Arie
Account Details
SteamID64 76561197960497430
SteamID3 [U:1:231702]
SteamID32 STEAM_0:0:115851
Country Netherlands
Signed Up October 13, 2012
Last Posted November 26, 2024 at 9:46 AM
Posts 723 (0.2 per day)
Game Settings
In-game Sensitivity
Windows Sensitivity
Raw Input  
DPI
 
Resolution
 
Refresh Rate
 
Hardware Peripherals
Mouse  
Keyboard  
Mousepad  
Headphones  
Monitor  
1 ⋅⋅ 26 27 28 29 30 31 32 ⋅⋅ 49
#77 serveme.tf - free server reservations in Projects
yttriumArieRemoved the default sourcemod plugin "nextmap" from all servers in all regions, when combined with SOAP DM this would lead to unplanned map changes when the map timer ran out.lol this explains way more than it should

ikr, I apologize to the player of the ETF2L match tonight that mentioned this on twitch chat after the match and its premature STV death.
Just because the previous 9 times players were messing with rcon, I shouldn't have assumed it would be more of the same tonight xD

posted about 8 years ago
#75 serveme.tf - free server reservations in Projects

Removed the default sourcemod plugin "nextmap" from all servers in all regions, when combined with SOAP DM this would lead to unplanned map changes when the map timer ran out.

posted about 8 years ago
#50 UPDATE VID OUT in TF2 General Discussion

Casual mode is a pleasant surprise

posted about 8 years ago
#23 Introducing BattlePoints in Esports
BattlePointsI would like to note, that this is not an advertisement.

Could have fooled me.

You have an idea and now you "just" need people to build it for free, genius!

posted about 8 years ago
#26 Why do people bitch about tf2's hit reg? in TF2 General Discussion
FireArieM4ngoLHow is tf2's hit reg bad?
It's not.

*explains why hitreg is shit*

if you hit something on your screen but dont do damage i'd say you can call that bad hitreg. i dont think theres any game where the server reconstructs it and sees "ah yes the enemy was exactly where he shot but i wanna troll him so he does 0 damage regardless"

Only the medic had mostly moved out of the way (medic's client side) when he shot. His game predicted the medic to be there (based on his typical ping and both their movements), but when the server looked at the actual positions and shots he mostly missed. Now that seems unfair, and it probably is, because he hit those shots on his screen.

But consider the medic's perspective, he sees most or maybe even all pellets miss him, it isn't fair either to have that register as a meatshot.

You can't have both perfectly fair hitreg (for the shooter) and perfectly fair 'dodge'-reg (for the one being shot at) in a game with lag compensation.

If you want to have perfect hitreg you need 0 latency or 0 prediction (including movement/mouse-look!). John Carmack wrote about QuakeWorld's netcode way back in the 90s. He settled on instant movement/mouse-look and delayed shots, requiring you to lead your targets in that game. http://fabiensanglard.net/quakeSource/johnc-log.aug.htm
Half-life and later Valve games went with lag compensation. Giving you instant movement, mouse-look and shots

Gemmellness
hitreg takes client-side prediction into account. the general consensus is that netcode should favour the shooter so you shoot exactly where the models appear

That's what Overwatch does. The downside is you might get hit by a shot you actually dodged.

posted about 8 years ago
#17 Why do people bitch about tf2's hit reg? in TF2 General Discussion
M4ngoLHow is tf2's hit reg bad?

It's not.

Client side prediction of server side events will lead to errors on the client side. In that youtube video of noMsheep, he hits 2 good meatshots on the medic, at least on his screen. Meanwhile the medic actually moved out of the way of most of those shots (on the medic's screen).
The gameserver reconstructs where noMsheep shot and where that medic really should have been on noMsheep's screen, causing something looking like a 100+ meatshot doing only 10 damage.

