Names please.
No names, random dude keeps joining and crashing the server....
DDoS is a pretty hard thing to mitigate. You can try and routeblock the hacker, however you will not be able to block the attack if it's done from multiple computers around the world.
Do we have any subject matter experts here who can suggest options we can take as a community to prevent these attacks?
How do large organisations protect themselves from these type of attacks? Surely, they are victim to the same.
Do we have any subject matter experts here who can suggest options we can take as a community to prevent these attacks?
Create a solution to stop DDoS attacks, patent it and you will have more money then Bill Gates ever had.
In other words, there is no real way to stop DDoS attacks.
As a matter of fact, i am, and i believe Gandalf is too.
Large enterprises have dedicated hardware firewalls (like servers) that monitor and filter all traffic. Some are based on pattern recognition, some detect malicious traffic otherwise. The cost for such solutions is usually high, not something that would be inside the scope of Argonathrpg.
EDIT: Yes, there are more ways to deal with it. However, it will mostly just be waiting for the attacker to get bored or run out of resources.
My approach is to send the police knocking on their doors.
Thanks for explaining MdeRooy.
Are there any other solutions we can explore which are low-cost but in return effective against these attacks?
Can we not just install software firewalls onto the server and configurate them as you mentioned?
I'm thinking long term strategy here, since it's likely that the community will grow in the future and we should be in a position to protect ourselves against these attacks.
Large organisations must have a infrastructure / layer of protection to ward off these attacks? Otherwise, they would have the same fate as we do against these script-kiddies.There are several techniques. However you should understand that we are not financially sound enough to pay an additional hardware firewall of Eur 125 per month, and using software to distribute would get us in troulbe with the shared network of the datacenter as it would cause severe trouble for many others.
There must be a technique or approach we can deploy across are servers to ward off these threats or at least mitigate them like mdeRooy touched on.
Large organisations must have a infrastructure / layer of protection to ward off these attacks? Otherwise, they would have the same fate as we do against these script-kiddies.
There must be a technique or approach we can deploy across our servers to ward off these threats or at least mitigate them like mdeRooy touched on.
I'm more than willing to think and work with other members and staff in order to mitigate these attacks.As we are running Windows, any Linux tool is not really an option.
Yes, there are software based solutions, which deal with fingerprinting and flooding.
You have the DDoS deflater, which is a simple shell script for Linux servers that counts connections and blacklists once it detects flooding. Works with most firewalls such as IPTables and APF. For APF, you also have http://www.rfxn.com/projects/brute-force-detection/ (http://www.rfxn.com/projects/brute-force-detection/) which is made by the same team.
Also, there is stuff like mod_evasive that can help Apache servers to mitigate attacks. This however does not work for SA:MP and TeamSpeak.
As we are running Windows, any Linux tool is not really an option.
I don't understand a word ya'll are saying...
Thanks MdeRooy, I'm sure the leadership would be open to exploring different options as appropriate.
Gandalf and MdeRooy, in relation to the software solution - how would this be deployed? i.e. what set of steps need to be applied and what risks or issues can arise?
I'm not clear on the technical stuff, but can approach this from a business perspective if you could provide an overview.
I thought you dealt with this hacker....?Boo-hoo, go and cry over A FUCKING VIDEO GAME.
Boo-hoo, go and cry over A f**kING VIDEO GAME.
Grow up.
Would there be any significance on contacting the offenders ISP about this nuisance?
Boo-hoo, go and cry over A f**kING VIDEO GAME.
Grow up.
Would there be any significance on contacting the offenders ISP about this nuisance?
Probably result in his or her broadband being cut and parents with a hefty bill.
That would be a great Christmas present for the one causing all the disturbances.
Herro there hacker!
Guys, THIS is the dude whos hacking the server! SHUN HIM TO HELL!
Oh hi! You must feel very brave. Pushing the button on your skiddy booter, trying to hit Argonath. Big boy! Your momma must be proud.
Yes, relevant investigation would follow by the ISP and depending on the severity of the offense, even the Police.
In my view, we should be taking preemptive action instead of reacting on the event.
This said, however depends on the financial strength of the community and unfortunately it seems like we are not in a position to accomodate this through hardware options.
Perhaps we would benefit from exploring the software prevention solution. There must be associated risks to using it - if so, what are they?
and lack of pocket money. Forgot to add that.
As my humour is terrible I will now stop bringing a lighter side to all of this.
I say again, grow up. This game is for mature people with rating of 18 and older, and you 12 year old kids are just ruining the experience. You are not even f**king allowed to play the game legal wise.
I completely agree.
The fortguard solution, which is the only Windows based software solution i have a positive experience with, might be worth it. The current lifetime price is 499$. It has saved my ass numerous times. The possible downside is, that it might slow down traffic like one extra millisecond.
A software solution would likely work hand in hand with the windows server firewall. It will monitor incoming traffic and block the IP if there are more than X connections from that IP.The main problem is that if the software solution disperses the traffic within the network, the data center gets severely pissed off.
The only "real" solution against DDoS is to have multiple servers backing up each others with huge bandwith, but that costs shittons of money. That way google and facebook and others work...
I'm guessing only thing Argonath can do is to mitigate the "bad traffic" and just ban the route and then hope for the best..
May be all lies, or may not, I am NOT certain on anything
The main problem is that if the software solution disperses the traffic within the network, the data center gets severely pissed off.
We have in the passed used a solution by Comodo, and gotten a friendly message from the data center to stop it if we wished to remain connected.
The main problem is that if the software solution disperses the traffic within the network, the data center gets severely pissed off.
We have in the passed used a solution by Comodo, and gotten a friendly message from the data center to stop it if we wished to remain connected.
How much would that cost? Aproximetely.
We do have a donation system. Look above.
But there's no perks no reason for people to donate other then gandalf to say thanks.Free forum name change for a month ? :razz:
I say again, grow up. This game is for mature people with rating of 18 and older, and you 12 year old kids are just ruining the experience. You are not even f**king allowed to play the game legal wise. I'm not even saying about spreading bullshit, you're the ONLY people here who are pissed off, take example from Ted, Frank_Hawk, Gandalf, Zaila and Devin - They are actively discussing defense measures, not flaming hacker's actions.
Kids.
And what makes you say I am 12?Your immature attitude.
You are so uneducated it is not even funny.Please elaborate, I'm sure you're more educated on me than I'm educated on you.
I would suggest you take your ugly hacking ass and get out.Again, immature attitude. By your words, I could be owner of this server in disguise, or another Batman, but you chose me to be a hacker in front of your eyes. What makes you smarter than me? I'm not saying you're a Batman or a hacker either, just an immature kid based on your nerd-raged posts right at this very topic.
Nobody wants you here.Don't consider yourself nobody, please.
You have no proof that I would be 12, which I'm not.Where's your solid proof i'm a hacker? That's right - there ain't any. No IP logs, no tracing - nothing (although I do not believe IP and tracing has to do anything with it)
Also, by your logic, I could say I'm batman.No, you're a hacker, get lost of this community you bad boy!!1111111one
Go back to school you illiterate human being.
Okay, I'll waste my time and answer everything in order. Your immature attitude.
Please elaborate, I'm sure you're more educated on me than I'm educated on you.
Again, immature attitude. By your words, I could be owner of this server in disguise, or another Batman, but you chose me to be a hacker in front of your eyes. What makes you smarter than me? I'm not saying you're a Batman or a hacker either, just an immature kid based on your nerd-raged posts right at this very topic.
Don't consider yourself nobody, please.Where's your solid proof i'm a hacker? That's right - there ain't any. No IP logs, no tracing - nothing (although I do not believe IP and tracing has to do anything with it)No, you're a hacker, get lost of this community you bad boy!!1111111one
......
but its summer?
Kirgiz, the fact you are just saying shit and feeding kids you probably are one of the ''12 year old kids ... ruining the experience.''There must be at very least someone who will put the little kids in their place :).
What about you give the example and be more mature, or atleast act like one since you wannabe one :)
*sigh*
You're so tough with your internet attitude, I'm so scared. But seriously, grow the f**k up, and don't complain when somebody is mad because they cant have fun with their online friends. You say we're whining about a hacker shutting down the server, we aren't whining, I simply said, "I'm getting pissed off, I thought the hacker was gone...?" Please, tell me how that is whining. Case Closed and over with, get the hell out.
There must be at very least someone who will put the little kids in their place :).Let the kids be kids, its hows life its. You are one, or you were. ;)
*sigh*
duffman, you're right, he's not worth the hussle.
As for software, would Microsoft ForeFront do the trick ? Could have some old license of it somehwere.
The Data Center is where the servers are hosted. This is to guarantee 24/7 availability of the network, a constant data speed and a technician near when something crashes.
