My list... :)

Have an idea or suggestion for features to be included in the upcoming The Major BBS v10? Let us know here
Post Reply
Abraxis
Posts: 43
Joined: Sat Aug 08, 2020 8:49 pm

My list... :)

Post by Abraxis »

Here’s my partial list so far....

SSH login server
2 factor passwords.
Encrypted passwords
Blacklist by country/continent
Fidonet / qwk networking
Web based access, if not by fixing ActiveH then some other way.
Spell check and thesaurus
SSH outbound server to door computer/virtual server
Facebook login
Ability to block incoming spam mail (user configurable) If incoming mail from outside user has never been sent to user, be able to block or not with global default available
SSL web interface

Probably some more I can’t think of now...
Abraxis/Len
Mainline Information Service

User avatar
Duckula
Posts: 357
Joined: Wed Jul 22, 2020 1:19 am

Re: My list... :)

Post by Duckula »

Thanks for the suggestions - a lot of this after regularly requested and are definitely on the "to-do" list!
-- Duckula

// Site admin
// Galacticomm IP owner

daniel_spain
Posts: 395
Joined: Sun Aug 09, 2020 2:39 am

Re: My list... :)

Post by daniel_spain »

Duckula wrote:
> Thanks for the suggestions - a lot of this after regularly requested and
> are definitely on the "to-do" list!

make two-factor pass wording optional, do not pull an apple on us!
I am so %#$%$% sick of fetching my iPad or other iOS device just
to log into iCloud(dot)com and play a sound on my 3 year olds iPad so I can find it.

Abraxis
Posts: 43
Joined: Sat Aug 08, 2020 8:49 pm

Re: My list... :)

Post by Abraxis »

[quote=daniel_spain post_id=934 time=1615856048 user_id=65]
Duckula wrote:
> Thanks for the suggestions - a lot of this after regularly requested and
> are definitely on the "to-do" list!

make two-factor pass wording optional, do not pull an apple on us!
I am so %#$%$% sick of fetching my iPad or other iOS device just
to log into iCloud(dot)com and play a sound on my 3 year olds iPad so I can find it.
[/quote]

Absolutely make it configurable, but let’s do one better and make user configurable with a global default setting. :)
Abraxis/Len
Mainline Information Service

Questman
Posts: 160
Joined: Fri Aug 07, 2020 2:12 pm
Location: Raleigh, NC
Contact:

Re: My list... :)

Post by Questman »

Abraxis wrote:
> Here’s my partial list so far....
>
> SSH login server
> 2 factor passwords.
> Encrypted passwords
> Blacklist by country/continent
> Fidonet / qwk networking
> Web based access, if not by fixing ActiveH then some other way.
> Spell check and thesaurus
> SSH outbound server to door computer/virtual server
> Facebook login
> Ability to block incoming spam mail (user configurable) If incoming mail
> from outside user has never been sent to user, be able to block
> or not with global default available
> SSL web interface
>
> Probably some more I can’t think of now...

There were SSH/SSL additions to the baseline but we don't have them. SSL was an impl of OpenSSL; but I am not sure if they were partitioned into the cycled/state-substate form that protects the board from freezing up while long-running events complete. But yes, they're needed. Note that signing up for an account via SSH is a challenge.

Multi-Factor authentication, hashed passwords, and OAuth2/OIDC (including third party auth) for external users and external machines to authenticate would be fantastic. We could adapt locks and keys to a directory group structure too.

Blacklist by region and other things is useful but not completely that they can be spoofed. Duplicate IP Control's capabilities, plus some new features that folks have thought up that are yet to be added to it, should probably get added to baseline.

FidoNet and QWK networking are long overdue for sure.

Web based apps and content management is critical, including online editing of the content like a wiki or wordpress. Markup like CFML or even fixing ActiveHTML. Plus a robust RESTful and GraphQL API library equivalent to the internal API used for A/A, C/S would allow people to build great apps on top of the platform. React or something out of the box would be nice.

Finally yes, the Daemons need updating. Not just SMTPD but that needs more than most - SPAM control, DKIM/DMARC/SPF, etc. But even the web daemon needs work. Removing finger. Adding an HTML client to A/A would be interesting - I have one that works but it doesn't decode the HTML, it's just text.

Some of this seems like "what's the point? keep it Telnet/ANSI for historical" but we forget that there's still a need for publishing to web, for turnkey services for small business, and half the world still has low bandwidth and would benefit from this.
Founder, The Major BBS Restoration Project
Owner, Elwynor Technologies ISV
Former Owner, Galacticomm IP (2005-2020)
Contributor, Galacticomm IP baseline

Post Reply