The hl1 server update that was just released addresses this crash, thanks to Tuga for providing the details.
> -----Original Message----- > From: [email protected] [mailto:hlds_linux- > [email protected]] On Behalf Of Marco Padovan > Sent: Monday, March 05, 2012 12:26 PM > To: Half-Life dedicated Linux server mailing list > Subject: Re: [hlds_linux] New GoldSrc exploit > > Do you got a traffic dump about this kind of packets? > > Il 05/03/2012 15:12, Tuga aka mabaclu ha scritto: > > There is a new exploit able to crash Counter-Strike 1.6 servers > (linux and > > windows) and probably all other HL1 game servers. > > I've been looking for a fix and I found these iptables rules: > > This logs the attack: > > iptables -I INPUT -p udp -m length --length 222 -j LOG --log-prefix > > "Exploit: " --log-ip-options -m limit --limit 1/m --limit-burst 1 > > This blocks it: > > iptables -I INPUT -p udp -m length --length 222 -j DROP > > > > I don't know if those iptables rules work or not because I haven't > tested > > yet, but I have the exploit and I can test it if needed. > > Is there any HLDS update being prepared to fix this? > > I'm running HLDS version 5408. > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list > archives, please visit: > > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux
