From Newsgroup: news.software.nntp

Path: tcpreset/net
Server: news/tcpreset/net
Onion: peannyjkqwqfynd24p6dszvtchkq7hfkwymi5by5y332wmosy5dwfaqd.onion
Port: 119
accept from: news-out tcpreset net
feed to: news-in tcpreset net
Location: Nuremberg (DE)
Software: Ubuntu-22.04, INN2.6.4, Cleanfeed, Spamassassin
Contact: info(a)tcpreset.net
Abuse: abuse(a)tcpreset.net
IPv4: 94.130.76.71
ipv6: 2a01:4f8:c0c:2f94::1
Hierarchies: Only Text
Article size: <65536
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

On Thu, 3 Apr 2025 07:11:42 +0200
Gabx <info@tcpreset.invalid> wrote:

Onion: peannyjkqwqfynd24p6dszvtchkq7hfkwymi5by5y332wmosy5dwfaqd.onion

Hmm, I didn't know about this. Being on an anonymous network leaves it
well open to abuse. Do you limit public posting to people you know and
have approved accounts?
--
End Of The Line BBS - Plano, TX
telnet endofthelinebbs.com 23


--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Nigel Reed wrote:

On Thu, 3 Apr 2025 07:11:42 +0200
Gabx <info@tcpreset.invalid> wrote:

Onion: peannyjkqwqfynd24p6dszvtchkq7hfkwymi5by5y332wmosy5dwfaqd.onion

Hmm, I didn't know about this. Being on an anonymous network leaves it
well open to abuse. Do you limit public posting to people you know and
have approved accounts?

No,
our server intentionally operates as an open-access system: we do not
require registration or explicitly limit posting privileges only to
known users or pre-approved accounts.

However, to prevent abuse and spam effectively, we've implemented strong automated anti-abuse measures, including Cleanfeed, SpamAssassin, and a Hashcash-based proof-of-work mechanism.

A Hashcash token generation mechanism is designed to prevent automated
spam by requiring users to perform computational work (proof-of-work).
The higher the bits value, the greater the effort needed, significantly deterring spammers.

We are currently evaluating PyClean https://github.com/crooks/PyClean/tree/master and NoCeM to further
enhance these protections.

Additionally, we will soon implement secure NNTP connections via port
563, supporting TLS v1.2 and v1.3 with mandatory authentication.

Additionally, we actively monitor and moderate public postings to
maintain high standards without sacrificing user privacy or openness.

I understand your suggestion about requiring, for example, email-based authentication and registration as a means of identifying potential
abusers.

However, relying solely on email addresses doesn't necessarily guarantee
a clear or reliable identification of malicious users.

Email addresses are trivially easy for abusers to obtain anonymously or through disposable services, and thus cannot unequivocally distinguish legitimate users from abusers.

Consequently, our technical anti-abuse strategies and active moderation policies offer more practical, robust, and privacy-respecting protection against spam and malicious activities than email-based identification alone.

Moreover, I believe there's a fundamental misunderstanding regarding the
Onion network and spam: spam activities typically rely heavily on
clearnet due to the ease of automated bulk distribution and openness to
mass harvesting techniques.

Conversely, the Onion network, by design, introduces *latency* and complexityrCoconditions fundamentally incompatible with large-scale spam operations.
Far from facilitating abuse, Tor's nature often discourages spam and
mass attacks by making automated, high-volume transmissions costly and impractical.

I'd be happy to further discuss alternative strategies or enhancements
to address your concerns effectively.

I apologize for my lengthy explanations; however, i anticipated concerns
being raised about the onion address and wanted to address them clearly.

Best regards
Gabx
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

On 03.04.2025 07:11 Uhr Gabx wrote:

ipv6: 2a01:4f8:c0c:2f94::1

Connection refused from my system. Please investigate.
--
kind regards
Marco

Send spam to 1743657102muell@stinkedores.dorfdsl.de

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Marco Moock wrote:

On 03.04.2025 07:11 Uhr Gabx wrote:

ipv6: 2a01:4f8:c0c:2f94::1

Connection refused from my system. Please investigate.

It should work now!

Gabx

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

* Gabx wrote:

Nigel Reed wrote:

On Thu, 3 Apr 2025 07:11:42 +0200
Gabx <info@tcpreset.invalid> wrote:

Onion: peannyjkqwqfynd24p6dszvtchkq7hfkwymi5by5y332wmosy5dwfaqd.onion

Hmm, I didn't know about this. Being on an anonymous network leaves it
well open to abuse. Do you limit public posting to people you know and
have approved accounts?

