Jump to content

Angry Radish

Member
  • Content Count

    240
  • Joined

  • Last visited

  • Medals

Community Reputation

0 Neutral

2 Followers

About Angry Radish

  • Rank
    Staff Sergeant

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Greetings! Back from the dead and hoping to get some of the old band members back together, anyone still out there? Still dusting off my keyboard but if anyone is left, drop me a line! Cheers, Radish
  2. Angry Radish

    Server virtualization

    Nevermind, found the wiki and answered my own question :-)
  3. Greetings folks, Been out of the picture for awhile and am catching up on server hosting (resistance was my last server).. Any problems hosting on a virtual box? From my preliminary poking around it seems that many hosted servers are running that way, or am I reading it wrong? Any hand-holding would be appreciated, it's sad that I've become a complete newbie when it comes to this stuff after hosting Radishville for so long, sigh... Cheers, Radish
  4. Angry Radish

    -netlog on vista server

    HI all, I'm curious if anyone else has seen this on a vista box.. If I run the server with the -netlog switch, no file is created, but everything else seems to work fine. If I run the server as admin, the netlog file is created, but no-one is able to see the server in the browser (though my server query page reports it running) Running 1.06 still, so maybe it was fixed in 1.07 but I thought I'd check here.. Cheers!
  5. Angry Radish

    Public Beta Patch 1.07.5154

    For those with the hard drive thrashing, try this from the performance thread: Defragmenting hdd is really quite important because ArmA is loading data on the go. That means hard drive performance is also very important. But there, file fragmentation could be one of the major slow downs (even if you have fast hard drive). There's one very good tool that allows you to easily make sure specific file are perfectly contiguous: Contig from Sysinternals (now Microsoft's subsidiary). You can run it on your entire ArmA folder like this: Contig.exe -s "c:\program files\bohemia interactive\arma\*.*"
  6. Angry Radish

    Hudon and Pennywise

    I can see if I can get ahold of Hudson or Penny for you if you are still trying to raise them, drop me a line if you are. angryradish@radishville.com
  7. Angry Radish

    ArmA release date leaked out?

    Yeah, I'm hoping the date doesn't keep getting pushed further and further back like stalker or like HL2 did before it was finally released. I mean they just kept changing the engine and tweaking it over and over, and by the time it came out there was nothing really groundbreaking in it at all :-(
  8. Angry Radish

    Start server with webscript

    I'm about midway done with a webmin module for OFP, map upload, banlist, server start/stop for now, though I want to do some log parsing later on if I get to it. edit** adding link to Webmin **
  9. Angry Radish

