I understand not everyone understands the Discovery 24/7 RP Sever is going through, so here.
The server has been attacked by a DOS Hacker ::
In this type of attack the primary goal is to prevent the victim's machine of fulfilling its required job.
Most acts to deny legitimate use of a service can be classed as a denial of service attack.
In most countries (including the USA) Denial of Service attacks is considered a federal crime.
1. Bandwidth Consumption
2. Other Resource Consumption
3. Network connectivity
(less common)
4. Unauthorized modification of configuration data
5. Physical hardware destruction
- Whoever is doing this, is obviously doing it illegally, and breaching many networks (other servers) in conclusion, this hopefully will stop. However we still need a new server hosting company.
- Majkp's ISP was caused to cancel the contract between them, to protect other customers, he had to let go of the server.
That's, that. Lets hope we someone can help us - there has been too much put into this server for it to die out.
' Wrote:Can you expand more on why we need a new server hosting company?
I believe I saw it in the other thread which said it is because the latest attack has caused Majkp's ISP to cancel the contract between them, to protect other customers. Because of this we now need a new host.
[10:10:28 AM] Josh (Dejavu): Bauer is legendary to the LPI, I joined because I wanted to be that epic.
That's either a horrid coincidence or ****ing genius, I'm mad either way.
Would it be possible to Mirror the information onto the USA server and get that up and running? It's nowhere near Czech but it's something we have. UK server, Freeport 7, something...
Server Relocation probably isnt a option, I imagine, so we need to setup a defense, no?
True, problem would be that the person we are dealing with is smart. Breaching security, violating laws, etc.
Oh, and by the way, since the server is located in the Czech republic, (I believe), The laws of that country apply to the server. And if it is (for whatever reason) LEGAL to hack PCs there, well, then we're SOL with the feds.
So no more speaky of US Laws and Regulations on server related issues;)
' Wrote:Oh, and by the way, since the server is located in the Czech republic, (I believe), The laws of that country apply to the server. And if it is (for whatever reason) LEGAL to hack PCs there, well, then we're SOL with the feds.
It isn't legal in the Czech republic either to hack PC's. But since .cz's law enforcement agencies probably not have the same ressources and fundings as for instance the UK or the US equivalents, a private gameserver being DDoS'ed or hacked, will not put the big wheels into motion. If it affects vital business areas in .cz, there might be an investigation launched in .cz - IF the .cz law enforcement agencies have the knowhow to handle such cases.
I'm not saying that .cz is an underdeveloped country or that their policeforce is stupid. I'm just saying that funds might not have been allocated to their lawenforcement agencies to deal with each and every case of IT crime, and they therefore have to prioritize. And in that scheme, an attack on something like the privately run Discovery 24/7 RP gameserver, is not at the top of the list.
What I feel more sad to hear, is that majkp has gotten his companys net connectivity cut of, because of his ISP's inability to deal with such an attack.
His ISP (dialcom.cz ???) chose to terminate majkp's contract, making majkp a double victim. They should instead have used ressources to stem the attack as soon as it entered their pipe - Nullrouting the botnet data streams destined to majkp's server as soon as they arrived at the ISP's entrypoint on the .cz segment, would have culled the attack, and given the ISP time to advise the upstream providers so they could do the same.
Instead they decided to take the easy way out and terminate majkp's contract, probably with a wording that said something along the line of needing to protect their other customers - I think you can call this the Ostrich method, since they effectively just buried their heads in the sand, saying if we can't see majkp, we don't have a problem.
Fine way to treat a customer, and depending on the wording in the contract majkp had, might even give him grounds to file legal action against the ISP for breach of contract.
Majkp did not do anything to violate his contract terms with the ISP.
He did not instigate the attack, he was a victim of it.
In a sense you can say that the ISP sided with the attacker, since they terminated majkp's contract, even though majkp wasn't violating any terms of it.
Out of bats, Out of bots, Out of torps - Down to harsh language...
' Wrote:What I feel more sad to hear, is that majkp has gotten his companys net connectivity cut of, because of his ISP's inability to deal with such an attack.
His ISP (dialcom.cz ???) chose to terminate majkp's contract, making majkp a double victim. They should instead have used ressources to stem the attack as soon as it entered their pipe - Nullrouting the botnet data streams destined to majkp's server as soon as they arrived at the ISP's entrypoint on the .cz segment, would have culled the attack, and given the ISP time to advise the upstream providers so they could do the same.
Instead they decided to take the easy way out and terminate majkp's contract, probably with a wording that said something along the line of needing to protect their other customers - I think you can call this the Ostrich method, since they effectively just buried their heads in the sand, saying if we can't see majkp, we don't have a problem.
Fine way to treat a customer, and depending on the wording in the contract majkp had, might even give him grounds to file legal action against the ISP for breach of contract.
Majkp did not do anything to violate his contract terms with the ISP.
He did not instigate the attack, he was a victim of it.
In a sense you can say that the ISP sided with the attacker, since they terminated majkp's contract, even though majkp wasn't violating any terms of it.
As TheMillers, explayned, the location of the server would not make a bit of difference its not about the local lawenfocement, but a single Gameserver is not considered woth the effort to do anything, both by the ISP and the Coppers.
If you put the server into another country, and your beloved hacker puts it out again, sooner or later well have the same result again.