Microsoft Forefront Threat Management Gateway can help you mitigate connection flooding attacks that are a prevalent corporate reality.
The Forefront TMG flood mitigation features include various functions, which you can configure and monitor to help ensure that your network stays protected from malicious attacks. The flood mitigation mechanism uses the following:
Connection limits that are used to recognize and block malicious traffic.
Logging of flood mitigation events.
Alerts that are triggered when a connection limit is exceeded.
There must be at very least someone who will put the little kids in their place :).
*sigh*
duffman, you're right, he's not worth the hussle. I'd need a therapist degree for this individual.
As for software, would Microsoft ForeFront do the trick ? Could have some old license of it somehwere.
The Data Center is where the servers are hosted. This is to guarantee 24/7 availability of the network, a constant data speed and a technician near when something crashes.
Why these hackers come and ruin other's gameplay while they can't play their own..because they got no life, they think they are going to ruin our lives by doing so
because they got no life, they think they are going to ruin our lives by doing soThat is really lame..
He is failing at DDOS, keeps it up for about 10 seconds.And you are failing to keep the server up. :redface:
And you are failing to keep the server up. :redface:
You have loads of those "services" which i still do not entirely trust. Here's one: http://ddosdefend.com/ddos-protection.html (http://ddosdefend.com/ddos-protection.html)
They charge 200$ monthly for their services.
That's around 170 euros, well... If some people who can afford to donate (You can count on me) are interested in defending the server from those little lifeless kids, we could donate 20-30 euros per month, I believe there are at least five persons who can donate some amount of money per month = We have the solution for the ddos attacks.
I can donate 50 euros maximally (I can more but my parents probably won't allow me since they don't know to who I am donating, who are the owners of the server and stuff) - 120 euros more, divided by 10 - 12 euros by 12 people, which is not a lot.
Tell me what do you think.
My approach is to send the police knocking on their doors.Explain how you would send police to someone sitting behind a botnet and a few proxies. Lets say 500 bots, all different IPs and countries. Do you think the local police would first track down those IPs, then from one computer to the proxy/VPN, then contact the owner of the proxy/vpn, then finally reach the IP of the guy doing it, before proceeding to the country he lives in and once again, contact his ISP, to bust a 15 year old kid DDoSing a gaming community? Wont happen.
The police would not give a shit unless something of profit would be hacked / DDos'd like a business company. Maybe their ISP will block them but that's all that's going to happen really.This, but not even the ISP would give a shit. I doubt the ISP would investigate a kid DDoSing a gaming community.
As for those who choose to hack or DDos, they are just thinking they are having fun and excitement ruining other's gameplay as if it would be their real life.
You'll have to expand to a degree for the technically illiterate! :DThe Data Center is the physical place where a server is located. It is a location that is like a warehouse, only filled with computers. Our Data Center has a protection against power failure (generators like in a hostpital) and a direct connection to an internet backbone (places where traffic is divided)
Is the Data Center a plug-in that is installed on the server? What are it's inputs (what feeds into it), outputs (what feeds out of it) and purpose (what is it responsible for)
Is it a external 3rd party software / hardware?
And you are failing to keep the server up. :redface:The server was up during all attacks. Unable to be reached, but up.
Explain how you would send police to someone sitting behind a botnet and a few proxies. Lets say 500 bots, all different IPs and countries. Do you think the local police would first track down those IPs, then from one computer to the proxy/VPN, then contact the owner of the proxy/vpn, then finally reach the IP of the guy doing it, before proceeding to the country he lives in and once again, contact his ISP, to bust a 15 year old kid DDoSing a gaming community? Wont happen.Do you think the local police would not get a 15 year old kid because he stole something from a shop?
This, but not even the ISP would give a shit. I doubt the ISP would investigate a kid DDoSing a gaming community.An ISP that does not react is legally facilitating crime, and could be shut down. So they do care.
Do you think the local police would not get a 15 year old kid because he stole something from a shop?The local police would get a 15 year old kid for stealing, since he was caught instantly or by cameras, he cant deny it.
Do you think the local police would not get a 15 year old kid because he vandalized a car ?
Then why do you think that commiting a crime on internet (and disrupting of services is an official cybercrime) would not get any reaction?
It is the obligation of the police to act against crime, and if they forsake this obligation they should be investigated them selves.An ISP that does not react is legally facilitating crime, and could be shut down. So they do care.
