[hlds_linux] Is there a way to retrieve my passoword for the list?

2002-10-15 Thread Mr.Magoo 

Lost my hd, and I need my password to get into the archives, and I don't
want to wait until the first.

___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

[hlds_linux] FW: [hlds] What are the ports again?

2002-10-15 Thread Stan 



-Original Message-
From: Leon Hartwig [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, November 27, 2001 4:30 AM
To: [EMAIL PROTECTED]
Subject: RE: [hlds] What are the ports again?


Client
==
TCP 6003:
Outgoing connectivity to this port on remote destinations.  Used for
chat in the HL browser.

UDP 27005:
Incoming connectivity to this port (or whatever port the client has
changed this to, if not using the default).  Used for game traffic
between client and server.


Server
==
TCP 7002:
Outgoing connectivity to this port on remote destinations.  Used for WON
auth.

UDP 27010:
Outgoing connectivity to this port on remote destinations.  Used for
advertising a server on the master lists for server browsers.

UDP 27015:
Incoming connectivity to this port (or whatever port the server had been
changed to, if not the default).  Used for all client/server game
traffic, server info requests, etc.
___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

RE: [hlds_linux] [OT?]Securing a linux box running HLDS

2002-10-15 Thread Stan 


> Looks like I'll leave OUTPUT at accept all, and DENY ALL on
> INPUT.  As far
> as I can see all I need to let in is TCP 22 for SSH, TCP and
> UDP on port
> 2701x (what ever the server(s) are/is on) and TCP 27011 for
> the banlist


TCP isn't used on the 2701x port, only UDP.

StanTheMan
TheHardwareFreak
http://www.hardwarefreak.com
rcon admin at:
Beer for Breakfast servers
   209.41.98.2:27016 (CS multi-map)   209.41.98.2:27015 (DoD)
   209.41.98.2:27017 (CS militia/dust2)Dallas, TX

___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

Re: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test

2002-10-15 Thread kama 


Its not in the generic kernel. you have to add it.
it is all listed in /usr/src/sys/i386/conf/LINT

/Bjorn

Never trust a man who can count to 1023 on his fingers.

On Sun, 13 Oct 2002, Killah Clanservers Nederland wrote:

> where is hz option ?
> Met vriendelijke groet,
>
> Evert Goor
> Clanservers Nederland
> [EMAIL PROTECTED]
> www.clanservers.nl
> - Original Message -
> From: "kama" <[EMAIL PROTECTED]>
> To: "Gustaf Carleson" <[EMAIL PROTECTED]>
> Cc: <[EMAIL PROTECTED]>
> Sent: Sunday, October 13, 2002 5:33 PM
> Subject: Re: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
>
>
> >
> > You need to change the HZ option in the kernel.
> >
> > option HZ=1000
> >
> > /bjorn
> >
> > These aren't the droids you're looking for.
> >
> > On Wed, 9 Oct 2002, Gustaf Carleson wrote:
> >
> > > I have now tried pingboost 1 and the fps is the same.. could hlbooster
> have
> > > something to do with it?
> > >
> > > /Gustaf
> > >
> > > - Original Message -
> > > From: "DaiTengu" <[EMAIL PROTECTED]>
> > > To: <[EMAIL PROTECTED]>
> > > Sent: Wednesday, October 09, 2002 11:12 AM
> > > Subject: RE: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
> > >
> > >
> > > Try a different pingboost option, and see if it changes at all...
> > >
> > > -Original Message-
> > > From: [EMAIL PROTECTED]
> > > [mailto:[EMAIL PROTECTED]] On Behalf Of Gustaf
> > > Carleson
> > > Sent: Wednesday, October 09, 2002 3:20 AM
> > > To: [EMAIL PROTECTED]
> > > Subject: Re: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
> > >
> > > I use pingboost 3..
> > >
> > > /Gustaf
> > >
> > > - Original Message -
> > > From: "DaiTengu" <[EMAIL PROTECTED]>
> > > To: <[EMAIL PROTECTED]>
> > > Sent: Wednesday, October 09, 2002 9:58 AM
> > > Subject: RE: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
> > >
> > >
> > > Are you using any of the pingboost options?
> > >
> > > I'm using -pingboost 1 and I get 97-102
> > >
> > > -Original Message-
> > > From: [EMAIL PROTECTED]
> > > [mailto:[EMAIL PROTECTED]] On Behalf Of Gustaf
> > > Carleson
> > > Sent: Wednesday, October 09, 2002 2:14 AM
> > > To: [EMAIL PROTECTED]
> > > Subject: Re: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
> > >
> > > I have done the host_speeds 1 for my linux server and I don't get more
> > > than
> > > 50 fps on my pIII 650 mhz..
> > >
> > > /Gustaf
> > >
> > > - Original Message -
> > > From: "Kevin J. Anderson" <[EMAIL PROTECTED]>
> > > To: <[EMAIL PROTECTED]>
> > > Sent: Tuesday, October 08, 2002 11:21 PM
> > > Subject: RE: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
> > >
> > >
> > > yeah, freebsd is great for inet servers for sure.   the only reason i
> > > dont
> > > use it for our lan servers is that fbsd limits the server fps to like 50
> > > (or, it used to at least)  do a host_speeds 1 in your console, and see
> > > what
> > > happens.
> > >
> > > kev
> > >
> > > -Original Message-
> > > From: [EMAIL PROTECTED]
> > > [mailto:[EMAIL PROTECTED]]On Behalf Of Oscar N
> > > Sent: Tuesday, October 08, 2002 5:08 PM
> > > To: [EMAIL PROTECTED]
> > > Subject: Re: [hlds_linux] Linux, FreeBSD, Windows 2000, Latency test
> > >
> > >
> > > On our dual pIII computer with linux we run two 18 player servers that
> > > are full all the time. The ping has been around 70-80ms in-game lately
> > > for most of our players. After I installed FreeBSD they suddenly had
> > > around 50ms latency in-game !?! And that was even after I added HLGuard
> > > which was not installed on linux...
> > > So I've spend most of the day to install FreeBSD instead of linux on all
> > > of our servers. I also like the way you can install  software with
> > > ports, I might even change to FreeBSD on my laptop :)
> > >
> > > Well, this is the end of the über high-tech test. The conclusion is to
> > > switch to FreeBSD ;)
> > >
> > > /Oscar, www.bhood.nu
> > >
> > > Kevin J. Anderson wrote:
> > >
> > > >yeah, ive always thought it would be great if someone made a way to
> > > have
> > > >bots join a remote server.  there would be obvious cheat ramifications,
> > > but
> > > >if there was a server side setting that would only allow them to join
> > > when
> > > >say sv_cheats 1 was enabled, it would make for a great way to benchmark
> > > >servers.   I myself could reay use this, as I help run a pretty
> > > large
> > > >lanparty, and so far I have been extremely conservative in how many
> > > tourney
> > > >games I run per dual system. (4 x 10player servers only)  I know I
> > > could
> > > >host more, but I want the tourney matches to be flawless, and so far
> > > >everyone has had nothing but compliments as to the quality of the
> > > servers.
> > > >
> > > >kev
> > > >-Original Message-
> > > >From: [EMAIL PROTECTED]
> > > >[mailto:[EMAIL PROTECTED]]On Behalf Of m0gely
> > > >Sent: Tuesday, October 08, 2002 12:47 PM
> > > >To: [EMAIL PROTECTED]
> > > >Subject: Re: [hlds_linux] Linux, FreeBSD, Windo

