[quake3-bugzilla] [Bug 5954] New: DDOS with getchallenge

Mon Jun 10 04:04:09 EDT 2013

https://bugzilla.icculus.org/show_bug.cgi?id=5954

            Bug ID: 5954
           Summary: DDOS with getchallenge
    Classification: Unclassified
           Product: ioquake3
           Version: unspecified
          Hardware: All
                OS: All
            Status: NEW
          Severity: blocker
          Priority: P3
         Component: Misc
          Assignee: zachary at ioquake.org
          Reporter: jawfin at gmail.com
        QA Contact: quake3-bugzilla at icculus.org

I hope I'm posting in the correct forum, apologies if not.
I was directed here from: -
https://github.com/Razish/OpenJK/issues/281

This related to Jedi Knight:Jedi Academy, specifically the work done by the
guys in the OpenJK project.

Although there is flood protection on getstatus and getinfo, its not aggressive
enough to stop our server from lagging out with what's allowed through.

But my principle issue is protection for getchallenge.  A DDOS attack sending
getchallenge packets completely lags the server and prevents legitimate
connections from happening.  After a period of time the server crashes.

I can get more information if required, my server is hosted by EscapedTurkey
and I can ask them for whatever is needed to solve this.

Thanks for your help
Cheers
Jonathan

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://icculus.org/pipermail/quake3-bugzilla/attachments/20130610/68af2b9d/attachment.html>