Jack it's not about how long or on who crime was committed. They do not decide when ever they act against the crime or not,as Gandalf said it's they obligation to handle the crime as an police enforcement.And without questioning they do,as cyber attack with ddos on any community is a crime,and crime is being handled by Police . :cop:There is a huge difference if you DDoS a gaming community for 10 minutes and the website which the state owns for a week.
There is a huge difference if you DDoS a gaming community for 10 minutes and the website which the state owns for a week.The law does not make any difference. A judge might.
The law does not make any difference. A judge might.True that, but based on how serious it is. A judge wouldnt put someone in prison for DDoSing Argonath, but compared to a big website, such as E-Bay or anything owned by the government, which is important would make a differance. Of course, they would have to pass the nti ddos system, which is possible.
Do you think the local police would not get a 15 year old kid because he stole something from a shop?Depends on what he stole, but almost sure they wont.
Do you think the local police would not get a 15 year old kid because he vandalized a car ?Did many times, so no.
Then why do you think that commiting a crime on internet (and disrupting of services is an official cybercrime) would not get any reaction?Depends whats dealing, like something dangerous like porno shit and other. Do you really think with so many shit important they will be going to catch a ''hacker'' (if I can say this) just because hes fucking a game server/community? Get your facts straight.
So they do care.Or not ;)
Explain how you would send police to someone sitting behind a botnet and a few proxies. Lets say 500 bots, all different IPs and countries. Do you think the local police would first track down those IPs, then from one computer to the proxy/VPN, then contact the owner of the proxy/vpn, then finally reach the IP of the guy doing it, before proceeding to the country he lives in and once again, contact his ISP, to bust a 15 year old kid DDoSing a gaming community? Wont happen.This, and sure, it is the same, it's a crime. But the difference about ddos and stealing is someone can point at a guy and say "it's that guy" or if cameras caught the guy. But it's harder to find a guy behind shitload of ips. But sure, if you got proofs and know who it is, of course the police won't give a shit to arrest a kid who is ddosing.
Maybe not in Portugal, or your specific area in Portugal, but mostly everywhere else they would.Sure, depends on which country. Just said my example.
True that, but based on how serious it is. A judge wouldnt put someone in prison for DDoSing Argonath, but compared to a big website, such as E-Bay or anything owned by the government, which is important would make a differance. Of course, they would have to pass the nti ddos system, which is possible.I think you should not bet on that. We have experience of the contrary. ;)
Im just saying, they wouldnt waste 50 hours of work to find someone who DDoSed Argo, compared go bigger and more important websites, usually owned by government, such as online banks, etc.
True that, but based on how serious it is. A judge wouldnt put someone in prison for DDoSing Argonath, but compared to a big website, such as E-Bay or anything owned by the government, which is important would make a differance. Of course, they would have to pass the nti ddos system, which is possible.
Im just saying, they wouldnt waste 50 hours of work to find someone who DDoSed Argo, compared go bigger and more important websites, usually owned by government, such as online banks, etc.
If you think that you can ran away with hacking something unharmed, you are clearly thinking wrong.The thing is that those instances such as EBay and other grand-scale websites will have top-tier lawyers which not only will make the hacker prove guilty, they will also snatch some top dollar costs from him. Without a great lawyer this case for Argonath won't even get a start. Sadly, this is how system works.
Goverment websites being hacked are most likely referred to different instances than Argonath RPG, yet still gets processed and worked out nonetheless. It remains a crime, no matter you've done for a big or small website.
The thing is that those instances such as EBay and other grand-scale websites will have top-tier lawyers which not only will make the hacker prove guilty, they will also snatch some top dollar costs from him. Without a great lawyer this case for Argonath won't even get a start. Sadly, this is how system works.
The thing is that those instances such as EBay and other grand-scale websites will have top-tier lawyers which not only will make the hacker prove guilty, they will also snatch some top dollar costs from him. Without a great lawyer this case for Argonath won't even get a start. Sadly, this is how system works.Lawyers do not prove guilt, evidence does.
Lawyers do not prove guilt, evidence does.BAM.
BAM.BOOM, SPAMMER.
Lawyers do not prove guilt, evidence does.which lawyers also gain.
You think great lawyers are only available to big organisations?You think great lawyers are cheap?
which lawyers also gain.
lawyers also do investigations, the only difference is that they do not have legal support.
lawyers do not gain evidence from providers. Only the court can.
lawyers also do investigations, the only difference is that they do not have legal support.