People dossing the server, admins doing anything to stop the lag?

[Murt]

I have seen some abusing but not shout in /p or something just have been quite. Beacuse i dont want to make it big. I hope i see some changes soon. =)

Send complaints with evidence and stick to the topic instead.

[Karmps.]

How about making the server FTP based? Players can only enter when verified with the site or something? I've seen RP servers with that.

[stormeus]

How about making the server FTP based? Players can only enter when verified with the site or something? I've seen RP servers with that.

No... god no. This wouldn't stop the DDoSes anyway.

[Karmps.]

How so? I'm not really good at this, but please explain :I
Post Merge: April 18, 2012, 12:22:50 amShit just got interesting 

[SugarD]

Many Database like MySQL or sqlite does have anti-DDOS software.

There is no true solution to DDoS attacks. You can make many fancy scripts and/or programs that can recognize the common characteristics of attacks to block the IP's, but then you have to deal with false positives of users being blocked on accident, and even then you cannot fully stop the attack as it would be impossible to tell the difference between a normal user and a DDoS'ing computer if the IP's constantly change. Even humans can have trouble with that in a very large attack on an active server with many real users unless all of the zombie computers make themselves obvious in some way or another.

[stormeus]

How so? I'm not really good at this, but please explain :I

Now I could attempt a lot of technical explanations about the nature of DoS attacks, port flooding, and relation to SA:MP scripts such as the "FTP-like login" you suggest which would be confusing and not help at all. Instead I have created a not-so-serious diagram that should get the point across.



And this is assuming the script kid isn't dumb enough to just target one port. :roll:

[Karmps.]

Ohh I get it.DDoser doesnt have to login...so FTP system would be useless  :cool:

[SugarD]

Ohh I get it.DDoser doesnt have to login...so FTP system would be useless  :cool:

Exactly. They'd just DDoS the IP address like they are now.

[Karmps.]

Exactly. They'd just DDoS the IP address like they are now.

That's what I was thinking about 

[Matt Murdock]

Simple as it sound and everything may be glorious afterwards Matt, the person will find out we've moved and start all over again. We've also had this IP for some years now, and it'snot going to change because of an upset individual(If this is even the cause). Same goes for port changing.

Indeed I agree, We can't be always shifting, We need to find a permanent solution to this. How about making Argonath a password protected locked server? Tho then new players will have trouble playing.

Something tells me, the attacker is in midst of us. Reading everything we speak on forums and everywhere. More like a banned old player.

[SugarD]

Indeed I agree, We can't be always shifting, We need to find a permanent solution to this. How about making Argonath a password protected locked server? Tho then new players will have trouble playing.

Something tells me, the attacker is in midst of us. Reading everything we speak on forums and everywhere. More like a banned old player.

There's no way to stop it. There will always be people that attack the community maliciously out of jealousy. It's unfortunate, but no matter how many security methods you implement, they will find a way around them...

[Gandalf]

Many Database like MySQL or sqlite does have anti-DDOS software. But those software cost money then just buy and install them. I dont know what for database you are using but sems easy to hack beacuse 50 attack in one day is a record. Argonath is a popular coumminty and deserve better security. Also about ''Admins dont do anything'' Kojak picked some moderator just for make so the server gets more help. Maybe he picked wrong players. Back to DDOS attack again. If the server build many server like ''Facebook or Google'' Not exactly but as a example then no one can attack it with DDOS or hack it. For a half year ago someone hacked Aragorn hacked. That hacker banned all and i think all know that hack. In 2010 a hack made so they made a backup. You see the server changes and grows. But seriously needs to plan a better security.

Gandalf:

This is something you need to think about before RS5 is coming. Beacuse i know in RS5 you dont want this lag or hack thing. In RS5 you want a new start,new script,new thing and anti-lagg. That means you need to take a meeting with your Staff Crews and make a plan. Beacuse this is serious and need to be fix before it is late. Also back to admins again: I have seen many player are saying ''Manager/admins got a life too'' Then did they not pick wrong job? If you got a life or cant be online. Then why not just leave the job and be inactive so other active people can takeover. I see alot of people need help and many of them need managers. I know some managers have a other timezone that is good but what about them in Europe? They just have a account and never log in. Gandalf as i said you need to have a meeting. I think Kojak need to have a extra eye on those new moderator. I have seen some abusing but not shout in /p or something just have been quite. Beacuse i dont want to make it big. I hope i see some changes soon. =)

As the database does not allow external connections the problem is not there. As for hacking the database, every case that happened was because of human error, not because someone hacked on skills.
Putting a MySQL password in pastebin, using the same password on other, less scrupulous, communities, logging passwords unencrypted, not protecting against MySQL injection, not changing password after it was leaked .... all things that could have easily been avoided.
As for being built like Facebook or Google, that would be great, but is impossible with a game like SA:MP. In case of a website it is possible to code in such way that you use a server cloud, meaning that the DNS is spread across many servers and if one is attacked you have others (a couple of thousand) to take over. SA:MP runs on a single IP, which is much easier to attack.
Of course if you could give us the budget of Google and Facebook, we will come up with something that is just as stable.

For RS5 we are looking at possible internal cause of lag, reducing the 30k per second writing operations will contribute.

[Kvinlan_Marr]

A big request to admins. Will say it in Russia, as Gandalf should understand it

Если этот ДДоСер живет в пределах 500 км от Москвы - скинь айпи, через бывшых коллег со спецслужбы пробью где живет и разберусь конкретно

Oh gosh, we're dealing with a badass over here.

Seriously, it looks even more childish when you try to gang up against them instead. Just let them get blocked and ignored.