Forum

> > CS2D > Servers > Server DDos from someone hacker
Forums overviewCS2D overview Servers overviewLog in to reply

English Server DDos from someone hacker

52 replies
Page
To the start Previous 1 2 3 Next To the start

old Re: Server DDos from someone hacker

_Yank
User Off Offline

Quote
@user Mr_Magnifice: I understand your way of thinking and that but you're just wrong. (D)dos attacks are not related to CS2D but to the UDP socket. As DC already stated, there's nothing he can do. Such thing such as ddos protecting programs or extensions aren't 100% effective.

And also what you said about linux servers isn't totally right. It is true that windows server have pretty good and easy to use firewalls but a well configured linux server beats it.

old Re: Server DDos from someone hacker

ohaz
User Off Offline

Quote
The problem with DDoS is that you may be able to stop the small ones - but you'll never be able to stop the bigger ones. Once they hit the capacity of the connection itself, you've lost. Completely.

old Re: Server DDos from someone hacker

DC
Admin Off Offline

Quote
@user Mr_Magnifice: I have to agree with user _Yank and user ohaz. Real DDoS attacks can't be stopped at all. No matter which game. No matter which service. There is nothing I (or anyone else) can do about those attacks. The only way to handle real DDoS attacks is to get better servers with faster connections and to hope that they are more powerful than the DDoS attacks.

I'm still sure that the term DDoS is highly overused in the context of CS2D. I don't think that there are many DDoS attacks or any DDoS attacks at all. I think most attacks are simple DoS attacks where one PC sends a lot of garbage UDP packets. The best way to block those attacks is probably a good firewall rule which blocks the attacker IP when there is too much UDP traffic. Problem with that is probably to find the right limits.

There are possibly other types of attacks but it's very hard to figure out how exactly they work and why they cause CS2D to crash. I'm doing my best to improve the security of CS2D because I'm aware of the problems but it isn't easy. I would actually have to see the UDP traffic which is sent to servers to make them crash. Without that it's pretty impossible to fix possible vulnerabilites.

old Re: Server DDos from someone hacker

Starkkz
Moderator Off Offline

Quote
@user DC: why don't you just make a ingame netgraph? Some games use that to see how much packets and with what size are sent to their clients/servers. Garry's Mod for example.

old Re: Server DDos from someone hacker

GeoB99
Moderator Off Offline

Quote
@user Ajmin: The attackers can use a proxy (of course a good one that is not a trasparent proxy) or a VPN (Virtual Private Network) to hide the real IP and this will make the problem to be difficult to solve where the attack is coming from, unless if the attacker is a bit dumb that didn't hided it IP so it will be easy to catch the attacker.

And changing the IP, the attacker must contact the ISP or reseting the router (if the attacker had one) i think.

old Re: Server DDos from someone hacker

Inflexion
User Off Offline

Quote
@user GeoB99: Don't forget to tell ajmin "Web Proxy".. there's many of them, american IPs and alot... a huge amount.

also why should I off then on and continue doing this a huge amount of times that will EVEN burn my pitty router.

old Re: Server DDos from someone hacker

VaiN
User Off Offline

Quote
I had a full dedicated server with a gigabit connection and it wasn't enough. At least with a dedicated server it didn't get nullrouted and small scale attacks just glanced off. Last summer the Rewards server was hit almost daily with an amplified SSDP DDoS attack. Firewalls don't help much with this. The attacker never sends a single packet to you, instead it all comes from thousands of exploited routers/devices.

The only way to defend against such attacks is to find a host that provides DDoS filtering. But even then it's still going to be limited in how much bandwidth it can protect against, and what type of attack it is. And with most hosts they would rather cancel your service than help you resolve the issue. DDoS filtering is largely ineffective (with amplified attacks) and often expensive.

Just look at what happened around the holidays with Xbox Live and PSN. If a few bored script kiddies can take down those networks for fun, how good of a chance do you think you have on a limited budget?

This is the type of drama you can expect as a host if your servers are even moderately active, or if you ban cheaters since eventually one of them will get butt-hurt and lash back.

The best thing to do is have a crontab task that runs a script and checks if the server has crashed and restarts it as needed. Set it to something like 10 minutes so the attacker feels satisfied that they won. Otherwise they'll just attack non-stop like it makes any difference.
edited 1×, last 05.02.15 02:03:35 am
To the start Previous 1 2 3 Next To the start
Log in to reply Servers overviewCS2D overviewForums overview