[VSP] Anti-flood plugin "Serversecure"
 

It was suggested I should post this plugin in this section so I will. This particular plugin is my attempt at fixing the issue of network floods with OOB packets (A2S_INFO, connect challenges, etc).

This particular plugin is meant for the OB engine (GMod, TF2)

What makes this plugin different than "dumb reply" query cache plugins is that it will record and later re-inject OOB packets. This prioritizes game traffic and since OOB packets aren't critical, they get a lower priority. It also doesn't do any strange modifications to the A2S_INFO reply.

I don't have any specific numbers on performance, but it should be able to handle a decent amount of spoofed OOB packets (at which point an attacker will just saturate your line in anger).

Here's a feature list:
1) Holds a queue of OOB packets to re-inject over time, reducing the impact of spam
2) [Windows build] Blocks file uploads and downloads that aren't on the downloadables table (and sprays)
3) Does some trivial ticket validation in case Valve disables the recently fixed checks.
4) [Windows build] Not compatible with D-FENS or Drunken Fool's DAF. (Feature overlap)

Source:
http://gmodmodules.googlecode.com/sv...serversecure2/

Release build:

Windows
http://gmodmodules.googlecode.com/sv...versecure2.dll

Linux
http://gmodmodules.googlecode.com/sv...rversecure2.so

Example VDF (After placing correct version in addons/):
Testimonials:

" installed it and the attack stopped. "
http://www.facepunch.com/showpost.ph...55&postcount=6

Re: [VSP] Anti-flood plugin "Serversecure"
 

Thanks AzuiSleet!

Re: [VSP] Anti-flood plugin "Serversecure"
 

Nice work on this, glad it's finally released 'properly'.

Re: [VSP] Anti-flood plugin "Serversecure"
 

Apart from this being an all-in-one, is there any reason why I should stop using DAF and D-FENS now?

Re: [VSP] Anti-flood plugin "Serversecure"
 

Like making it appear as if the server is passworded >.<

Re: [VSP] Anti-flood plugin "Serversecure"
 

This isn't just an all-in-one, it uses better methods for each feature.
For example the file upload / download fix in ServerSecure is vastly safer than D-FENS, instead of a fixed whitelist of 'safe' paths (D-FENS), ServerSecure will only allow the transfer of stuff that has been added to the downloadables table on the server along with sprays (of which it checks the file name length as well).

Re: [VSP] Anti-flood plugin "Serversecure"
 

Currently I use DAF and it works fine between most game updates. Will this plugin need to be updated every time CS:S/Any other OB game is updated?

This plugin looks great, and I plan to replace DAF with it as long as I know it'll be stable. I did have some issues with D-FENS in the past which is why I no longer run it.

Re: [VSP] Anti-flood plugin "Serversecure"
 

Just curious, is there a plan to port the windows specific functionality to linux? or not really.

It's still great regardless :wink:

Re: [VSP] Anti-flood plugin "Serversecure"
 

Seems to work just fine, thanks!

Re: [VSP] Anti-flood plugin "Serversecure"
 

The issue is that there are no decent independent detouring libs that are Windows and Linux compatible.

If you are on Linux and use SourceMod as well, I have ported the Upload/Download (the only thing missing from the Linux build of ServerSecure) protection into an SM extension. https://forums.alliedmods.net/showthread.php?t=142249

Edit: If you use this and you run into any issues down the line, you need to specify in your post that you are using this as well.