No, adding a port to the challenge combo removes the security it provides. - Alfred
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jess Kitchen Sent: Thursday, May 27, 2004 11:03 AM To: [EMAIL PROTECTED] Subject: RE: [hlds_linux] Anti brute-force feature (Alfred?) On Wed, 26 May 2004, Alfred Reynolds wrote: > There is a single challenge per IP. If you send an incorrect challenge > value (because you used another rcon tool from the same machine or > because the server restarted) then the server will reply to any rcon > requests with "Bad challenge." Client tools need to detect this string > and redo the "challenge" query to get an updated challenge value. > > Sending the wrong challenge too many times in a row will NOT cause you > to be auto-banned from the server (it just keeps ignoring you). > Sending the wrong password too many times WILL. Hi Alfred, Thanks for the clarification. Can you investigate doing the challenge per IP and port combo? I think it's a reasonable enough (and simple) request. Cheers, Jess. -- Jess Kitchen ^ burstfire.net[works] _25492$ | www.burstfire.net.uk _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
