User login
Spammer around Excessive Plus
23. February 2005 - 23:26
Well guys, it seems we have some idiots using an exploit to crash our servers. If your server keeps crashing with the error message
ERROR: Info_SetValueForKey: oversize infostring
then your server is being attacked as well.
IP of that idiot: 84.149.231.52 (p5495E734.dip.t-dialin.net)
What can you do?
Wait until id software releases a new point release or download and apply this fix.
http://aluigi.altervista.org/patches/q3infofix.zip
Or block them with a firewall:
iptables -I INPUT 1 -p udp -m mport --dports 27960 -m string --string "\xff\xff\xff\xffgetstatus" -m length --length 50:inf -j DROP
iptables -I INPUT 1 -p udp -m mport --dports 27960 -m string --string "\xff\xff\xff\xffgetinfo" -m length --length 50:inf -j DROP
24. February 2005 - 0:20
#1
![[MR.]^SlipStream](/files/screenname/fe46c8b9ca961f5d12691d6b9ad593ca.png "[MR.]^SlipStream")
Spammer around Excessive Plus
Thanks easy I added the ip to the ban list how exaclty is he crashing the servers without rcon?
CLEMSON TIGERS ARE #1
**RETIRED**1st E+ forum whore Muhahaha :mrgreen:
*2nd highest NON-CHEATED post count***RETIRED**
24. February 2005 - 0:34
#3
![[MR.]GibletGrinder](/files/screenname/396b96e854a636500eb089e1a4a36da6.gif "[MR.]GibletGrinder")
Spammer around Excessive Plus
He can crash servers with an old school packet dump...similiar to crashing/booting yahoo, msn, & other chat clients but on a larger scale.
Send enough packets and you can crash a network or even restart the victims' computer. 
Purest evil... :twisted:
I used neotrace of this IP, located in Nürnberg.
"Samo sloga Srbina spasava"
24. February 2005 - 10:42
#4
Spammer around Excessive Plus
man 
what a dick head 
24. February 2005 - 13:00
#5
Spammer around Excessive Plus
INFO
Quote:
84.149.231.52 (p5495E734.dip.t-dialin.net)
hmmm.... this IP is a Germyn IP from T-Online.
i think its a Dynamic IP.
24. February 2005 - 14:02
#6
![parasight [E+]](/files/screenname/a2d888eef959eb7889eb992bfc15c8e4.png "parasight [E+]")
Spammer around Excessive Plus
wrote:Send enough packets and you can crash a network or even restart the victims' computer.
So this is basically a DOS attack?
24. February 2005 - 15:01
#7
Spammer around Excessive Plus
oh so he is just changing his packets to a higher amount which crashes the server? oh i got it now if thats what it is.
CLEMSON TIGERS ARE #1
**RETIRED**1st E+ forum whore Muhahaha :mrgreen:
*2nd highest NON-CHEATED post count***RETIRED**
24. February 2005 - 16:36
#8
Spammer around Excessive Plus
wrote:So this is basically a DOS attack?
Not sure if that is what he is doing, but this is one possibility.
:-k
"Samo sloga Srbina spasava"
24. February 2005 - 21:28
#9
Spammer around Excessive Plus
i dont understand punks that think its ok, nice, and funny to hack servers, IMHO i wouldnt even call u a hacker arshole, ur are a scriptkidde who had a hard childhood
31. August 2005 - 17:08
#10
Spammer around Excessive Plus
Hmmm why he want to crash servers for this nice MOD 
EXCESSIVE PLUS IS THE BEST!!!!!!!
Gadu-Gadu: 1247344
Tlen.PL:
Watch my gallery http://gokussj6.deviantart.com
Talk
Shout 13:33:24
: hi fanq3. I play dm17 only,sorry
: SK CHECK IT PLS
: TEQ - YOU PLAY TOODAY 22.01.20? IF NO BUTO HAVE BAN (I HOPE ON LONG TIME).
: teq - yo but.. - you green.girl -> it's you teq?
: hi teq, hi liberty!
lets play on freon tonight
: Who's alive here?
: zup Dragon 
: R!C Retro FFA-PL 1-1 [+]
last seen 10 hours ago 10 min 2 sec 76=== ha ha
: hi all
Who's online
There are currently 3 users and 126 guests online.
Online users
- blarghy
- OneCredit
Exploit slip, dont need rcon just a crafty codeman : /