Jump to content
Sign in to follow this  
Emperior

"DDOS"?

Recommended Posts

Hi everyone,

Like some of you know that I used too be hosting most of the games every single time before I had huge break from 0ad. Today, I have joined several times Lodbrog hosting as I never had issues joining his or even hosting myself.

Each time lodbrog hosting had full list of players, drop. Again, drop and drop. 3-4 times like that. Every person in the host had "losing connection". So I decided to host as I had no issues with connection (strenght of the connection: excellent) .

Ofcourse once all joined i lost connection. That isn't issue with my or lodbrog broadband's. Magically fpre comes with his host no-one has any lags, no issues with the connection. Issues with connection to anything has stopped. (my broadband was still working while ddos was going on just really bad connection to people or disorc. Everything else was working perfectly)

 

Before someone claims: "it's just issues with broadband or it was one time ". I suggest too block checking someones IP even for some "dev's" like or especially fpre.

 

Share this post


Link to post
Share on other sites

Sultan51 is the nick who started DDOS, He speaks Turkish. Probably has strong line. He messed Phyzic and then chalanged me for play, I hosted he joined get my ip address and started me dossing... so you are not alone.

Share this post


Link to post
Share on other sites

I believe @ffm has a fix for the network lag maybe he even recompiled the game with some more fixes.

Due to the netclient not being threaded if there is too much timeout it might freeze the game and cause disconnection. @elexis has a patch for this.

Share this post


Link to post
Share on other sites

To be pedantic it cannot be a DDoS (distributed denial of service) if there is only one computer doing the deed.

It would be nice to have actual proof someone is trying to cause denial of service. Do you have any logs on your router to support your claim ? I'm not saying you are lying, but not much can be done without proof unfortunately.

  • Like 1

Share this post


Link to post
Share on other sites
Guest

Related to this thread, I believe it still is possible to DoS the entire lobby in a non-coventional way. (can be done with a dial up connection probably).

Although, I do recall a discussion taking place. But I am pretty sure no fix was commited.

Share this post


Link to post
Share on other sites
50 minutes ago, Stan` said:

To be pedantic it cannot be a DDoS (distributed denial of service) if there is only one computer doing the deed.

It would be nice to have actual proof someone is trying to cause denial of service. Do you have any logs on your router to support your claim ? I'm not saying you are lying, but not much can be done without proof unfortunately.

Stan is your router logging by default traffic? Sure not, so answer is obvious. 

DDOS or DOS attack I don't know. What I know he attacked to my IP address and disconnected me not only from 0ad but from everything, this seems to me like attack from multiple places. Or my router is not powerful enough to handle few more connection...

 

He used that attack against more people (most likely only hosters - because he could obtain ip address from them)

I'm not lying at all ant this is true story. Take it or let it be. If it happens to you it will be the moment you will open your eyes :) 

Anyway we know for sure :

Nick, language he spoken, whom he was "talking to in lobby", and finally what happened those people - disconnected

whatever it was it looked like DDoS attack or just concidence and my broadband provider switch off cable for maintenance (if it happens more people form different location then most likely other scenario....) 

 

 

 

Share this post


Link to post
Share on other sites
1 hour ago, go2die said:

Stan is your router logging by default traffic? Sure not, so answer is obvious. 

Indeed it is not.

1 hour ago, go2die said:

He used that attack against more people (most likely only hosters - because he could obtain ip address from them)

I'm not lying at all ant this is true story. Take it or let it be. If it happens to you it will be the moment you will open your eyes :) 

Anyway we know for sure :

Nick, language he spoken, whom he was "talking to in lobby", and finally what happened those people - disconnected

whatever it was it looked like DDoS attack or just concidence and my broadband provider switch off cable for maintenance (if it happens more people form different location then most likely other scenario....) 

Since you seem to have information on that person, maybe @user1 @Hannibal_Barca may do something. Would be nice to know if his IP was used to create a DoS on your router. Maybe he didn't use a VPN.

2 hours ago, (-_-) said:

Although, I do recall a discussion taking place. But I am pretty sure no fix was commited.

Any fix of the sort on the actual lobby @user1, @Dunedan ?

Share this post


Link to post
Share on other sites
Guest

It’s the game. Not the xmpp server. Try pinging elexis. If he did no do such a thing, no one did such a thing.

Share this post


Link to post
Share on other sites
8 minutes ago, go2die said:

It could be difficult to block DDoS attack see https://mum.mikrotik.com/presentations/US17/presentation_4304_1496050983.pdf anyway it could be easy to block access to that attacker to 0ad :) when we know his nick.

 

> imagine thinking someone capable of doing succesful ddos is not ingenious enough to download free/paid vpn to avoid ip block

 

btw, DDOS is illegal, so he shouldnt at all show his real IP

Edited by thankforpie

Share this post


Link to post
Share on other sites
9 hours ago, (-_-) said:

It’s the game. Not the xmpp server. Try pinging elexis. If he did no do such a thing, no one did such a thing.

Well you said the entire lobby so I assumed it was the XMPP server :)

Okay. @elexis

8 hours ago, go2die said:

It is easy to determinate if used IP address was some VPN service.... or is Turkish located...

Yeah which is why the moderators need to identify them.

Share this post


Link to post
Share on other sites

DDOS attacks typically work on the transport layer, not the application layer. We had this before (https://en.wikipedia.org/wiki/Simple_Service_Discovery_Protocol#DDoS_attack).

Edit: One can make them for applications too, but why go to that length if the attacker can use prewritten scripts. Secondly the attacker needs to find many vulnerable machines running that to perform the DDOS attack, consumer-end routers are most available, but can't really perform enet/pyrogenesis connection attempts and xmpp doesn't sound widely supported by routers and probably not exposed to significant DDOS leverage)

Edited by elexis
  • Like 1

Share this post


Link to post
Share on other sites
Guest

A denial of service need not be accomplished by a flood of requests. There are other methods too.

Crashing the lobby bots is by all means, a denial of service attack. Just mentioning examples, it might be impossible to do that.

Edited by Guest

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Sign in to follow this  

×
×
  • Create New...