Jump to content
Jedi Phoenix

Server update:


Asulynn

Recommended Posts

Right, so.. We, and pretty much every other clan, and every other game that runs off of the Q3 engine are dealing with a botnet. A big list of servers get accumulated over a period from none other than GameTracker - after a large enough list of Q3 servers are accumulated, their IPs are distributed through the botnet.

 

At this point, it goes through that list and sends what is known to Q3 as a "getstatus" packet. That packet just requests game information, much like what you would get from pinging servers through UU. The problem with that comes when the server -has- to respond to that packet with one of its own. However, the one it responds with is several times larger than the request packet sent from the botnet.

 

getstatus: ~12 bytes

response: ~1024 bytes

 

(not exact) Multiply this by however many IPs are sending "getstatus" requests to the server at one time, which the server -has- to respond to. There is also no filter for getstatus packets, so imagine 1000 unique IPs sending these getstatus packets per second, and the server responding to 1000 of those (with much larger packets) per second. Because of this, servers running a Q3 powered game can essentially be used in the botnet itself, as its going to end up flooding a "spoofed" IP with upwards of a gigabit/s of data - in theory. Which makes these games a very attractive target to botnets.

 

The solution for all these other clans was to remove themselves from GameTracker and change IPs. However, anybody can add a server to the GameTracker list, so they're right back to where they started if a troll, or ignorant person, decides to do so.

Apologies for the (continued) downtime. As a different way of explaining the problem: http://jkhub.org/pag...dos-attacks-r55

 

If you aren't following.. Basically our server is being used as Darth Sidious' source of unlimited power.

 

As a side note: We're blocking the GameTracker scanners by firewall. We'll likely be changing IPs. I have also been informed that Jedi Phoenix is trying to hack the University of Columbia's servers. :faec:

Link to comment
Share on other sites

Soo you mean emiy the server has been controlling by the badboys when will it be fixed?

 

the "badboys" are not in control of the server. They are only using LOIC or something really primitive to cause the server to crash, which in turn causes the providers to shut down the server. Emylii is currently working hard to resolve the situation so that, for one, it never happens again, and two, they get a new IP.

 

Be patient.

Link to comment
Share on other sites

Nigerians can't play anyway. They'd get too distracted and be eaten by lions, because everyone knows there's like a million lions over there. Plus their computers are made from sticks and old soup cans. maybe a glass coke bottle of they are from a family with particularly high standing. Jedi Academy is still a few years out of their reach. The only country more primitive is australia, and they're too busy crocodile hunting and making awesome graphic designs to execute any plans of cyber terror.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...