Upvote Upvoted 66 Downvote Downvoted
1 2 3 4 ⋅⋅ 8
DDoS Attacks
1
#1
61 Frags +

** Update **

Just wanted to update everyone on the situation here.
If you need help dealing with denial of service attacks, please contact me directly via Twitch.TV message to misterslin. Alternatively you can contact me at twitter.com/misterslin. Do not contact me on Steam.

I have a lot of information about our attackers. Yes, there are multiple people involved. For now, I will keep their names private. What you do need to know is that they are amateurs. They have purchased software online that allows them to do this. Most of the attacks come from a single IP address, and it is a very unsophisticated attack. If you have any sort of IP flood detection or ability to redirect incoming packets, it may help to activate it. The option for it may be located in your router/modem or firewall settings and may look something like this:

http://puu.sh/2g0jy

These attackers require your IP address in order to attack you. They can easily get it through IRC, which publicly reveals your IP whenever you join a channel. The other method is via Steam, where they commonly collect your IP by Steam calling you. If you are able to successfully change your IP, do not accept Steam calls.

I would like to remind our would-be attackers that denial of service attacks are a federal offense. Given enough time and evidence, you will be pursued. The authorities will take action. Think twice before you act.

As I mentioned before, I am willing to help any member of the TF2 community as best I can.
Best of luck to you all.

Recently I and a bunch of other people in the TF2 community have been getting DDoSed while playing TF2 Pick Up Games or PUGs. Pugs are held on public IRC channels, servers, and mumble channels. All of this information is publicly available and your IP address is accessible.

A DoS attack is a denial of service attack. A DDoS attack is a Distributed Denial of Service attack. In either scenario the person sends a ton of information at you to disrupt your connection. A sophisticated attack cannot be stopped. If the person is an amateur or uses a unsophisticated service (likely purchased online through some company), you may be able to filter, redirect, or otherwise avoid the attack.

The easiest way to protect yourself is to never release your IP address.
However, because we all use public servers, this can be a problem.

There is nothing that can do to fully protect yourself from a denial of service attack. Even if you were personally able to to find a way to protect yourself with 100% certainty from the attacker, he can simply DDoS someone else and drop them from the Pug, effectively ruining it.

There is, however, something that you can do to protect yourself a little bit. The most important thing to do is to keep suspected DDoSers off of your Steam friends list. They can obtain your game info among other things, which will give them access to you. There is also a method of obtaining your IP that involves calling you via Steam. Do not accept any Steam calls. Skype is another way that they can easily access your IP address, which is why many people who stream other games have trouble with denial of service attacks. If possible, avoid using Skype. Lastly, if you use any IRC client, you can reveal your IP by joining channels. The one that I use that can help you to protect your IP address is mIRC. Using mIRC, you can mask your IP so that when you channels you will not automatically reveal your IP. The steps are listed below.

Step 1. Connect to Gamesurge/Qnet. Do not autojoin IRC channels. They reveal your IP.
Step 2. Change default IRC name to something random like asdfiounaewoisdfjaom
Step 3. After connecting and authorizing, you type in //mode $me +x which will mask your IP.
Step 4. Then type /nick misterslin or whatever your IGN is.
Step 5. Join the channels that you wanted to join.

Hopefully if enough people protect their IPs then we can make it a bit harder to get attacked.

[b]** Update **

Just wanted to update everyone on the situation here.
If you need help dealing with denial of service attacks, please contact me directly via Twitch.TV message to misterslin. Alternatively you can contact me at twitter.com/misterslin. Do not contact me on Steam.

I have a lot of information about our attackers. Yes, there are multiple people involved. For now, I will keep their names private. What you do need to know is that they are amateurs. They have purchased software online that allows them to do this. Most of the attacks come from a single IP address, and it is a very unsophisticated attack. If you have any sort of IP flood detection or ability to redirect incoming packets, it may help to activate it. The option for it may be located in your router/modem or firewall settings and may look something like this:

[img]http://puu.sh/2g0jy[/img]

These attackers require your IP address in order to attack you. They can easily get it through IRC, which publicly reveals your IP whenever you join a channel. The other method is via Steam, where they commonly collect your IP by Steam calling you. If you are able to successfully change your IP, do not accept Steam calls.

I would like to remind our would-be attackers that denial of service attacks are a federal offense. Given enough time and evidence, you will be pursued. The authorities will take action. Think twice before you act.

As I mentioned before, I am willing to help any member of the TF2 community as best I can.
Best of luck to you all.[/b]

Recently I and a bunch of other people in the TF2 community have been getting DDoSed while playing TF2 Pick Up Games or PUGs. Pugs are held on public IRC channels, servers, and mumble channels. All of this information is publicly available and your IP address is accessible.

