[Few-Steps] To FiX your Server Security !

Dr.Abdelfattah · 01/27/2012, 15:50

Hello ,

We hear Today many server down/crash due of some kinds of attack due of the servers masters(admins) haven't skills/exp in protection/security

Anyway in Security u must use ur mind first Before everything else , even if u don't got any skills in protection or so .

Here's a few steps You must Done to make your server Something secure :

1 - Add to your Firewall blocked Ports for all modules, I mean to block all ports of modules like GS shard global etc in firewall (black-list) exept ports of gateway/downloadserver/agentserver

2 - Add ports to your firewall (Open-ports) for Gateway/downloadserver/Agentserver {>>>> TCP ports only <<<<}

3 - don't ever open UDP ports for those modules Gateway/downloadserver/Agentserver

4 - add block UDP ports for Gateway/downloadserver/Agentserver in firewall

Oky You Now FiX the Crach of modules like gateway or GS or or or ,
Now the Rest Few Steps Of the Most security to your server :

1 - Change your dbs names, like change account db name also shard and log .
2 - close the remote use of sql server so only local connections could access to sql server .
3 - @

URL must be at ur local , so set at IIS the name or ip of website to 127.0.0.1 and set any port , also this port block it in your firewall .
4 - At last don't ever Open your cert. ports , Block it in your Firewall .

At last today isa I will release a New cert. which got protection module to prevent the injection from SMC on db . (So you could freely open GlobalManager TCP ports without any problems)

----------------------------------------------------------------
At last How to do those steps , i think they are easy enough and google will FTW always ^ _ ^
Anyway any step you don't understand just ask me Here

Quote:

Small summery :
Every module u launch the firewall gives it's access as access so the module port opened , Now HOW UR GAMESERVER CRASH due of attack on UDP Port of GS . So you must block the both ports of GS TCP and UDP from firewall as i say in the past posts .

----------------------------------------------------------------
Thread Updated :

The Most Important Part ,
If you use 2 dedi servers or more for 2 agents or more ,
So you are open farmmanager Ports ,
Oky after mints of hacking farmmanager security i find out that by small access to farmmanager from it's ports you could shutdown the SR_GameServer , shard and agent too
Also you could let the farmmanager send packets to GS which will make overflaw also could gives packets to shard and agents but GS is the mostly easy to take overflaw from stupid wrong packets send from FarmManager

~~•ᵔBeGodOfWarᵔ•~~ · 01/27/2012, 15:52

OMG , you are the one at my opinion ! xD Thanks bro <3<3

PortalDark · 01/27/2012, 15:57

Quote:

Originally Posted by Amanda98

This will not fix romeglory problem, i can feel it

maybe not, but a small help
aside, we need more details to know how to protect

Dr.Abdelfattah · 01/27/2012, 16:01

Well to make full protection need a verrrrrrrrrrrrrrrrrrrrrrrrrry BIG guide it will take from me time , maybe i will write one , But this Guide can make the security the people ask for .

Dr.Abdelfattah · 01/27/2012, 16:02

Quote:

Originally Posted by rushcrush

lol go to hell noob

Dr: this not the fix

I tell u i need live check (TV) to take a look
But i still think ur problem fix from this guide .

~~rushcrush~~ · 01/27/2012, 16:04

Quote:

Originally Posted by Dr.Abdelfattah

I tell u i need live check (TV) to take a look
But i still think ur problem fix from this guide .

well i will try what i just did
if i got it fixed i will release the fix
brb

~~Ahmed Abdelhady~~ · 01/27/2012, 16:12

Thanks Abdelfattah

You're Da Best

Dr.Abdelfattah · 01/27/2012, 16:13

Edit :
Remove Joking !~! as kids will stay kids
---------------------------
GameServer Can't Crashed From client packets ever (or even overflaw packets from outside) <<
So don't mind that the GS crash fix is out from this thread Just read well plz .

Schickl · 01/27/2012, 16:41

OT:
Things OP mentioned are basic security configurations
If someone doesn't know them he shouldn't run ANY server!

~~hamada619~~ · 01/27/2012, 16:41

you deserve 100 thanks not 1button only really

Dr.Abdelfattah · 01/27/2012, 16:55

Quote:

Originally Posted by Amanda98

How is this an off topic? I'm replying to your failure code tag.

IS that was a code ?

Dr.Abdelfattah · 01/27/2012, 16:58

Quote:

Originally Posted by LastThief

Ask yourself my friend

you said it's vb btw for your info vb doesn't use ; at the end of statement

I was joking with any **** but i was wrong

badibatu22 · 01/27/2012, 17:02

Every pro server already have all of these i think , exploit is about gameserver or what ?

Dr.Abdelfattah · 01/27/2012, 17:03

Quote:

Originally Posted by badibatu22

Every pro server already have all of these i think , exploit is about gameserver or what ?

ya on GS ,

shadedurza · 01/27/2012, 19:32

Thanks primarily;

People are ignorant of the server opened,this information is simple,We started this business in 2004 by establishing MuOnline server.Wait for we, just let us know.Coming soon is a new server