response 51 of 68:

Aug 4 23:04 UTC 2007

Question, how old were the accounts that were the historical source of
attacks? were they new users? 6 months old? a year old? Were they well known
users of the system with a good relationship with other members? Answering
this question might help a little. And if we cannot answer this question that
certainly begs another question. just a thought.

response 53 of 68:

Aug 5 01:42 UTC 2007

There is already an Info conference and and Intro conference, set up to do
the things you are suggesting for Helpdesk.  We might see if there is a way
to direct people with new accounts to those conferences.  

There are also 7 other computer related conferences, Graphics, Hardware,
Internet, Systems, Web, and two rather dated ones:  Amiga and Micros.

response 55 of 68:

Aug 5 05:45 UTC 2007

#51:  Speaking of the abuses I've seen here (which are the most recent
ones, anyway), the attacks have been from long-time users who are very
familiar with the system who create new accounts to hide behind
(presumably to try to keep from getting banned from grex).  These new
accounts have generally been used immediately, or very soon after
creation.  When the accounts are disabled, they just create new ones
when they want to attack again.  This protects their well-known accounts,
from which they deny all culpability.

response 57 of 68:

Aug 5 23:06 UTC 2007

(The 'helpers' conference can also be interesting.)

Yes, the accounts used for abuse are generally "throwaways."  Often, many
will be created at once and then used as necessary:  When one gets locked,
another becomes active, and some are still idle when newuser gets shut off.

response 59 of 68:

Aug 7 02:44 UTC 2007

First off, for all you illerate faggots on this board. I'm the person 
that coded (sort of) the tel flooder that mcnally speaks of. I'm also 
the same person steve makes reference to in certain grex configuration 
files. Hi Steve!.

With that intro, I think getting rid of tel and mesg might be the best
solution. The better solution would be to re-write tel and mesg, but 
95% of the people on grex are either just as dumb or dumber than vive.

It does no good to turn of tel my default because I can get around 
this (via another bug in mesg). And no vive, despite what you think, 
you don't know what it is. Bitch, you can't even understand the source 
code to my tel flooder, more or less understand the source code to 
mesg. Just go back to trying to understand what fork/exec and the 
controlling terminal is you fucking moron.

I forgot what else. Yeah, you all fucking suck.

response 61 of 68:

Aug 10 15:30 UTC 2007

Maybe to prevent further escalation.

response 63 of 68:

Aug 10 17:23 UTC 2007

re #60:  
> With all the hubub about the recent 'attack', and the culprit being known,
> namely scholar, why does he get to keep his account? Why isnt he banned, or
> have his account locked out? Somehow this doesn't make sense. 

Think it through.  What if we *did* lock his account, what then?  

Since we (currently) allow people from anywhere on the internet
to sign up without requiring any sort of verification, what would
prevent him from simply signing up for another account?

response 65 of 68:

Aug 10 17:32 UTC 2007

cdalten isn't locked out.

response 67 of 68:

Aug 10 17:45 UTC 2007

So just I am clear, if i telbomb'd steve, i would be immediately removed and
or have my IP addresses banned. If i plug up the tty ports on grex so no one
can get in, it'll be okay? cool!