No,
our server intentionally operates as an open-access system: we do not require registration or explicitly limit posting privileges only to
known users or pre-approved accounts.

However, to prevent abuse and spam effectively, we've implemented strong automated anti-abuse measures, including Cleanfeed, SpamAssassin, and a Hashcash-based proof-of-work mechanism.

A Hashcash token generation mechanism is designed to prevent automated
spam by requiring users to perform computational work (proof-of-work).
The higher the bits value, the greater the effort needed, significantly deterring spammers.

Given that you provide access via TOR and anonymous remailers using a mail2news gateway, how and where would you implement your "hashcash
proof of work", when there is no direct interaction between the users
and your server infrastructure?
--
-f-a|U-e-u-+ rCo -a-a-|-+-+|U
https://www.eternal-september.org
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

On 03.04.2025 22:10 Uhr Gabx wrote:

It should work now!

Still doesn't.
--
kind regards
Marco

Send spam to 1743711027muell@stinkedores.dorfdsl.de

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

On 4/3/2025 7:57 AM, Gabx wrote:

Nigel Reed wrote:

On Thu, 3 Apr 2025 07:11:42 +0200
Gabx <info@tcpreset.invalid> wrote:

Onion: peannyjkqwqfynd24p6dszvtchkq7hfkwymi5by5y332wmosy5dwfaqd.onion

Hmm, I didn't know about this. Being on an anonymous network leaves it
well open to abuse. Do you limit public posting to people you know and
have approved accounts?

No,
our server intentionally operates as an open-access system: we do not require registration or explicitly limit posting privileges only to
known users or pre-approved accounts.

However, to prevent abuse and spam effectively, we've implemented strong automated anti-abuse measures, including Cleanfeed, SpamAssassin, and a Hashcash-based proof-of-work mechanism.

A Hashcash token generation mechanism is designed to prevent automated
spam by requiring users to perform computational work (proof-of-work).
The higher the bits value, the greater the effort needed, significantly deterring spammers.

We are currently evaluating PyClean https://github.com/crooks/PyClean/tree/master and NoCeM to further
enhance these protections.

Additionally, we will soon implement secure NNTP connections via port
563, supporting TLS v1.2 and v1.3 with mandatory authentication.

Additionally, we actively monitor and moderate public postings to
maintain high standards without sacrificing user privacy or openness.

I understand your suggestion about requiring, for example, email-based authentication and registration as a means of identifying potential
abusers.

However, relying solely on email addresses doesn't necessarily guarantee
a clear or reliable identification of malicious users.

Email addresses are trivially easy for abusers to obtain anonymously or through disposable services, and thus cannot unequivocally distinguish legitimate users from abusers.

Consequently, our technical anti-abuse strategies and active moderation policies offer more practical, robust, and privacy-respecting protection against spam and malicious activities than email-based identification
alone.

Moreover, I believe there's a fundamental misunderstanding regarding the Onion network and spam: spam activities typically rely heavily on
clearnet due to the ease of automated bulk distribution and openness to
mass harvesting techniques.

Conversely, the Onion network, by design, introduces *latency* and complexityrCoconditions fundamentally incompatible with large-scale spam operations.
Far from facilitating abuse, Tor's nature often discourages spam and
mass attacks by making automated, high-volume transmissions costly and impractical.

I'd be happy to further discuss alternative strategies or enhancements
to address your concerns effectively.

I apologize for my lengthy explanations; however, i anticipated concerns being raised about the onion address and wanted to address them clearly.

Best regards
Gabx

Thanks!
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Ray Banana wrote:

Given that you provide access via TOR and anonymous remailers using a mail2news gateway, how and where would you implement your "hashcash
proof of work", when there is no direct interaction between the users
and your server infrastructure?

Currently, the code shown only generates the Hashcash token; however, to properly implement this as an anti-spam tool, we still need to integrate server-side verification and force users to include it in messages they
send.
Work in progress.

