If you guys manage to set up the build environment for MM:S plugins (and
know how to code in C) I'd be happy to supply my code so you can adapt that.
This solution does require a bit of fiddling (manual setup of an IPsec
filter list and adapting the code to detect EXACTLY what you are looking
for in a packet) so I would say its required for anyone wanting to use
this solution to understand how it works and set it up themselves.
On 2013/08/31 22:16, Nomaan Ahmad wrote:
Hello Dominik,
Could you please write that MM:S plugin? I am interested in it. Thanks
On 31 August 2013 15:26, Dominik Friedrichs <d...@forlix.org
<mailto:d...@forlix.org>> wrote:
In such a case I would write an MM:S plugin that hooks recvfrom,
checks the packet for size and then adds an IPSec rule when the
criteria is met. I had something like this in place on my servers
for the zero length UDP flood exploit which is now resolved.
On 2013/08/31 16:02, Calvin Judy wrote:
Yes, although ipsec wouldn't work in this situation because OP
needs to
drop packets with an invalid size.
_________________________________________________
To unsubscribe, edit your list preferences, or view the list
archives, please visit:
https://list.valvesoftware.__com/cgi-bin/mailman/listinfo/__hlds
<https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds>
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds
