Removing servers from splatterladder Options

[burneddi]

If you're afraid of DDOS attacks, you should either get a good and secure server host or learn to secure your servers.

No offense, but do you know anything at all about networking?
Given enough people (or one scriptkiddie with a botnet) any server accessible on the internet can be DDoSed. With enough attackers a basic "smurf attack" will just flood the router of the target computer with requests to be handled, which will make it work slower. When there's a metric fuckton of these requests, it will basically completely freeze, taking ages to handle them all as they keep piling up. For example if a couple of hundred people held down F5 on your front page your server would sure as hell come down, and there's pretty much nothing you can do about it.

One way would indeed be to use a VPN such as Hamachi, but surely you should understand that this would require unusually large arrangements, since an important match cannot be played on a random homehosted server, and no server provider I know of supports such things out of the box. It would require negotiations, and I doubt any server provider, YCN for example, would bother with such things.

Another way would of course be to set up some firewall that blocks all requests from Splatterladder servers, so that SL couldn't request the serverinfo, but it would really just be too much work. Seeing the circumstances I am astonished to see that you still refuse to cooperate - it is my belief you do not wholly understand the situation.

give the server ports that splatterladder not support :)

This would be a good idea, but many servers are hosted on server providers with automatic scripts or a firewall in place seeing that only the designated ports are used. Hence changing them in the server config is not an option.

There's absolutely no reason to hide a public server, no matter if it's protected by a password or not streaming to the in-game server browser.

There is, and it's a valid reason, too. Did you even read the posts above you? Are you aware of what kind of trouble your service has indirectly caused to important matches such as the last EuroCup final?

This post has been edited by burneddi: Sep 12 2010, 08:31 PM

[NHLfan]

There's absolutely no reason to hide a public server, no matter if it's protected by a password or not streaming to the in-game server browser.

Are you aware of what kind of trouble your service has indirectly caused to important matches such as the last EuroCup final?

Sorry, but that's one of the biggest bullshit I've ever heard.

Even if the server is not in the list, the server is still there, is still "DDoS-able", is still hackable, is still online.
People can still use, HLSW, Gamescanner, xFire, GameTracker, etc. to "track" your server
Your statement is just an cheap Excuse.

If your server was hacked/DDoS'ed, then you should check your security settings on your server, that's something the splatterladder can't do and the SL is also not responsible for this.
Alone the point, that you want a gameserver not shown in a serverlist is illogical and shows that you don't know how to handle security issues on a gameserver.

And now you try ("indirectly") to blame the SL? that's pathetic!

[Krauersaut]

If you're afraid of DDOS attacks, you should either get a good and secure server host or learn to secure your servers.

No offense, but do you know anything at all about networking?
Given enough people (or one scriptkiddie with a botnet) any server accessible on the internet can be DDoSed. With enough attackers a basic "smurf attack" will just flood the router of the target computer with requests to be handled, which will make it work slower. When there's a metric fuckton of these requests, it will basically completely freeze, taking ages to handle them all as they keep piling up. For example if a couple of hundred people held down F5 on your front page your server would sure as hell come down, and there's pretty much nothing you can do about it.

One way would indeed be to use a VPN such as Hamachi, but surely you should understand that this would require unusually large arrangements, since an important match cannot be played on a random homehosted server, and no server provider I know of supports such things out of the box. It would require negotiations, and I doubt any server provider, YCN for example, would bother with such things.

Another way would of course be to set up some firewall that blocks all requests from Splatterladder servers, so that SL couldn't request the serverinfo, but it would really just be too much work. Seeing the circumstances I am astonished to see that you still refuse to cooperate - it is my belief you do not wholly understand the situation.

give the server ports that splatterladder not support :)

This would be a good idea, but many servers are hosted on server providers with automatic scripts or a firewall in place seeing that only the designated ports are used. Hence changing them in the server config is not an option.

There's absolutely no reason to hide a public server, no matter if it's protected by a password or not streaming to the in-game server browser.

There is, and it's a valid reason, too. Did you even read the posts above you? Are you aware of what kind of trouble your service has indirectly caused to important matches such as the last EuroCup final?

Thank you, I am afraid I do know quite a lot about networking, whilst such a talented league gamer like you is surely more informed than me. As I mentioned before, it is not our job to make sure your servers are not harmed by DDoS attacks of "scriptkiddies" as you fittingly name them. The idea of using a VPN was sarcasm, which I'm afraid didn't accomplish it's mission. To avoid any more confusion, I'll be as clear as possible on this topic: We neither care about your important matches, nor do we care about the harm we cause. Feel free to block whatever you like.

Thank you for using our services.

[Galaxy]

We neither care about your important matches, nor do we care about the harm we cause.

So you basically don't care about ET? Even if it's no Jaymod, these important matches are still as important as the =FA= servers are. And SL should not just shut their eyes. It wouldn't hurt to delete some servers of your list, but it would help a lot.

[Krauersaut]

We neither care about your important matches, nor do we care about the harm we cause.

So you basically don't care about ET? Even if it's no Jaymod, these important matches are still as important as the =FA= servers are. And SL should not just shut their eyes. It wouldn't hurt to delete some servers of your list, but it would help a lot.

Could you please stop abstracting things from what I've posted? We do care about ET but not about your thoughts of server security. We will not delete any servers from our lists just because you're afraid of any DDoS attacks when playing your league matches. For the second time in this thread: Secure your servers or get a good host if you're unable to do so.

[im_x]

Can't you just ban SL ip(s) in your server firewall?