    Gamespy and dos attacks

    Saw this over at gamespot, more proof that gamespy is eeeevil! Â Makes me look twice at the ablity to get server status, never thought about it in this light before Link to article </span><table border="0" align="center" width="95%" cellpadding="3" cellspacing="1"><tr><td>Quote </td></tr><tr><td id="QUOTE"> A security firm finds that an old security problem plagues many of the latest multiplayer game servers, such as Unreal Tournament 2003, Quake III, and Battlefield 1942. In an advisory posted to the company's Web site, security consultancy PivX Solutions said that popular multiplayer games--such as Quake III, Unreal Tournament 2003, and Battlefield 1942--could be used to magnify a denial-of-service attack, in some cases by as much as 400 times. As a result, game servers could be used as the latest tool for online scofflaws to digitally attack other computers on the Internet. "This attack will go right through a lot of firewalls right now," said Geoff Shively, chief technical officer for PivX. "A single server can theoretically produce enough data to flood a T-1 [a 1.5 Mbps connection]." The flaw occurs because servers that include the GameSpy networking code automatically send responses to queries for status information and don't verify the sender's address. An attacker can just ask the server for the information but forge the data so that the packets appear to come from a fake address. When the game server responds, the large amount of information sent in reply goes to the target of the attack instead. Some games that don't specifically use GameSpy code are also affected. Among the games that PivX believes are vulnerable are Battlefield 1942, Quake, Quake II, Quake III: Arena, Half-Life, Unreal Tournament, Tribes, Return to Castle Wolfenstein, Medal of Honor: Allied Assault, Neverwinter Nights, America's Army, and Unreal Tournament 2003. Servers that are released on the Linux platform are affected as well. "As a basic rule of thumb, if it supports GameSpy, it will likely be vulnerable," Mike Kristovich, a security researcher for PivX, said in a statement. David Wright, director of technology for GameSpy, acknowledged that the amount of data that the attack could generate was "significant." Yet, he downplayed the seriousness of the flaw. "It is not something that is used often, because if anyone wants to do a denial-of-service attack, they are far more likely to use servers that they have taken control of," Wright said. GameSpy expects to send out guidelines to its partners on how to limit the effect of the attack and also plans to provide a patch to limit the rate the game servers would respond to requests for status. Such a fix is long overdue, said Marc Maiffret, chief hacking officer for vulnerability assessment firm eEye Digital Security. Citing discussions between security experts about the susceptibility of Quake II to the same technique when that game was released, he said that security experts have known about the problem for some time. "While this is not a new technique, it is good that it is being 'rediscovered,' because obviously games are still vulnerable," he said. "It's a Catch-22 situation where security, in some cases, has to be sacrificed in order to have the performance these network games require." The problem takes advantage of Internet data known as the user datagram protocol, or UDP. Unlike the more common transmission control protocol, or TCP, packets that make up the majority of Internet traffic, UDP data doesn't require a connection to be established between a server and client. That allows an attacker to send a UDP packet with a phony source address; when the victim server responds to the UDP data, it will actually be sending data to--attacking--the target server specified in the forged source address. For the long list of game servers included in the advisory, UDP packets are used to send commands, say, to request the status of the server. By sending a constant stream of packets that include the address of a specific target, the much larger status information will inundate the target network. "Battlefield 1942 is the best example of this," said Shively. "It sends a large amount of data in reply to a single request." By PivX's calculations, commands sent to a Battlefield 1942 server at 4Kbps will turn into a 550Kbps attack on a target. He added that the software developers could fairly easily correct the problem. "They just have to push an update to the most popular games, and they are set," he said. Electronic Arts, the publisher of Battlefield 1942, could not immediately comment on the issue. <span id='postcolor'>
  10. Angry Radish

    Gamespy and dos attacks

    Saw this over at gamespot, more proof that gamespy is eeeevil! Â Makes me look twice at the ablity to get server status, never thought about it in this light before Link to article </span><table border="0" align="center" width="95%" cellpadding="3" cellspacing="1"><tr><td>Quote </td></tr><tr><td id="QUOTE"> A security firm finds that an old security problem plagues many of the latest multiplayer game servers, such as Unreal Tournament 2003, Quake III, and Battlefield 1942. In an advisory posted to the company's Web site, security consultancy PivX Solutions said that popular multiplayer games--such as Quake III, Unreal Tournament 2003, and Battlefield 1942--could be used to magnify a denial-of-service attack, in some cases by as much as 400 times. As a result, game servers could be used as the latest tool for online scofflaws to digitally attack other computers on the Internet. "This attack will go right through a lot of firewalls right now," said Geoff Shively, chief technical officer for PivX. "A single server can theoretically produce enough data to flood a T-1 [a 1.5 Mbps connection]." The flaw occurs because servers that include the GameSpy networking code automatically send responses to queries for status information and don't verify the sender's address. An attacker can just ask the server for the information but forge the data so that the packets appear to come from a fake address. When the game server responds, the large amount of information sent in reply goes to the target of the attack instead. Some games that don't specifically use GameSpy code are also affected. Among the games that PivX believes are vulnerable are Battlefield 1942, Quake, Quake II, Quake III: Arena, Half-Life, Unreal Tournament, Tribes, Return to Castle Wolfenstein, Medal of Honor: Allied Assault, Neverwinter Nights, America's Army, and Unreal Tournament 2003. Servers that are released on the Linux platform are affected as well. "As a basic rule of thumb, if it supports GameSpy, it will likely be vulnerable," Mike Kristovich, a security researcher for PivX, said in a statement. David Wright, director of technology for GameSpy, acknowledged that the amount of data that the attack could generate was "significant." Yet, he downplayed the seriousness of the flaw. "It is not something that is used often, because if anyone wants to do a denial-of-service attack, they are far more likely to use servers that they have taken control of," Wright said. GameSpy expects to send out guidelines to its partners on how to limit the effect of the attack and also plans to provide a patch to limit the rate the game servers would respond to requests for status. Such a fix is long overdue, said Marc Maiffret, chief hacking officer for vulnerability assessment firm eEye Digital Security. Citing discussions between security experts about the susceptibility of Quake II to the same technique when that game was released, he said that security experts have known about the problem for some time. "While this is not a new technique, it is good that it is being 'rediscovered,' because obviously games are still vulnerable," he said. "It's a Catch-22 situation where security, in some cases, has to be sacrificed in order to have the performance these network games require." The problem takes advantage of Internet data known as the user datagram protocol, or UDP. Unlike the more common transmission control protocol, or TCP, packets that make up the majority of Internet traffic, UDP data doesn't require a connection to be established between a server and client. That allows an attacker to send a UDP packet with a phony source address; when the victim server responds to the UDP data, it will actually be sending data to--attacking--the target server specified in the forged source address. For the long list of game servers included in the advisory, UDP packets are used to send commands, say, to request the status of the server. By sending a constant stream of packets that include the address of a specific target, the much larger status information will inundate the target network. "Battlefield 1942 is the best example of this," said Shively. "It sends a large amount of data in reply to a single request." By PivX's calculations, commands sent to a Battlefield 1942 server at 4Kbps will turn into a 550Kbps attack on a target. He added that the software developers could fairly easily correct the problem. "They just have to push an update to the most popular games, and they are set," he said. Electronic Arts, the publisher of Battlefield 1942, could not immediately comment on the issue. <span id='postcolor'>
  11. Angry Radish