Things will look worse with lower server FPS / tick rate and higher pings.

posted about 8 years ago
#74 serveme.tf - free server reservations in Projects

Due to a lack of paying customers I will not be renewing three machines (2xFR, 1xDE) in the EU region. For now the EU site has no servers available for free, just for paying customers.

posted about 8 years ago
#63 b4nny's valve visit 5/9/16 in TF2 General Discussion

I'm sad there's only one person (afaik) in the comp TF2 community with this kind of relation with Valve. I'm glad it's b4nny.

posted about 8 years ago
#51 PSA: Hacker collecting TF2 player IPs in TF2 General Discussion

An update on the changes to serveme.tf:

  1. All new logfiles viewable on serveme.tf and in the downloadable zipfile automatically have 0.0.0.0 instead of real IP addresses.
  2. All older logfiles already stored on serveme.tf have had the IPs in them replaced with 0.0.0.0. These are the logs you see when you click the "logs.tf" button for your reservation.
  3. All older logfiles stored in the downloadable zipfiles (300GB of zips) are being removed from the zipfile, the demo will not be removed. This is taking a while because there are 30k zipfiles to go through.
posted about 8 years ago
#30 PSA: Hacker collecting TF2 player IPs in TF2 General Discussion
Gemmellnessany idea why someone would build such a fancy gui on an openly-accessible web server for such a tool?

If I am to believe the person that built this tool, and I'm leaning to believing him, it's to find and catch cheaters/alts on TF2Center.

BattleMagooPlaying through a VPN will definitely make you lag. You can disable encryption options to make it less noticeable, though.

Not really, I ran a VPN experiment when a whole bunch of matches got DDoSed last year. Now I was cheating a little bit by running the VPN service on the game server machine, so routing was identical for the players when comparing VPN and no-VPN. But the encryption didn't add any noticeable delay or ping, at the rates TF2 uses I wouldn't expect a modern processor to have any troubles handling that.

posted about 8 years ago
#20 PSA: Hacker collecting TF2 player IPs in TF2 General Discussion
DoctorMiggyIncluding the bad people that you mention in the original post.

No, that person guessed/calculated the zip file URLs and downloaded files not intended for him. I agree with you it's much better to filter the IPs from the logs. That way only a person with RCON can get the player IPs.

posted about 8 years ago
#16 PSA: Hacker collecting TF2 player IPs in TF2 General Discussion
DoctorMiggyUh, question, why would you give out raw logs? Logs.tf parses IP info from their log files why doesn't serveme do the same? That is a huge security issue because, even if you get the log files the proper way you still have IP info from the other players. That's a nasty privacy problem IMO.

Because "rcon status" already gives whoever made the server the power to get the IPs of all connected players, this is true for any server you play on.
Giving everyone playing in the reservation the logs just leveled the playing field.

DangerKidWhy don't US servers have this option, or anywhere else? What is the difference in technology between Bisou and the rest, and what are the downsides to using this feature?

The US servers have protection through NFOservers standard anti-DDoS protection.

All my French servers are hosted by OVH, which is one of the few EU hosters to offer cheap (free) anti-DDoS on all their servers. However, by default, on their budget and standard range servers, the DDoS protection is off until an attack is detected, this can take 2 minutes. BeretBrigade and FromageBrigade are in their budget/standard range.
BisouBrigade is one of their gameserver-optimized dedicated servers. It comes with a different kind of anti-DDoS that's always active and also allows you to configure an upstream firewall, so you can prevent most DDoS traffic from ever even reaching your server. It just gets filtered by OVH's upstream routers which they boast can handle up to tens or hundres of gigabits per second.

This same anti-DDoS type by OVH is also what's keeping TF2Center running atm. Cloudflare protects their website, but OVH's anti-DDoS protects their Mumble, websocket server and log listener ports from 300k packets/sec attacks.

posted about 8 years ago
#13 PSA: Hacker collecting TF2 player IPs in TF2 General Discussion
kosHow can I change my ip address? and wouldn't playing through a vpn make you lag? or at least increase your ping? Basically how can I as a player prevent myself from getting ddos'd.

Also what is preventing people from ddosing the servers that we're playing on? If I remember right only one of the server providers under serveme has ddos protection.

