Tremulous Forum
Community => Servers => Topic started by: Volt on August 11, 2008, 10:12:10 am
-
There is some one who's dosing tremulous servers rcon.
I first came across this problem when hibby(owner of aa) asked me to look into a non responsive rcon issue.
at first changing out the server.cfg worked but soon after rcon became unresponsive again.
Then from word of mouth i learned archangel was dosing aa servers rcon, contacted maverick(noghost) host of aa, he handled problem by calling isp ect.... all that good junk.
around 4am the same day a server i run 000000.> began getting this from my attached console.
Bad rcon from 201.233.109.48:1661:
Bad rcon from 201.233.109.48:1661:
This is just a warning to other server owners espically those who host and use web ftp and web rcon, if you're experiencing rcon failure it might be because of an attack on your server.
-
I say ban,sue and fuck the motherfucker.
-
There is some one who's dosing tremulous servers rcon.
I first came across this problem when hibby(owner of aa) asked me to look into a non responsive rcon issue.
at first changing out the server.cfg worked but soon after rcon became unresponsive again.
Then from word of mouth i learned archangel was dosing aa servers rcon, contacted maverick(noghost) host of aa, he handled problem by calling isp ect.... all that good junk.
around 4am the same day a server i run 000000.> began getting this from my attached console.
Bad rcon from 201.233.109.48:1661:
Bad rcon from 201.233.109.48:1661:
This is just a warning to other server owners espically those who host and use web ftp and web rcon, if you're experiencing rcon failure it might be because of an attack on your server.
Yeah, cause I totally live in South America.
plasma@ceylon ~ (55) % host 201.233.109.48
48.109.233.201.in-addr.arpa domain name pointer cable201-233-109-48.epm.net.co.
-
i believe u have programs like q3u unban that give u static ip's. Snake said something about a program that spammed said server w/ bots. maybe net_socks?
-
rcon source IP can be spoofed if you don't care about seeing the response, but any vaguely competent ISP would not let you do such things.
Playing with a spoof IP is impossible, as is bot spam or anything else.
-
i believe u have programs like q3u unban that give u static ip's. Snake said something about a program that spammed said server w/ bots. maybe net_socks?
net_socks is a cvar built into the Q3 engine -- it's available only on windows.
-
as soon as your rcon becomes responsive change it by typing /rcon ******** rconpassword ****
-
as soon as your rcon becomes responsive change it by typing /rcon ******** rconpassword ****
That's not the point. Well, the person could be brute-forcing, but it seems to me that they're just trying to disable the rcon.
Also, I know rconip (or something) can be used to rcon into a server without being present, but does it avoid bans?
-
Eh, you might as well use SubSeven to get into your computer and watch your screen until you type it in.
-
Also, I know rconip (or something) can be used to rcon into a server without being present, but does it avoid bans?
Yes. rcon is handled by the server, which doesn't know about g_admin in most cases.
-
Also, ssh+screen makes rcon obsolete.
-
Also, ssh+screen makes rcon obsolete.
Well, obviously so. You're literally controlling the terminal the server is running, so you can see messages, errors, etc.
None of those are achievable with rcon.