[burneddi]

There's absolutely no reason to hide a public server, no matter if it's protected by a password or not streaming to the in-game server browser.

Are you aware of what kind of trouble your service has indirectly caused to important matches such as the last EuroCup final?

Sorry, but that's one of the biggest bullshit I've ever heard.

Even if the server is not in the list, the server is still there, is still "DDoS-able", is still hackable, is still online.
People can still use, HLSW, Gamescanner, xFire, GameTracker, etc. to "track" your server
Your statement is just an cheap Excuse.

If your server was hacked/DDoS'ed, then you should check your security settings on your server, that's something the splatterladder can't do and the SL is also not responsible for this.
Alone the point, that you want a gameserver not shown in a serverlist is illogical and shows that you don't know how to handle security issues on a gameserver.

And now you try ("indirectly") to blame the SL? that's pathetic!

"Security through obscurity". If the DoS attackers do not know the IP of the server, they cannot DoS it. Through SL they get the IP by entering a player's name in the search and hitting enter.

Also obviously you are completely unfamiliar with what DDoS attacks do. There is no practical way that could be applied to an ET server hosted by a game hosting company that would prevent these kinds of attacks. As I said, (90% sure) not even your own web servers are protected from even the most basic kinds of DDoSes so you are unfortunately not in a position to instruct other people with their security.

This was not a "my server had no combinedfixes.lua and now someone came with an rcon stealer and crashed it baww" -situation. This is "my server IP was leaked to attackers by Splatterladder and hence they DoSed it", which is quite far from what you probably think is going on.

As I said, security through obscurity.

[NHLfan]

oh my god, you are kidding me, right?
still you blame SL for that. - this thread becomes a "joke"-thread, really!


Well one solution then:
secure your server, an example:
like im_x said, you could block the SL which scans your server.
another solution would be to block the query port, then no one can check if the server is online or not, no one could find out which players are online, or which map is currently running.
you just have to secure your server (see above), and it's done, instead you just blame the SL, well, it made me laugh.

[ETc|Jay]

this guy is just to low to administrate a server or even have any knowledge

[im_x]

block the query port

You mean the ET server port? I don't remember ET used other ports to send info about it besides the port used to connect for players.

this guy is just to low to administrate a server

Which one?

[ETc|Jay]

this guy is just to low to administrate a server

Which one?

skooli and burneddie, if they cant make the servers more secure then they should stop to rent a server.

This post has been edited by ETc|Jay: Sep 13 2010, 01:39 PM

[im_x]

What if they start flooding his ET server? Making traffic that cannot be handled by the network card and server cpu? With fake IP address in packet? This kind of stuff should be 'fixed' by the data center where the server is, cause he can do like nothing by himself if someone really wants to DDoS the server. It should be the hoster problem to cut off the DDoS traffic from the network not the customer.

This post has been edited by im_x: Sep 13 2010, 02:23 PM

[sLy ?]

Useless spam from me, but i can't stop laughting :-D

[Krauersaut]

There's absolutely no reason to hide a public server, no matter if it's protected by a password or not streaming to the in-game server browser.

Are you aware of what kind of trouble your service has indirectly caused to important matches such as the last EuroCup final?

Sorry, but that's one of the biggest bullshit I've ever heard.

Even if the server is not in the list, the server is still there, is still "DDoS-able", is still hackable, is still online.
People can still use, HLSW, Gamescanner, xFire, GameTracker, etc. to "track" your server
Your statement is just an cheap Excuse.

If your server was hacked/DDoS'ed, then you should check your security settings on your server, that's something the splatterladder can't do and the SL is also not responsible for this.
Alone the point, that you want a gameserver not shown in a serverlist is illogical and shows that you don't know how to handle security issues on a gameserver.

And now you try ("indirectly") to blame the SL? that's pathetic!

"Security through obscurity". If the DoS attackers do not know the IP of the server, they cannot DoS it. Through SL they get the IP by entering a player's name in the search and hitting enter.

Also obviously you are completely unfamiliar with what DDoS attacks do. There is no practical way that could be applied to an ET server hosted by a game hosting company that would prevent these kinds of attacks. As I said, (90% sure) not even your own web servers are protected from even the most basic kinds of DDoSes so you are unfortunately not in a position to instruct other people with their security.

This was not a "my server had no combinedfixes.lua and now someone came with an rcon stealer and crashed it baww" -situation. This is "my server IP was leaked to attackers by Splatterladder and hence they DoSed it", which is quite far from what you probably think is going on.

As I said, security through obscurity.

You, Mr. Smart are obviously looking for attention. I'm quite sure you're a real professional when it comes to your little home router and your hacked firmware with which you show off in front of your friends, but it looks like you've got really no idea about network administration beyond private routers. And gaming for sure. I was expecting to find some details on your qualification before declaring us incompetent, but you just proved the opposite. Since you simply don't seem to get the point that we are not responsible for any of your harmful attacks, but are providing a service to monitor your buddies. That said, this thread won't lead to anything but spam. We could continue that discussion after you've got GameTracker to delete your so important match servers. Please spread your fears at their forums. Thank you.

[NHLfan]

just a short notice:
instead of spamming this forum, you've could used google, or another search engine to get to these informations
(i just typed quake3+queryport - just fyi: ET uses Q3 engine if you didn't know):

result was this:
Wolfenstein: Enemy Territory 27959 - 27970

blocking these ports will result, that the gameserver is not reachable, if someone want to get the current status of the server (but you still can connect to the server, if you know the serverIP)
as long as your server is online, it will be always possible to hack it, or to do a DDoS attack, completly regardless of splatterladder's serverlist.