AlliedModders - Protecting your server!

AlliedModders (https://forums.alliedmods.net/index.php)

- Source Servers (SRCDS) (https://forums.alliedmods.net/forumdisplay.php?f=130)

- - Protecting your server! (https://forums.alliedmods.net/showthread.php?t=119214)

Re: Protecting your server!

Updated the wiki to include a new tut by C0nw0nk on the windows TCP settings and Firewall

Re: Protecting your server!

Quote:

Originally Posted by Mavrick4283 (Post 1744846)

Updated the wiki to include a new tut by C0nw0nk on the windows TCP settings and Firewall

Thanks mavrick :D much appreciated I will be adding a few more things to it tomorrow to do with windows services to be enabled and disabled for security and perfomance purposes :3, I also checked the wiki and the link goes to this topic :p

Re: Protecting your server!

Quote:

Originally Posted by C0nw0nk (Post 1745690)

/facepalm copy paste has failed me :P

Fixed it

Re: Protecting your server!

Quote:

Originally Posted by Xieus (Post 1753449)

I would like to have know on what to do with certain situation like for you have been remove or cast out or formally known as "banned" with the unjust decision of certain people here. I like to have an appeal and be able to explain my side that I am not a spammer nor a bot. It' hard to make things clear certainly if you were not used with new rules and guidelines.

I honestly can't tell if you're a spam bot or not.

The guidelines for banning are decided by individual server owners. They can ban you for whatever reason they want.

My advice is, unless you have some lasting attachment to the server, just go to a different server.

Re: Protecting your server!

Don't know if this has been mentioned in those 7 pages, but you have an error at setting permissions in linux.

If you chmod 644 a dir, the dir will no longer be accessible by anyone. Dirs in linux need execute permissions for it to be accessible.

Example:

PHP Code:


		
			
[cserv@tantive ~]$ mkdir test
[cserv@tantive ~]$ touch test/test.sh
[cserv@tantive ~]$ echo "Hello world" > test/test.sh
[cserv@tantive ~]$ cd test/
[cserv@tantive test]$ ls
test.sh
[cserv@tantive test]$ cd ..
[cserv@tantive ~]$ cat test/test.sh
Hello world
[cserv@tantive ~]$ chmod 644 test
[cserv@tantive ~]$ cd test
-bash: cd: test: Permission denied
[cserv@tantive ~]$ cat test/test.sh
cat: test/test.sh: Permission denied
[cserv@tantive ~]$ rm -rf test
rm: cannot remove `test/test.sh': Permission denied
[cserv@tantive ~]$ chmod 755 test/
[cserv@tantive ~]$ rm -rf test
[cserv@tantive ~]$

What I would suggest, is make two users:
servrun (runs the server)
servupd (updates the server)
Then, the magic, so you don't fux up your execute permissions on dirs:

PHP Code:


		
			
chown -R servupd:servrun /path/to/server/
chmod -R g-w+r /path/to/server/
chmod -R g+w /path/to/server/install_dir/mod/<the dirs that need write permissions, logs,cache,addons/sourcemod/logs...>

This way servupd user will have write permissions to the whole server install, so if you run your update script with that user you wont have trouble updating it, and the user that's running it will only have permissions to write in those dirs that you give it perms in the last command, plus you wont fux up your dirs in the process. ;)

If you want to further limit you can also remove all rights to "other" like so:

PHP Code:


		
			
chmod -R o-rwx /path/to/server/

Just my 2 cents.

Re: Protecting your server!

can someone update this tutorials for linux servers ^^ there are lots of new exploit for servers...

Re: Protecting your server!

Do you allow only STEAM player to play in your server?

Re: Protecting your server!

Hi, what is the best method to block flood?
The hacker use a linux vps and have installed udp perl that flood my server.
I tried dosp and daf and no effect, the server lag like hell.