Depends on your ISP. For mine, I can power off the modem, change my router's MAC address and power on the modem again to get a new IP.
For some just power cycling the modem can be enough, or leaving the modem off for 30 minutes before turning it on again might work.

A VPN can increase your ping yes, it can also lower your ping if your VPN has better routing to the gameserver interestingly. If you pick a VPN on the route to the gameserver, or very close by the gameserfver, it can be very competitive ping-wise.

The French servers on serveme.tf offer some DDoS protection. BeretBrigade and FromageBrigade have protection that can take a minute or two to kick in (during which you'd already be disconnected from the gameserver due to a timeout). BisouBrigade is the only one with DDoS protection that's always active and that actually seems to work.

posted about 8 years ago
#1 PSA: Hacker collecting TF2 player IPs in TF2 General Discussion

-----
tl;dr if you're playing in a casted match make sure you use a fresh IP and keep it hidden as best as you can, because someone has been collecting IPs for as many TF2 players as he could
-----

First of all, the word "hacker" from the title could mean a person using technology in some clever way (with no evil in mind), or it could be the media's definition of the word, meaning a computer criminal.
I don't know for sure the intent of this person, so I'll leave open what kind of hacker we're dealing with here.

Late last night I found out that someone has been downloading the zipfiles for all serveme.tf and na.serveme.tf reservations for the past 5 weeks. These zip files contain two things, the STV demos and the server logs files. Server log files contain the connect info of a player (IP).
Normally these zip files are only accessible for people playing in the reservation, the link to download them is not given out to other people. There is no login-restriction on the download though, so you could share the link to the zip file with a friend for example.

Now the hacker wrote a bot to scrape the serveme.tf's new reservation form (to get a list of servers) and the recent reservations page. By combining the information the bot could construct the zip file URLs of the recent reservations and schedule a download at the expected end time of a reservation.
All of this became apparent by looking at my serveme.tf webserver logs. Automated visits to the reservation page every 10m, the subsequent downloads of all the zips. But I also noticed a few HTTP referrers in the download of some zip files. This is the origin site of an incoming link to your site, meaning the hacker had a site where he sometimes would click on a zip URL hosted on serveme.tf.

Using this HTTP referrer, I was able to find one of the control pages for the bot and made this screenshot:

http://i.imgur.com/T1KGNQf.png

As you can see, it's quite a fancy tool, and this is just one PHP page, there might be more. Now I can certainly commend someone for building something like this, however that screenshot has 2 scary parts that make me think that STV demos might not be the reason for this tool to exist.
There's a "x connection sequences processed" message, underneath a table that has a column "IP address" and "MySQL". This means that this tool would search through the logfiles of downloaded zips and enter all found players, their names, steam ID and IP in a database so it can be easily queried.

In my search for this person I found some interesting things about the hacker:
- A couple of older alt accounts, ending their activity when a new account would start getting used
- Ton of played games on TF2Center, with a lot of ban requests filed for hacking. No hard proof, just some really good logs.tf stats
- UGC team
- A number of home IP addresses
- Recently donated to na.serveme.tf, with a fake name and address

I've contacted this person and he insists he's just downloading these files for the STVs, but interestingly the VPS hosting the site and bot has been taken offline.

Now this is all could be coincidental, but recently we've also seen an uptick in DDoSes directed at the TF2 community. Most recently the DDoSing of TF2Center (server got DDoSed), and the froyo vs street hoops match (players getting DDoSed). Especially in the last case a database of players and their IPs would be very useful.

Which leads me to the following actions and recommendations:

- If you're in a casted match, make sure your IP is secret
- serveme.tf will start removing IPs from logs (like logs.tf does)
- serveme.tf will add a random component to the ZIP URLs so someone can't just start guessing them all

I've asked the person responsible to reply in this thread.

posted about 8 years ago
#15 Server Provider Suggestions in Off Topic
-proto... let alone the fact that texas is a terrible location to host a server

Why is texas a horrible location to host?

posted about 8 years ago
1 ⋅⋅ 26 27 28 29 30 31 32 ⋅⋅ 49