Best way to protect your CS:S Server!

[Daniel]

I Also experienced many problems with my server until I took the proper methods to secure my server First off I'd recommend blocking TCP Port 27015 With MMC in windows (Go to start -> Run -> mmc) And then allowing IPs that need to connect to RCON to connect (Feel free to PM Me on these forums for help with this), And that will stop the recent RCON Crash Exploit, Second off be sure to run mani via metamod.ini That would be the most secure way of running mani admin plugin, Run the latest version of Event Scipts Ill give a list of URL's to install for security against exploits


http://addons.eventscripts.com/addons/view/rcon_lock
http://addons.eventscripts.com/addons/view/es_anti-cheat
http://addons.eventscripts.com/addons/view/block_crash
http://addons.eventscripts.com/addons/view/exploit

Recently there has been a flooder bot specifically for the source engine at which somehow floods the CS:S Engine resulting in a ping spike what ever it does exactly this addon fixes it http://sourceop.net/modules.php?name=Downloads&d_op=viewdownload&cid=9

Once you install these plugins you can fully ensure you servers safe, For now that is since new exploits come out all the time, Enjoy and as said before feel free to PM me at any time.

[Nisd]

If you block tcp port 27015 you can't connect to the gameserver......

[realchamp]

The absolutly BEST way is to not letting 12 year old people having admin on your server. That's how simple it is, I have never giving anyone else admin besides myself and I haven't got hacked for 2 years!

[Mooga]

Also, restrict admin access to the computer. I know that I had issues where people used the emergency login to fuck with my server files. Also, they were on pay role. Also, nothing happened to them.

I quit that job

[Daniel]

Nisd Wrote:If you block tcp port 27015 you can't connect to the gameserver......

The game operates on UDP Port 27015, TCP Port is strictly RCON

[Daniel]

realchamp Wrote:The absolutly BEST way is to not letting 12 year old people having admin on your server. That's how simple it is, I have never giving anyone else admin besides myself and I haven't got hacked for 2 years!

Not giving admin to anyone really doesn't effect anything gaurentee I can come on your server and use one of these scripts on the internet to crash or lag your server sadly =) I as well wish it was that simple

[realchamp]

Sure you may have a go. Just use a firewall(ZoneAlarm, Windows Firewall .....etc etc)

[SaintGTR]

Firewalls do not stop exploits lol. Also Daniel is right in saying that your server can be hacked without giving random people admin. Your best bet is not to run Mani or Eventscripts and just use SourceMod for everything.

[realchamp]

Firewalls stops your server getting UDP floods and that can crash your server!

Eventscripts is safe, if you know how to!

[davekay747]

zBlock and Daf are good ways too

[Daniel]

Daf is in there =)

[pengy]

Very odd first post... all you need to do is not portforward port 27015 which is the rcon port for hl2games on tcp. Its a different port for hl1

[jdrumstik]

Ive got the first 4 installed, but the last link that goes to the "sourceOP" page for the daf download. How do I install that? Im a newb so Im not too sure what to do with it.

[Dirt]

I'm using KAC (for cheats and hacks) & daf (for DoS attacks) and it prove to be quite effective.
Also eventscript is a very bad thing to have on the server, huge performance hit in compair to sourcemod.

[Soostoked]

Here's a single sourcemod plugin that can do pretty much everything the eventscripts ones can do.

https://forums.alliedmods.net/showthread.php?p=841590