Hi!
I host two UT2004 Onslaught server and there have been awhile AG_team -members, who have disturbed. I have banned them from remote web admin client and added thems IP-address to access policies list like 62.203.*.*.
But they comes again and again with new IP-address's. They had to use proxy server or similar?
How I block them finally? Is there any place on UT2004 game: .ini, call script or is there any place to server: firewall etc?
I got this kind of hint how to peek proxy users:
url
http://www.proxy4free.com/page1.html > proxy1.html
curl
http://www.proxy4free.com/page2.html > proxy2.html
curl
http://www.proxy4free.com/page3.html > proxy3.html
curl
http://www.proxy4free.com/page4.html > proxy4.html
curl
http://www.proxy4free.com/page5.html > proxy5.html
grep whois\.cgi\?domain\= proxy1.html | cut -d \= -f 3 | cut -d \" -f
1 | sort | uniq > proxy.txt
grep whois\.cgi\?domain\= proxy2.html | cut -d \= -f 3 | cut -d \" -f
1 | sort | uniq >> proxy.txt
grep whois\.cgi\?domain\= proxy3.html | cut -d \= -f 3 | cut -d \" -f
1 | sort | uniq >> proxy.txt
grep whois\.cgi\?domain\= proxy4.html | cut -d \= -f 3 | cut -d \" -f
1 | sort | uniq >> proxy.txt
grep whois\.cgi\?domain\= proxy5.html | cut -d \= -f 3 | cut -d \" -f
1 | sort | uniq >> proxy.txt
TOR:
alert tcp any any -> $HOME_NET any (msg: "TOR 1.0 Proxy Connection
Attempt"; content:
"TOR"; content: "<identity>"; within:30; classtype:policy-violation;
resp:rst_all; sid:5000030;
rev:1
But where to put on server or on UT2004 files?