A DoS attack is a denial of service attack. A DDoS attack is a Distributed Denial of Service attack. In either scenario the person sends a ton of information at you to disrupt your connection. A sophisticated attack cannot be stopped. If the person is an amateur or uses a unsophisticated service (likely purchased online through some company), you may be able to filter, redirect, or otherwise avoid the attack.

The easiest way to protect yourself is to never release your IP address.
However, because we all use public servers, this can be a problem.

There is nothing that can do to fully protect yourself from a denial of service attack. Even if you were personally able to to find a way to protect yourself with 100% certainty from the attacker, he can simply DDoS someone else and drop them from the Pug, effectively ruining it.

There is, however, something that you can do to protect yourself a little bit. The most important thing to do is to keep suspected DDoSers off of your Steam friends list. They can obtain your game info among other things, which will give them access to you. There is also a method of obtaining your IP that involves calling you via Steam. Do not accept any Steam calls. Skype is another way that they can easily access your IP address, which is why many people who stream other games have trouble with denial of service attacks. If possible, avoid using Skype. Lastly, if you use any IRC client, you can reveal your IP by joining channels. The one that I use that can help you to protect your IP address is mIRC. Using mIRC, you can mask your IP so that when you channels you will not automatically reveal your IP. The steps are listed below.

Step 1. Connect to Gamesurge/Qnet. Do not autojoin IRC channels. They reveal your IP.
Step 2. Change default IRC name to something random like asdfiounaewoisdfjaom
Step 3. After connecting and authorizing, you type in //mode $me +x which will mask your IP.
Step 4. Then type /nick misterslin or whatever your IGN is.
Step 5. Join the channels that you wanted to join.

Hopefully if enough people protect their IPs then we can make it a bit harder to get attacked.
2
#2
5 Frags +

Thanks Slin!

Thanks Slin!
3
#3
11 Frags +

I'm getting word that it's a bunch of people
Apparently they bought denial of service attack programs and think it's funny
It's possible that they get it from your Steam ID

Not sure if there are any more

I'm getting word that it's a bunch of people
Apparently they bought denial of service attack programs and think it's funny
It's possible that they get it from your Steam ID

Not sure if there are any more
4
#4
0 Frags +

ddos mitigation is pretty ballin'

edit: sorry, i didn't mean to come off like a dick :<

ddos mitigation is pretty ballin'

edit: sorry, i didn't mean to come off like a dick :<
5
#5
18 Frags +
MR_SLIN and one other guy

b u l l e t

[quote=MR_SLIN] and one other guy[/quote]

b u l l e t
6
#6
12 Frags +

You could contact your ISP about the issue. It's illegal and they could do something about it.

You could contact your ISP about the issue. It's illegal and they could do something about it.
7
#7
10 Frags +

Don't forget about Skype. You can get someone's IP from skype without even having them on your contacts list.

Don't forget about Skype. You can get someone's IP from skype without even having them on your contacts list.
8
#8
-9 Frags +

GL LOSERS

GL LOSERS
9
#9
0 Frags +

What if you connect to irc with a browser? Is my IP in danger that way aswell?

What if you connect to irc with a browser? Is my IP in danger that way aswell?
10
#10
1 Frags +

I would say your IP is in danger no matter what.

I would say your IP is in danger no matter what.
11
#11
28 Frags +

Brands aka bunny was talking about DDoSing in mumble today and testing it on people, and bullet does it too

Brands aka bunny was talking about DDoSing in mumble today and testing it on people, and bullet does it too
12
#12
1 Frags +
PurpleShirtWhat if you connect to irc with a browser? Is my IP in danger that way aswell?

Yes if you use atf2.org or other sites it is.

[quote=PurpleShirt]What if you connect to irc with a browser? Is my IP in danger that way aswell?[/quote]

Yes if you use atf2.org or other sites it is.
13
#13
-11 Frags +

it's me

it's me
14
#14
0 Frags +
MR_SLINStep 3. After connecing to IRC and Authorizing, you type in //mode $me +x which will mask your IP.

If this doesn't work for you (it's apparently mIRC only), then use /mode [yournicknamehere] +x.

[quote=MR_SLIN]
Step 3. After connecing to IRC and Authorizing, you type in //mode $me +x which will mask your IP.[/quote]
If this doesn't work for you (it's apparently mIRC only), then use /mode [yournicknamehere] +x.
15
#15
0 Frags +

could be that k3u guy... idk
is it you being ddosed personally slin or the server?

could be that k3u guy... idk
is it you being ddosed personally slin or the server?
16
#16
9 Frags +

I'm going to notify Killing and Kalkin because our DDoSer plans on interfering with ESEA playoffs. I notified John as well. I hope that something gets done.

I'm going to notify Killing and Kalkin because our DDoSer plans on interfering with ESEA playoffs. I notified John as well. I hope that something gets done.
17
#17
-4 Frags +

I hate when people DDOS but at the same time I hate the recent jail sentences that have been given for those that have been caught doing it. "23-year-old Mitchell L Frost, of Bellevue, Ohio, was given a 30 month prison sentence for a series of DDoS attacks he launched against the websites of high profile US right-wingers Bill O'Reilly, Ann Coulter and Rudy Giuliani."