    Modified config

    Back on the topic, does anyone know how to use filecheck to actually disconnect the users with the altered files specified in the cfg? The way I look at it, an easier way to handle the messages on the server (other than the 1.91, 1.85 messages), is just to tell them that they can play on the server if they can join without any messages showing when they join. That way you can rule out false positives, and you aren't directly accusing them of using a cheat, while giving them a chance to correct any improper patching, or replacing of files. not that that is a end-all-beat-all of solutions, I don't think there is any one good solution to this whole thing.
  12. Angry Radish

    Common warez id

    There are about 3 or 4 very common warez ID's I've come accross, I have every ID commented in my ban.txt with the names, etc..of the ban, so if anyone is interested in saving some time collecting info, msg me for the #'s. I'm not saying you should trust me and add them to your list, they may still be handy to have on the side to compare against some of your own suspicions...
  13. Angry Radish

    Modified config

    I understand how to use the checkfiles, but how can I get it to disconnect the users?
  14. Angry Radish

    New official unit !

    </span><table border="0" align="center" width="95%" cellpadding="3" cellspacing="1"><tr><td>Quote (toadeater @ Dec. 24 2002,01:28)</td></tr><tr><td id="QUOTE"></span><table border="0" align="center" width="95%" cellpadding="3" cellspacing="1"><tr><td>Quote (Suma @ Dec. 23 2002,18:43)</td></tr><tr><td id="QUOTE"> I am surprised how many people think about what we "should do" and "will do" in terms of "economy", "money" and "company plans".<span id='postcolor'> I think people are afraid that BIS will suddenly "suprise" us all with the next addition to OFP being a skateboarding-deerhunting game with a soundtrack by P. Diddy for the Gameboy console because Codemasters thought this would be a great idea. Or more seriously, the problem really may just be that there isn't much info about BIS's plans coming out at all. It makes people start speculating about the future of the game.<span id='postcolor'> Well crap, there goes my ultra secret plan, guess I'll have to stop work on my skateboarding deerhunting game. I'm not really sure where the idea to include that plane came from, but I'll take ANY official addon I can get my hands on. I'm not saying I miss all the bugs that were patched, but I DO miss the patches that included addons:-)
  15. Angry Radish

    Linux server crashes

    </span><table border="0" align="center" width="95%" cellpadding="3" cellspacing="1"><tr><td>Quote (kamik @ Dec. 07 2002,15:26)</td></tr><tr><td id="QUOTE">if you upload any more files on that server you must convert names to lowercase. ......reexecute server instalation package and it converts files as it likes them.<span id='postcolor'> I too finally have a working 1.90 linux server, Thank You BIS!!! As for the lowercase conversion, you can just re-run tolower, and it will do all the conversions for you without rebuilding the server executable
×