Forbidden

Discussion of anything and everything relating to chess playing software and machines.

Moderators: Harvey Williamson, bob, hgm

Forum rules
This textbox is used to restore diagrams posted with the [d] tag before the upgrade.
Modern Times
Posts: 2604
Joined: Thu Jun 07, 2012 9:02 pm

Re: Forbidden

Post by Modern Times » Tue May 26, 2020 4:07 pm

This is surely just a temporary situation, so as they say here, "keep calm and carry on" :)
.

Opinions expressed here are my own, and not necessarily those of the CCRL Group.

User avatar
xr_a_y
Posts: 1319
Joined: Sat Nov 25, 2017 1:28 pm
Location: France

Re: Forbidden

Post by xr_a_y » Tue May 26, 2020 4:50 pm

noobpwnftw wrote:
Tue May 26, 2020 2:30 pm
With regional IP block, you sure you are preventing more hackers than normal users? :D
Good point ! hackers can very easily use attacking facilities from various region of the world...

By the way, from this canadian ip 51.222.29.xxx, I cannot access either (Québec).

Joost Buijs
Posts: 1174
Joined: Thu Jul 16, 2009 8:47 am
Location: Almere, The Netherlands

Re: Forbidden

Post by Joost Buijs » Tue May 26, 2020 6:25 pm

Modern Times wrote:
Tue May 26, 2020 4:07 pm
This is surely just a temporary situation, so as they say here, "keep calm and carry on" :)
A couple of months back the same thing happened, the forum was unreachable from most parts of the world for almost a week.
It is very annoying that the hosting provider just does this without notifying us and giving zero information about what is going on and what to expect.

Maybe they were DDoS'ed or something like this, this is a common problem nowadays, but it is not a good solution to block 90% of the world from reaching the forum.

Why they still don't use SSL is a riddle too, nowadays with Let' s Encrypt it doesn't cost you a single penny.

Maybe it is time to think about moving the forum to another host.

User avatar
xr_a_y
Posts: 1319
Joined: Sat Nov 25, 2017 1:28 pm
Location: France

Re: Forbidden

Post by xr_a_y » Tue May 26, 2020 8:23 pm

Joost Buijs wrote:
Tue May 26, 2020 6:25 pm
Modern Times wrote:
Tue May 26, 2020 4:07 pm
This is surely just a temporary situation, so as they say here, "keep calm and carry on" :)
A couple of months back the same thing happened, the forum was unreachable from most parts of the world for almost a week.
It is very annoying that the hosting provider just does this without notifying us and giving zero information about what is going on and what to expect.

Maybe they were DDoS'ed or something like this, this is a common problem nowadays, but it is not a good solution to block 90% of the world from reaching the forum.

Why they still don't use SSL is a riddle too, nowadays with Let' s Encrypt it doesn't cost you a single penny.

Maybe it is time to think about moving the forum to another host.
A fail2ban approach on a DDoS won't block ip by range, only some/many ip of the attakers for a medium amount of time. Don't understand the strategiy of blocking ip range ....

Ras
Posts: 1465
Joined: Tue Aug 30, 2016 6:19 pm
Full name: Rasmus Althoff
Contact:

Re: Forbidden

Post by Ras » Tue May 26, 2020 9:59 pm

I can also only log in using a proxy that pretends to be in the US. Login from Germany fails.

Folks, this IP based banning is outright stupid. It does not stop hackers, rather regular users. And no, whitelisting IPs is not an option either because as anyone should know, consumer contracts have a forced 24h disconnect in many parts of the world so that the IP isn't static.

Instead of doing this security snakeoil, finally slapping Let's Encrypt (it's free!) on the forum is long overdue. Anyone can read the login passwords over http, you know. Any hotspot or hotel operator for example. This is 2020!

And if really necessary, a session based captcha would also be acceptable.
Rasmus Althoff
https://www.ct800.net

User avatar
mclane
Posts: 18108
Joined: Thu Mar 09, 2006 5:40 pm
Location: US of Europe, germany
Full name: Thorsten Czub
Contact:

Re: Forbidden

Post by mclane » Tue May 26, 2020 10:47 pm

Joost Buijs wrote:
Tue May 26, 2020 6:25 pm
Modern Times wrote:
Tue May 26, 2020 4:07 pm
This is surely just a temporary situation, so as they say here, "keep calm and carry on" :)
A couple of months back the same thing happened, the forum was unreachable from most parts of the world for almost a week.
It is very annoying that the hosting provider just does this without notifying us and giving zero information about what is going on and what to expect.

Maybe they were DDoS'ed or something like this, this is a common problem nowadays, but it is not a good solution to block 90% of the world from reaching the forum.

Why they still don't use SSL is a riddle too, nowadays with Let' s Encrypt it doesn't cost you a single penny.

Maybe it is time to think about moving the forum to another host.
Yes exactly. I wish we could be somewhere else in public and not hidden
What seems like a fairy tale today may be reality tomorrow.
Here we have a fairy tale of the day after tomorrow....

User avatar
mclane
Posts: 18108
Joined: Thu Mar 09, 2006 5:40 pm
Location: US of Europe, germany
Full name: Thorsten Czub
Contact:

Re: Forbidden

Post by mclane » Tue May 26, 2020 10:49 pm

Ras wrote:
Tue May 26, 2020 9:59 pm
I can also only log in using a proxy that pretends to be in the US. Login from Germany fails.

Folks, this IP based banning is outright stupid. It does not stop hackers, rather regular users. And no, whitelisting IPs is not an option either because as anyone should know, consumer contracts have a forced 24h disconnect in many parts of the world so that the IP isn't static.

Instead of doing this security snakeoil, finally slapping Let's Encrypt (it's free!) on the forum is long overdue. Anyone can read the login passwords over http, you know. Any hotspot or hotel operator for example. This is 2020!

And if really necessary, a session based captcha would also be acceptable.
Exactly. It’s 2020 and not 1990.
What seems like a fairy tale today may be reality tomorrow.
Here we have a fairy tale of the day after tomorrow....

David Carteau
Posts: 72
Joined: Sat May 24, 2014 7:09 am
Location: France
Full name: David Carteau
Contact:

Re: Forbidden

Post by David Carteau » Sat May 30, 2020 6:33 am

Access seems to be back this morning (at least from France) !
Welcome back all forum members :)

Note : If it can be useful for others, that's how I was able to read posts during the "geo-blocking" : go to google web site, search for 'talkchess', and then click on "translate" just on the right of each result (I don't know if this feature is present if you are recognized as an english speaker).

shogi4fun
Posts: 30
Joined: Thu Aug 26, 2010 3:32 pm

Re: Forbidden

Post by shogi4fun » Sat May 30, 2020 9:20 am

David Carteau wrote:
Sat May 30, 2020 6:33 am
Access seems to be back this morning (at least from France) !
Germany is also back :) :) :)

gerhard
Posts: 42
Joined: Wed Mar 28, 2018 8:16 am

Re: Forbidden

Post by gerhard » Sat May 30, 2020 10:51 am

.... Not here ... southern germany still forbidden

Post Reply