I thought srcds was changed in the last few months so it'd be much harder to do a reflection attack using it / not even worth their time to do so? I just got hit by one from a lot of srcds servers. I took an IP dump and did a quick search, and almost all of the hosts were srcds servers. Some of them were COD4, but most of the traffic was coming from srcds servers. It was only a ~300 MB/s attack, from ~2.4k hosts, directed at UDP Port 80.
It was pretty trivial to block it (they didn't even direct it at my own srcds for some reason, I guess they wanted to take my httpd offline but don't realize all udp to port 80 is blocked?)... but I thought this issue was patched up in srcds? _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