I mean, come on, 30 months for that is insane. The idea that you can spend less time in prison for Domestic Violence for that just really bugs me

PS- Sorry Slin that you have a bunch of asshats causing you trouble

I hate when people DDOS but at the same time I hate the recent jail sentences that have been given for those that have been caught doing it. "23-year-old Mitchell L Frost, of Bellevue, Ohio, was given a 30 month prison sentence for a series of DDoS attacks he launched against the websites of high profile US right-wingers Bill O'Reilly, Ann Coulter and Rudy Giuliani."

I mean, come on, 30 months for that is insane. The idea that you can spend less time in prison for Domestic Violence for that just really bugs me

PS- Sorry Slin that you have a bunch of asshats causing you trouble
18
#18
Twitch
25 Frags +
FzeroI hate when people DDOS but at the same time I hate the recent jail sentences that have been given for those that have been caught doing it. "23-year-old Mitchell L Frost, of Bellevue, Ohio, was given a 30 month prison sentence for a series of DDoS attacks he launched against the websites of high profile US right-wingers Bill O'Reilly, Ann Coulter and Rudy Giuliani."

I mean, come on, 30 months for that is insane. The idea that you can spend less time in prison for Domestic Violence for that just really bugs me

PS- Sorry Slin that you have a bunch of asshats causing you trouble

High profile sites generate millions of dollars a month. If you're attacking one of those sites for an extended period of time, you're costing somebody millions of dollars.

People are sentenced to much longer terms for robbing banks for significantly less money.

[quote=Fzero]I hate when people DDOS but at the same time I hate the recent jail sentences that have been given for those that have been caught doing it. "23-year-old Mitchell L Frost, of Bellevue, Ohio, was given a 30 month prison sentence for a series of DDoS attacks he launched against the websites of high profile US right-wingers Bill O'Reilly, Ann Coulter and Rudy Giuliani."

I mean, come on, 30 months for that is insane. The idea that you can spend less time in prison for Domestic Violence for that just really bugs me

PS- Sorry Slin that you have a bunch of asshats causing you trouble[/quote]


High profile sites generate millions of dollars a month. If you're attacking one of those sites for an extended period of time, you're costing somebody millions of dollars.

People are sentenced to much longer terms for robbing banks for significantly less money.
19
#19
0 Frags +

kalkin is on the case!

kalkin is on the case!
20
#20
10 Frags +

Let's find these guys, I want blood.

Let's find these guys, I want blood.
21
#21
0 Frags +

They commonly get your IP address through IRC or Skype. Those methods are used to DDoS most streamers. But these guys get your IP through Steam/Game Info/Server Info/ESEA client. Nothin you can do to protect yourself but to get them shut down so...

They commonly get your IP address through IRC or Skype. Those methods are used to DDoS most streamers. But these guys get your IP through Steam/Game Info/Server Info/ESEA client. Nothin you can do to protect yourself but to get them shut down so...
22
#22
0 Frags +

redacted

redacted
23
#23
-22 Frags +

mustardoverlord never stops to amaze me... *palmface*

mustardoverlord never stops to amaze me... *palmface*
24
#24
23 Frags +
Pocketmustardoverlord never stops to amaze me... *palmface*

please stop hacking in lobbies

[quote=Pocket]mustardoverlord never stops to amaze me... *palmface*[/quote]

please stop hacking in lobbies
25
#25
-20 Frags +

lol... *PALMFACE IN CAPITAL LETTERING*

lol... *PALMFACE IN CAPITAL LETTERING*
26
#26
5 Frags +

steam voice chat can also be used to get someone's IP address, never answer a call from a DDOSer if there's a chance in a million years they'd DDOS you

steam voice chat can also be used to get someone's IP address, never answer a call from a DDOSer if there's a chance in a million years they'd DDOS you
27
#27
13 Frags +

I love a good ol' witch hunt.

I love a good ol' witch hunt.
28
#28
1 Frags +
wareyasteam voice chat can also be used to get someone's IP address, never answer a call from a DDOSer if there's a chance in a million years they'd DDOS you

you can get their ip even if they dont answer, they just have to be on your friends list

[quote=wareya]steam voice chat can also be used to get someone's IP address, never answer a call from a DDOSer if there's a chance in a million years they'd DDOS you[/quote]

you can get their ip even if they dont answer, they just have to be on your friends list
29
#29
25 Frags +

You basically can get DDoS'd by being on the internet

You basically can get DDoS'd by being on the internet
30
#30
4 Frags +

he's not on my friends list as far as i know

he's not on my friends list as far as i know
1 2 3 4 ⋅⋅ 8
Please sign in through STEAM to post a comment.