You need direct access to the server if you're going through a GSP, if you don't you're out of luck. You can use Windows Firewall or iptables on Linux to block outgoing TCP connections on port 27015, there's plenty of resources on Google for doing such things. If your server is behind a NAT (some providers like EC2 and Azure do this), then it's easy enough to setup your port security rules.
On Fri, Jan 23, 2015 at 4:07 AM, 2xcombatvet <[email protected]> wrote: > Ok so TCP block. How is this accomplished > > > Sent from my T-Mobile 4G LTE Device > > > -------- Original message -------- > From: Stephen Swires <[email protected]> > Date:01/22/2015 23:06 (GMT-05:00) > To: Half-Life dedicated Win32 server mailing list < > [email protected]> > Cc: > Subject: Re: [hlds] Someone took over server > > It's a TCP block, dunno why he said HTTP explicitly because it isn't HTTP. > On 23 Jan 2015 04:04, "2xcombatvet" <[email protected]> wrote: > >> Ok so I understand everything. So how do I do this HTTP block thing? And >> what about programs that need your econ password like GameME stats? >> >> >> Sent from my T-Mobile 4G LTE Device >> >> >> -------- Original message -------- >> From: Tom Weir <[email protected]> >> Date:01/22/2015 22:50 (GMT-05:00) >> To: Half-Life dedicated Win32 server mailing list < >> [email protected]> >> Cc: >> Subject: Re: [hlds] Someone took over server >> >> +1 on using source mod where possible >> >> If you set the rcon password on the command line, it cannot be changed at >> runtime. >> >> > On Jan 22, 2015, at 7:06 PM, Korrey Moore <[email protected]> wrote: >> > >> > You should not be using RCON when other alternatives for server >> administration exist like Source Mod. RCON is basically root access to your >> server and has almost nil security protection against all sorts of attacks. >> > >> > There have been innumerable RCON exploits exposed over the years on >> pretty much every Valve game that has had it available, so you can pretty >> much assume that there is never a password protecting it. Malicious maps >> can also easily change the RCON password to allow an attacker to take >> control of your server. >> > >> > I would highly recommend you immediately disable RCON by setting the >> rcon_password cvar to blank ( rcon_password "" ) and prohibit external >> access by blocking HTTP traffic to the port the server is running on (by >> default this is 27015 or 27016.) The game uses the UDP protocol for client >> traffic so disabling HTTP will only block connections to RCON. >> > >> > _______________________________________________ >> > To unsubscribe, edit your list preferences, or view the list archives, >> please visit: >> > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds >> >> _______________________________________________ >> To unsubscribe, edit your list preferences, or view the list archives, >> please visit: >> https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds >> >> _______________________________________________ >> To unsubscribe, edit your list preferences, or view the list archives, >> please visit: >> https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds >> >> > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds > >
_______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
