Posts: 13
Threads: 2
Joined: Jun 2007
Reputation:
2
Is there anyway to hide the sv_downloadurl variable? Some jerk out there is using it for his server, and is stealing my bandwidth. I have a list of all the IPs that used it. But, they are all his clients. Is there anyway to trace back the server that has my URL set on it? I changed the alias on the URL to a new one. But the bastard apparently got it in a day. So far I resorted to blocking his clients ip addresses which helped a little. I would like to keep the fast download as I have a ton of custom maps; but this is insane.
Thanks
Posts: 259
Threads: 17
Joined: Apr 2006
Reputation:
0
I did that on mine and it works well.
Posts: 38
Threads: 3
Joined: Jul 2007
Reputation:
0
I used to use it until two regulars on my server could never download custom maps. When I removed the htaccess file they could download them fine :/
No idea why it only affected two people.
Posts: 259
Threads: 17
Joined: Apr 2006
Reputation:
0
because they were hackers!
lol joking
Posts: 38
Threads: 3
Joined: Jul 2007
Reputation:
0
An htaccess file that stops hackers from connecting would come in mighty handy. ^^
Posts: 61
Threads: 4
Joined: Jul 2007
Reputation:
0
Quote:I used to use it until two regulars on my server could never download custom maps.
Some ppl have firewalls or proxys which suppress their referer link - making it impossible for people to download.
A good walkaround for this is, to allow empty referers too (this will allow people to directly download from your website, but not with other referers).
Quote:Only thing it could really do is stop certain IPs - doubt it would be able to distinguish connecting player SteamIDs (as that would be the preferred method to stop known connected hackers).
Provide me with a database of hackers, and I'll make you a script for your webspace which verifys if the Steam-Id is marked as being a hacker
Q: What would an omnipotent computer to?
A: Get rid of humanity!
Posts: 13
Threads: 2
Joined: Jun 2007
Reputation:
2
10-03-2007, 02:52 PM
(This post was last modified: 10-03-2007, 02:53 PM by MarleyX.)
Now that I think about it. When someone connects to the server, their IP address is displayed on the console. Is there anyway to write a script that reads the IP address from incoming players, and grants that IP address temporary access to the http server? That would probably solve everything.
My http server runs on a Linux server. I am pretty sure a script could interface with iptables without too much trouble. I just can't figure a way to have it read the IP addresses from the console.
Here is an idea that just came accross my head. I am not a programmer, which sucks, so I can’t implement this. But someone who is, could write a plug-in for srcds to store all incoming players on a small SQL database. A script on the Linux server would check the database once every second or so and add the IP addresses to iptables. When the player leaves or times out the IP address gets removed from the database, and the script removes it from iptables. This way in order to even get the maps off the server you would have to actually join it. Sounds good?
Posts: 5,178
Threads: 65
Joined: Mar 2005
Reputation:
22
It's possible to write a plugin to get the players IP address, however I've never managed to get it when they actually connected, only at the moment they join the server (where they get to see the MOTD) so that's too late.
Also if you could get the IPaddress on connect it still wouldn't be fast enough since the custom files have to be available instantly, if it has to be written in iptables etc the client would simply get a missing file error due to not having access to the downloads
Posts: 61
Threads: 4
Joined: Jul 2007
Reputation:
0
Exactly.
And if you want to block a list of Ip's / SteamID's you will have to run a script on your webspace which acts as proxy.
Q: What would an omnipotent computer to?
A: Get rid of humanity!