!! - [sSs]Forum

[ New messages · Members · Forum rules · Search · RSS ]

Page 1 of 2 1 2 »
Forum moderator: [sSs]SNiPE, [sSs]PureEvil

!! (!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!)

Alex

Date: Sunday, 2008-09-28, 11:48 PM | Message # 1

General

Group: Users

Messages: 1682

Status: Offline

SA-MP under DDoS attacks
Over the last 2 weeks, SA-MP has been subjected to some fairly large DDoS attacks against our services.

It all started on the 19th of September when a user by the name of Xalphox was banned from our forums for (guess what?) threatening to DDoS people. He demanded that he was unbanned from the forums. Of course, we can't really let a script kiddo have his way. Sorry buddy.

The next weekend, he managed to stir up one of his bigger script kiddo buddies, who goes by the name Ryan Cleary. Unfortunately, this wasn't the first time we have had to deal with Ryan. He has, in fact, been terrorising members of our community for several months. And not just SA-MP it seems:

http://www.associatedcontent.com/article....ck.html
http://mikeabundo.com/tag/ryan-cleary/
http://mikeabundo.com/2008/08/23/ryan-cleary-ddos-extortionist/

After some investigation and help from anonymous sources, it seems Ryan has access to large array of web sites effected by the Remote File Incursion php exploit. He is able to have these sites execute the php code of his choice; which often includes sending lots of large UDP and TCP packets to his targets. This gives him access to bandwidth in the order of several gigabits a second. In DDoS'ing terms, this makes him a "big fish."

Here is an example of one of the scripts he used to attack SA-MP: http://www.pastebin.cz/9531 The web sites effected by the RFI vulnerability access this page which was posted by him to pastebin.cz, then execute the code it contains. In this case, it was an 8.3 hour DDoS attack.

It seems Ryan also has access to a mail() command on these servers, as he decided to send me 500,000 e-mails. That was fun cleaning up.

Fortunately, I was able to bounce many of the e-mails back to the origin servers. So hopefully the admins of these systems figure out they've been compromised.

Both Ryan and Xalphox are believed to reside in the UK. At least, that's where the IPs point us. Since denial of service attacks are a crime and cause monetary loss for Internet providers and web site hosts, we intend to take some action and report these two. Any additional information that can be provided to us is appreciated.

At Kye's blog.

http://kyecoder.blogspot.com/

Dis is seris shit

Peca

Date: Monday, 2008-09-29, 3:04 AM | Message # 2

PwNzOr

Group: Users

Messages: 1588

Status: Offline

more attacks.... whats new ?
they had attacks before...

[sSs]SNiPE

Date: Monday, 2008-09-29, 3:19 PM | Message # 3

Founder

Group: Owner

Messages: 1364

Status: Offline

Ya but this is the kind of shit no-one needs.
Denial of service attacks are the lowest of the low and anyone could do it with a bit of knowledge.
I hope they make something of this but not let it influence sa-mp.

...I wonder how many servers he has trojand to totally kill a connection. Imagine the fuckin alarms that would go off on that kind of attack. sad

Added (2008-09-29, 3:16 Pm)
---------------------------------------------
http://kyecoder.blogspot.com/

Added (2008-09-29, 3:19 Pm)
---------------------------------------------
*Current SA-MP development includes SA-MP 0.2.5 and a special version of SA-MP 0.2.2 for the GTA-United mod. More details soon.

Alex

Date: Monday, 2008-09-29, 4:12 PM | Message # 4

General

Group: Users

Messages: 1682

Status: Offline

lol, we should all get GTA-United :P

[sSs]FattyJ

Date: Saturday, 2008-10-04, 6:21 PM | Message # 5

Group: Removed

i agree...this would be uber sweet

Peca

Date: Saturday, 2008-10-04, 6:23 PM | Message # 6

PwNzOr

Group: Users

Messages: 1588

Status: Offline

neva heard of it , neva gonna use it \ play it , SAMP FTW !

[sSs]FattyJ

Date: Saturday, 2008-10-04, 6:25 PM | Message # 7

Group: Removed

oh dude it is sweet trust me! it mixes the three major cities of GTA together into one huge map/area

[sSs]Waito

Date: Saturday, 2008-10-04, 6:35 PM | Message # 8

Lieutenant-general

Group: [sSs]Member

Messages: 691

Status: Offline

IMMAA DOWNLOAD GTA UNITED NOOOW :d

Before being Waito, I'm sSs.

[sSs]pandaemon

Date: Sunday, 2008-10-05, 1:25 AM | Message # 9

Colonel-general

Group: Users

Messages: 867

Status: Offline

Quote (|sSs|t1FattyJ)

oh dude it is sweet trust me! it mixes the three major cities of GTA together into one huge map/area

nice man! but arent there like 5-6 other incomplete mods promising the same thing? hope this one goes through , i would LOVE that biggrin

Alex

Date: Sunday, 2008-10-05, 2:02 AM | Message # 10

General

Group: Users

Messages: 1682

Status: Offline

Needs:
San Andreas
Vice City
GTA 3
All on your PC.
Waito pwned.
Not if he dl's VC and 3.

[sSs]FattyJ

Date: Sunday, 2008-10-05, 4:20 AM | Message # 11

Group: Removed

littlewhiteys has a server for the mod already it seems...it is still in beta but was pretty cool to see it on the list

[sSs]pandaemon

Date: Sunday, 2008-10-05, 6:54 AM | Message # 12

Colonel-general

Group: Users

Messages: 867

Status: Offline

Quote (|sSs|t1FattyJ)

littlewhiteys has a server for the mod already it seems...it is still in beta but was pretty cool to see it on the list

sweet.

Quote (|sSs|Alex)

Needs: San Andreas Vice City GTA 3 All on your PC. Waito pwned. Not if he dl's VC and 3.

crap.. i'll need to find my ol VC cd again. wait i forgot, i still have teh crack.... aight now i need to get the gta 3 cd

[sSs]TexMex

Date: Sunday, 2008-10-05, 7:43 AM | Message # 13

Colonel-general

Group: [sSs]Member

Messages: 960

Status: Offline

ah shit. if this does work then i regret getting rid of VC. idk why but as soon as i started playing it, i thought it was terrible. well lets hops this GTA:U works so maybe i can start playing again