Tantra Freelancer
- Joined
- Apr 9, 2014
- Messages
- 541
- Reaction score
- 23
It doesn't matter how many times you change your ports. There are programs that will always find those ports no matter what. You can't block everthing.
If you are using K4 then the answer is no. It costs approx $2000/month to achieve the correct level of protection to guarantee that you will not be ddosed on your zones. There is no true software based firewall that can filter the good packets and bad bad packets without blocking all traffic. What you need is a hardware based firewall or some other form of protection with your DNS. These are the only suggestions I can suggest for K4.
If this is K6 then the answer has already been done in here which is the exploits for them. I don't have the information to give to resolve this other than what I have suggested to everyone. But, the flaws are in your boards, mail and /ashramlv using %. This is code used by both the zone.exe and HTLauncher.exe. It is used to send and receive information from both. Just a thought to think about.
sorry for the late reply. port scanners can easily determine your flaws. you can mirror your server (that means you have to pay a lot of $$$), or purchase hardware. But since this issues of exploits, it will continue to divulge in several ways. All of us knows how the SQL works... We know how Zones and HTLauncher connect with each other... We know well how SQLDAEMON.EXE and CHATSRV.EXE get our data from client... and we certainly know how packets are transmitted even though we alter the time stamps. This are the main exploits every tantra server is facing.
Disabling Ashramboards and Msgboards might lessen the damage. The server is prone to attack that most previous exploiters are still happily doing... because the files especially K4 (no 3-skillbar) has lack of protection from exploits... However, K5 has been addressed most of the exploits before it was discontinued.
MY experience, the server was attacked thru several ways... typing % /n /% on message boards, ashram boards or even simply on private message... the very dangerous one are trainers made in c++ that can directly connect like HTLauncher function and shuts down your server... the others are just resetting your server and duping items... some are HTLauncher based re-engineering... and several others to mention that totally stuck your server.
KyleMarvin give up his server online due to this exploits. but with his permission, only selected can connect thru online. I do the same. Less people, the more you know them... less connection., less exploits... You will also find who your real friends are.
I also re-engineered everything, because of several glitches that spawned... and resolve most of it. Friends are helping me by reporting glitches, so we all enjoy playing.
Those that have it fixed are not willing to share how they have it done but, they haved offer hints so that you can figure it out.
And I thank everyone who shared the hint.
only by use of the gmtool to reset the accounts mb points. there is no other way at this time
when you open up the accounts you can see the master points in it. simple reset them back to 0 and save the account
in my opinion, MBrahmanPoints was a subsidiary of Master Point that displays in the Website (not the actual Master Point) so it can be reverted to zero by creating an sql script. (e.g. SELECT * from dboTantra WHERE MBrahmanPoint > 0; ).
That's my opinion. But I don't revert them to 0. I don't know for what purpose is that.