There have been many exploits for Source/TF2 over the years, see the big rewards over at HackerOne for some of those. This one, this one and this one are quite scary (and got big rewards).

I advise you to not play on public servers until more is known about the RCE exploit. Play on password protected servers and use a decent sv_password so no randoms can join your server, just in case there's really an exploit that can be triggered by any player for any other player on the server.

In general, don't connect to servers hosted by people you don't trust, or RCON-ed by people you don't trust. Because of TF2's server-client model, as far as I know, all the exploits have been from client to server, or from server to client. So a client could crash or RCE a server, or a server could crash or RCE a client. That doesn't mean a client-to-client RCE couldn't exist, so use common sense to decide who you play against for now.

EU serveme.tf passed the 1 million reservations mark last month, while NA passed the 300k mark. Meanwhile human malware is causing a spike in usage in both NA and EU, basically since March when the lockdowns began. Today we peaked at 673 players, I can't remember ever seeing that many concurrent players.

This is causing some strain on the system but we're OK for now and can easily scale up if needed. Currently just operating at higher capacity than normal. Please let us know on Discord if you experience a laggy server (for all players) or if you have premium and can't get a server.

http://fakkelbrigade.eu/i/chrome_gx4jYpxoOl.png

http://fakkelbrigade.eu/i/chrome_lW5KCIpQAH.png

http://fakkelbrigade.eu/i/chrome_1TmhAp5GJ9.png

All this extra activivity is driving more people to buy premium, which is great, but it also causes us to overshoot our monthly goal. The monthly goal covers the server costs (we're a non-profit), and we've used the overshoot of March to cover some losses for having to rent extra NA servers and tools due to DDoSes.

For April, it looks like we'll overshoot the donation target again, by a large margin (it's April 9 and EU is already at 109%). We might have to use this to get some extra servers, but we'll donate the excess to a good cause, currently considering Doctors Without Borders as the recipient, but we're also considering contributing to some TF2 projects like demos.tf and whitelist.tf. If you have better ideas or strong opinions, let us know here or on Discord.

No, sorry. The CSGO version had basically no donations and very few players, so I couldn't justify keeping it running for free while it ate into capacity for TF2.

Please vote for the lizard that best represents your personal interests, so the wrong lizard doesn't get in.

Make sure "sv_shutdown" is not called in any configs, and set tf_allow_server_hibernation to 0 if you keep having issues. Check the VPS logs to make sure you're not hitting memory limits (OOM killer) and start your server with -autoupdate and an update script, this way the server will automatically reboot instead of shutting down.

./srcds_run [...snip...] -steamcmd_script /home/your-user/steam/server-1.txt -autoupdate

Contents of server-1.txt:

@ShutdownOnFailedCommand 1
@NoPromptForPassword 1
login anonymous
force_install_dir /home/your-user/server-1/
app_update 232250
quit

You're still receiving game packets because you get voice lines and a damage marker.

Run a trace with WinMTR to the gameserver and mumble server until you hit a timeout. My guess is a firewall/DoS-filter in your router.

Servers and hosting company are still the same since EU pugchamp started. I'm seeing 8ms ping from the server to your last known IP right now.
Please provide a net_graph 5 screenshot/video during the lag and a trace with WinMTR from your end to "baguette.fakkelbrigade.eu".

For some reason PugChamp never restarts their servers, so these ones have been online for 48 days, which doesn't help.

If you could book a BaguetteBrigade server on serveme.tf and confirm/refute the ping problem there that would be helpful too.

You now have 6 free months of na.serveme.tf premium, so feel free to try out 24/7 MGE on your own box.

I updated the NA servers when steph asked, to fix the first broken auto-update, but the updated version turned out not to work with 1.9 sourcemod.
Sourcemod has now been updated to 1.10, and soap has been updated everywhere manually again and this seems to work.

Still looking for better DDoS protection in NA, suggestions welcome, let me know here or add me on steam. NFOservers anti-DDoS takes a couple of minuts to kick in, which is too long in my opinion.

Also offering a reward for information that will lead to the identity of the DDoSer of NA matches.

The DDoS protected added to 8 of the Chicago servers did not work correctly during peak hours, causing packet loss. It's been disabled.
A similar anti-DDoS system added to the Dallas servers appears to have functioned without problems, so that's staying enabled for now.

Lots of DDoSes recently in NA, so we're trying to get DDoS mitigation on more machines. A total waste of my time and budget for this project, but unfortunately it's necessary once more.

Like in the EU, the NA servers with Anti-DDoS are now marked, please use these for your casted matches. A total of 24 servers with DDoS protection are available right now (LA and Chicago), we're looking to add a central location soon, probably Dallas.

I broke my leg recently and now I can't pay the fees for the league I'll never win with the admins noone likes, plz venmo.

The EU serveme.tf site is now hosted on a shiny new machine, the site might feel a little faster :)

Donations have been solid for NA, so we're looking to maintain the North Carolina machine in addition to the locations from my previous post.

Pretty please?