21:1/130)

On Mon, 4 Nov 2019 05:32:38 -0800
"Al -> apam" <0@106.4.21> wrote:

This is an uneducated guess, but I think listening on both is good and forwarding http to https is good practice?

Yes, it is.

I think I also need a certificate of some kind.. how do I get one?

Letsencrypt. There are a thousand clients and several ways how to get a letsencrypt cert. I don't have any recommendation, because I'm using Cloudflare
and self-signed certs.

Maybe you find enough information at
https://letsencrypt.org/getting-started/
https://certbot.eff.org/

---
* Origin: (21:1/151)

Quoting apam to All <=-

Just letting you know over the next few weeks I probably wont be as
active as I have been the last couple. I'm going to visit my mum on Saturday for two weeks.

Have a good visit! Is it a far drive?

Oh yes, a very far drive... I'll be flying :) It would take about 2 days driving (and I can't drive anyway)

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

Well, I just added HTTPS support to magicka. Although I'd probably
still recommend using apache or nginx.. it's possible to do it with
just magicka.

I have the cert installed and it seems to be working.

Just magicka now, and if that does the trick I'll leave it like that.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

I think I also need a certificate of some kind.. how do I get one?

Letsencrypt. There are a thousand clients and several ways how to get a letsencrypt cert. I don't have any recommendation, because I'm using Cloudflare and self-signed certs.

Thanks for the links and suggestions.

Maybe you find enough information at https://letsencrypt.org/getting-started/
https://certbot.eff.org/

I went with https://certbot.eff.org/ and it was quite painless. I hope it
goes on being painless.. :)

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)

Well, I just added HTTPS support to magicka. Although I'd probably
still recommend using apache or nginx.. it's possible to do it with
just magicka.

I have the cert installed and it seems to be working.

Just magicka now, and if that does the trick I'll leave it like that.

Nice!

Hope it works for you.

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

Quoting Al to Tiny <=-

Yep, and google has lead me to your site many times. I had the same
sort of idea for The Rusty MailBox.

Glad it has helped!

Shawn

... Gambling: The sure way of getting nothing for something.

--- EzyBlueWave V3.00 01FB001F
* Origin: Tiny's BBS - telnet://tinysbbs.com:3023 (21:1/130)

Quoting apam to Tiny <=-

Oh yes, a very far drive... I'll be flying :) It would take about 2
days driving (and I can't drive anyway)

Well then safe flight! ;)

Shawn

... Academic rivalries are so intense because the stakes are so small.

--- EzyBlueWave V3.00 01FB001F
* Origin: Tiny's BBS - telnet://tinysbbs.com:3023 (21:1/130)

Quoting apam to Tiny <=-

Oh yes, a very far drive... I'll be flying :) It would take about 2
days driving (and I can't drive anyway)

Well then safe flight! ;)

Thanks :)

Andrew

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: HappyLand - telnet://magickabbs.com:2023/ (21:1/126)

Just looking at the web interface, it seems all your file areas are open to anyone to download including your uploads folder. Not sure if any/all of that is intentional for a non-logged in user?

I have the file areas setup now, still a bunch of local and fido areas to import but I'll keep working on that.. :)

There are only a few files in the upload folder and they are all OK to
download if anyone wants although I'll move files to a better directory
at some point if they are keepers.

If anyone uploads a file they are not visable unless I toggles them to be visable so I think it's all good.

I appreciate you looking and do let me know if you see something that
shouldn't be.

Ttyl :-),
Al

--- MagickaBBS v0.13alpha (Linux/x86_64)
* Origin: The Rusty MailBox - Penticton, BC Canada (21:4/106)