Gabx
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

I would suggest that you take a closer look at hashcash implementations, because they can slightly differ from the original. Maybe also useful for
you, if you check how Omnimix does it.

https://www.danner-net.de/omom/tutorremailhashcash.htm

Regards
Stefan

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Stefan Claas wrote:

I would suggest that you take a closer look at hashcash implementations, because they can slightly differ from the original. Maybe also useful for you, if you check how Omnimix does it.

https://www.danner-net.de/omom/tutorremailhashcash.htm

BTW. I guess you changed something. My article was quoted at the beginning
and shows now only the last paragraph. It also seems that you changed something with the Newsgroups: header, so that it must appears first.

Before these changes, everything worked perfectly.

Regards
Stefan
--
Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Stefan Claas wrote:

Stefan Claas wrote:

I would suggest that you take a closer look at hashcash implementations, because they can slightly differ from the original. Maybe also useful for you, if you check how Omnimix does it.

https://www.danner-net.de/omom/tutorremailhashcash.htm

BTW. I guess you changed something. My article was quoted at the beginning and shows now only the last paragraph. It also seems that you changed something
with the Newsgroups: header, so that it must appears first.

Before these changes, everything worked perfectly.

And there is a typo for the Web Interface. It sends as MIME UTF-8 7bit,
instead of 8bit.

Regards
Stefan
--
Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Ray Banana <rayban@raybanana.net> wrote in news:slrnvuuss4.2m3fj.rayban@raybanana.net:

* Gabx wrote:

Nigel Reed wrote:

On Thu, 3 Apr 2025 07:11:42 +0200
Gabx <info@tcpreset.invalid> wrote:

Onion:
peannyjkqwqfynd24p6dszvtchkq7hfkwymi5by5y332wmosy5dwfaqd.onion

Hmm, I didn't know about this. Being on an anonymous network leaves
it well open to abuse. Do you limit public posting to people you
know and have approved accounts?

No,
our server intentionally operates as an open-access system: we do not
require registration or explicitly limit posting privileges only to
known users or pre-approved accounts.

However, to prevent abuse and spam effectively, we've implemented
strong automated anti-abuse measures, including Cleanfeed,
SpamAssassin, and a Hashcash-based proof-of-work mechanism.

A Hashcash token generation mechanism is designed to prevent
automated spam by requiring users to perform computational work
(proof-of-work). The higher the bits value, the greater the effort
needed, significantly deterring spammers.

Given that you provide access via TOR and anonymous remailers using a mail2news gateway, how and where would you implement your "hashcash
proof of work", when there is no direct interaction between the users
and your server infrastructure?

Pardon the intrusion.

The same place you have yours for that jerk idiot sporger/forger using
your server that has ruined public access for the surviving usenet base
today. His style is unmistakable. You can pluck it out like an AI forged term paper.

These are some of the servers he has helped ruin or caused public access restrictions.

news.albasani.net
news.dns-netz.com
freenews.netfront.net
open-news
freedyne
neodome
tula
There's more.

You're a good guy Ray, and we do appreciate your contributions and
services. If we [ytiw] ever get our hands on this character, he'll finish life typing with his toes and penis.

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Marco Moock wrote:

On 03.04.2025 07:11 Uhr Gabx wrote:

ipv6: 2a01:4f8:c0c:2f94::1

Connection refused from my system. Please investigate.

????

gabriel1@victor:~$ ping6 2a01:4f8:c0c:2f94::1
PING 2a01:4f8:c0c:2f94::1(2a01:4f8:c0c:2f94::1) 56 data bytes
64 bytes from 2a01:4f8:c0c:2f94::1: icmp_seq=1 ttl=53 time=5.16 ms
64 bytes from 2a01:4f8:c0c:2f94::1: icmp_seq=2 ttl=53 time=2.85 ms
64 bytes from 2a01:4f8:c0c:2f94::1: icmp_seq=3 ttl=53 time=3.20 ms

ip6tables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination


Chain OUTPUT (policy ACCEPT)
target prot opt source destination

root@news:/var/www/usenet# ip -6 route
::1 dev lo proto kernel metric 256 pref medium
2a01:4f8:c0c:2f94::/64 dev eth0 proto kernel metric 256 pref medium
fe80::/64 dev eth0 proto kernel metric 256 pref medium
default via fe80::1 dev eth0 proto static metric 1024 onlink pref medium

root@news:/var/www/usenet# sysctl net.ipv6.conf.all.disable_ipv6 net.ipv6.conf.all.disable_ipv6 = 0




--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

On 05.04.2025 09:26 Uhr Gabx wrote:

Marco Moock wrote:

On 03.04.2025 07:11 Uhr Gabx wrote:

ipv6: 2a01:4f8:c0c:2f94::1

Connection refused from my system. Please investigate.

????

gabriel1@victor:~$ ping6 2a01:4f8:c0c:2f94::1
PING 2a01:4f8:c0c:2f94::1(2a01:4f8:c0c:2f94::1) 56 data bytes
64 bytes from 2a01:4f8:c0c:2f94::1: icmp_seq=1 ttl=53 time=5.16 ms
64 bytes from 2a01:4f8:c0c:2f94::1: icmp_seq=2 ttl=53 time=2.85 ms
64 bytes from 2a01:4f8:c0c:2f94::1: icmp_seq=3 ttl=53 time=3.20 ms

Ping is something entirely different than TCP.

Run ss -tl
and check if NNTP and SMTP are listed for [::].
--
kind regards
Marco

Send spam to 1743838002muell@stinkedores.dorfdsl.de

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Es schrieb einmal Stefan Claas:

And there is a typo for the Web Interface. It sends as MIME UTF-8 7bit, instead of 8bit.

7bit or 8bit depends on whether 8-bit characters appear in the body or not.
The charset is irrelevant.

_ __
(1(1-o)
Alfred
X'Post
--
EfCuEfCeEfCUEfCiEfCi 25258.9
EfC?EfCU EfCoEfCeEfCa
EfCYEfC?EfCi
EfCREfCYEfCiEfCoEfCuEfCaEfCR
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Alfred Peters wrote:

Es schrieb einmal Stefan Claas:

And there is a typo for the Web Interface. It sends as MIME UTF-8 7bit, instead of 8bit.

7bit or 8bit depends on whether 8-bit characters appear in the body or not. The charset is irrelevant.

In the Web Interface it displays UTF-8 characters properly but then the
Usenet posting does not display the charaters correctly in a News Reader.

Regards
Stefan
--
Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Es schrieb einmal Stefan Claas:

Alfred Peters wrote:

Es schrieb einmal Stefan Claas:

And there is a typo for the Web Interface. It sends as MIME UTF-8 7bit,
instead of 8bit.

7bit or 8bit depends on whether 8-bit characters appear in the body or not. >> The charset is irrelevant.

In the Web Interface it displays UTF-8 characters properly but then the Usenet posting does not display the charaters correctly in a News Reader.

Message-ID?

Alfred
X'Post
--
EfCeEfCUEfCu 25259.4
EfCuEfCnEfCuEfCuEfCcEfCiEfCUEfCeEfCu
EfCNEfCcEfCnEfCiEfCN
EfCiEfCiEfCu
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Alfred Peters wrote:

Es schrieb einmal Stefan Claas:

Alfred Peters wrote:

Es schrieb einmal Stefan Claas:

And there is a typo for the Web Interface. It sends as MIME UTF-8 7bit, instead of 8bit.

7bit or 8bit depends on whether 8-bit characters appear in the body or not.
The charset is irrelevant.

In the Web Interface it displays UTF-8 characters properly but then the Usenet posting does not display the charaters correctly in a News Reader.

Message-ID?

<vsoprv$pbto$1@news.tcpreset.net>

Regards
Stefan
--
Onion Courier Home Server Mon-Fri 15:00-21:00 UTC Sat-Sun 11:00-21:00 UTC ohpmsq5ypuw5nagt2jidfyq72jvgw3fdvq37txhnm5rfbhwuosftzuyd.onion:8080 inbox
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: news.software.nntp

Es schrieb einmal Stefan Claas:

Es schrieb einmal Stefan Claas:

In the Web Interface it displays UTF-8 characters properly but then the
Usenet posting does not display the charaters correctly in a News Reader.

<vsoprv$pbto$1@news.tcpreset.net>

| ???????\u1e9e\u20ac
|
| https://m2usenet.virebent.art/
|
| --
| Gr??e

As I said: there are no 8-bit chars, so 7bit is correct. :*)

The 8-bit chars are obviously smashed beforehand.

Alfred
X'Post
--
EfCoEfCLEfCiEfCoEfCU 25259.8
EfCUEfCe
EfCaEfCaEfCaEfCaEfCeEfCiEfCAEfCA
EfCCEfCa EfCCEfCLEfCa
--- Synchronet 3.21a-Linux NewsLink 1.2