To launch a DDOS attack, you need the IP address of the server right? So why not remove the "connecting to port" message when connecting to a game?
| |
So what exactly is needed in order to launch a DDOS attack?
| |
Zerok Kaiba wrote:
So what exactly is needed in order to launch a DDOS attack? A pulse. This isn't the place for the howtos on DDoS attacks. Suffice it to say, there's a lot of worry about DDoS attacks going on around BYOND, and frankly, I'm quite sure the majority of it is completely without basis. | |
There's at least one person I've seen hopping around that claims to be a "DDoSer". As we can clearly see from the posts complaining about it, all of his attacks are on anime games. There may be more. Mostly it's just childish people throwing tantrums.
| |
Someone who stoops down to that level loses respect from other developers, so while that person thinks it's justified, he's only hurting himself in the long run. If he claims to be a DDoS'er, he's throwing that out for everyone to know. Good luck trying to make friends that way.
| |
I don't think Eternia's RP server has been the victim of a DDoS attack in the year it's been up. What with how strict the rules are since it's role-playing mandatory, at least one thousand or so people have been banned from the game in that time... And not a single noticeable attack on our $15 a month server.
So yeah, with that taken into consideration, I doubt your game is lagging and/or crashing due a DDoS. | |
Chances are, there's just some exploitable glitch in the game's programming that's allowing for an "attacker" to spam the game with some CPU-chewing function that bogs down the server (maybe even crashes it)
Perhaps even in some simple system as the chat input. I seriously doubt anyone is launching a "traditional" DDoS attack against BYOND games, no matter what any of these kids are claiming. | |
Writing A New One wrote:
I don't think Eternia's RP server has been the victim of a DDoS attack in the year it's been up. What with how strict the rules are since it's role-playing mandatory, at least one thousand or so people have been banned from the game in that time... And not a single noticeable attack on our $15 a month server. I dont see how this had anything to do with anything on-topic. | |
Oops, for some reason I assumed this was just another topic complaining about non-exist DDoS attacks... The posts gave that impression, at least.
| |
No, basically. Because when I connect to your server, my PC knows the IP and port of the server it's connected to, and so, I do also. Even a failed bounce where I'm banned will tell me that, and there's nothing BYOND can do about that.
| |
I suggested this before. To remove the IP. If you can stop the least determined people, then that's less of a risk. Some people are just outright lazy. This is like saying "Hey, here's a bank. There's no camera's or guards. Are you the least determined person? Come rob us!"..... If you don't have a simple defense, you can't stop those who aren't determined to go that extra mile.
| |
It's really not a credible difference, though. Like, quite literally, if that was enough to stop you performing a denial of service attack, you're not bothered enough to do one in the first place. The things I have mentioned are networking 101, absolute basics.
| |
Lol, same thing I was told last time I mentioned this. Almost word for word.
Yes, it's easy to get a persons IP, now that I have the knowledge as to how though. But, there are many kids that are using the internet service their parents paid for to just attack games because they found out how to DoS or DDoS. While this may not stop the source of the problem, it'll stop the little punks who have little knowledge in how to make it work without being flat out given the IP. You've said it yourself before that the majority of BYONDers are kids. Most of them have short tempers. When they, the kids, have power, DD/DoS, they will abuse it. Now, if you don't tell them how to get the IP, how will they do it? Well, they may look up how to get the IP. But, what's the chances of them finding that out? Not very high. | |
You've got a word for word response because our server management experience points out it makes no difference. You are taking the sign off the front door, to hide the church, basically.
I literally cannot believe that you'd have enough knowledge to perform a denial of service attack, but no presence of mind to work out the IP and port of a service your PC is connected/connecting to. A more pragmatic response is:
| |
Stephen001 wrote:
A more pragmatic response is:
Didn't even bother to mention iptables because of the fact that it's no help anymore. By brute force, it's simply ineffective. I have screenshots as to what iptables does for me in terms of dropping packets when the incoming bandwidth is over a Gb/s. Yes, I've used it to fight some small ones. And yes, it's effective. But, those were DoSs. A DDoS can mostly be of a larger scale that my network just can not handle. Most networks for that matter... And what does it matter if you drop the packets of the attack? What if the attacker is on your server? They will know that their goal isn't being achieved because they haven't disconnected yet. (I had more to write but I had to leave) | |
It matters because the BYOND process won't service them, and so, in the instance where you have provisioned enough network bandwidth to service all traffic, the BYOND process isn't stalling when it could just be carrying along quite happily for legitimate users.
| |
I don't quite get what you're saying.
| |
Isn't DDoS a dedicated denial of service? It's the same "command" that ISP's use to reset your box whenever you call them for tech support. I thought when someone DDoS your setup they are sending that code through to your line to interrupt your service which is why it resets the box.
Where as to what your describing sounds like a flood attack where they send huge amounts of useless data to your IP address which I would think could be stopped by placing a cut off were a person should only send a max of say 5mb per second, and if they send more data than that it would cut them off. A 2d game being sent across the internet probably does not even need that amount of space. | |
That would only stop the least determined of people. If you are going to DDoS something, it's going to happen. No matter who you are.