RE: [hlds_linux] [OT?]Securing a linux box running HLDS

2002-10-15 Thread Jez McKinley 

That is one of the clearest explanations of setting up ipchains I have seen,
and I read a lot when trying to get to grips with it a while back. Nice Job.

-Original Message-
From: Nathan Clark [mailto:[EMAIL PROTECTED]]
Sent: 15 October 2002 08:13
To: [EMAIL PROTECTED]
Subject: Re: [hlds_linux] [OT?]Securing a linux box running HLDS


Hi James and Adam

You'll find that most of the stuff written about iptables is by geeks, for
geeks, and isn't much help to anyone who just wants to get a box up and
running safely.

This is a VERY simple explanation, it takes a WHOLE lot more than this to
secure a box properly, but this should help you understand iptables a bit
more.

Basically there are three components to iptables

1. The INPUT chain
2. The FORWARD chain
3. The OUTPUT chain

You can add rules to these components to allow/disallow network traffic that
meets a certain set of criteria. I'll go over the criteria in a moment.

1. INPUT - this is the chain that monitors and applies rules to connections
being made TO your server (i.e. other computers wanting to connect to your
server)
2. FORWARD - this chain is used when routing traffic across your server, not
covered here
3. OUTPUT - this chain monitors and applies rules to connections being made
FROM your server to other computers on the internet (i.e. applications
running on your server that want to connect to other computers on the
internet)

Determine what interface you want to use i.e. eth0 ppp0 etc. Basically which
interface the game is going to run on.

Now making rules to add to the chains.

The default rule I first set is on the INPUT chain, in fact it's not a rule
but a policy and that policy is set to drop ALL traffic coming across that
interface. Oh yeah, be logged in as root.

iptables -P INPUT DROP

Now nothing can connect to any network service running on your server. All
traffic will be dropped.

Now you can add your exceptions, i'll explain what each one does.

iptables -A INPUT -i eth0 -p tcp --dport 27015 -m state --state
NEW,ESTABLISHED,RELATED -j ACCEPT

explanation of above line
1. iptables - this is the iptables program
2. -A INPUT - this adds the rule to the INPUT chain
3. -i eth0 - this tells iptables that we are making a rule which only
applies to this interface, in this case the first network card in my
machine, eth0
4. -p tcp - this tells me which protocol i'm dealing with, in this case i
want to allow tcp traffic across eth0 on the INPUT chain
5. --dport 27015 - this is the port I'm running my server on and i want tcp
connections allowed to it across eth0 on the INPUT chain
6. -m state - this is the stateful part of the rule, it means I can really
control what sort of packets are allowed into my server
7. --state NEW,ESTABLISHED,RELATED - these are actually three different
states and they don't all have to be used together. NEW means this rule will
allow NEW connection packets to establish a connection to the server.
ESTABLISHED means the packet already has an established connection with the
server and is allowed to proceed. RELATED means that the packet is related
to a connection already established but may be something different such as
an ICMP error. This is not needed for running hl game servers.
8. -j ACCEPT - this says basically says "if all these criteria are met then
jump off and do THIS, the "THIS" being ACCEPT, which allows the traffic
through.

You'd also want to add the same for the udp protocol so you'd make another
rule:

iptables -A INPUT -i eth0 -p udp --dport 27015 -m state --state
NEW,ESTABLISHED,RELATED -j ACCEPT

Anyways that's basically how it works.

You then save it by typing:

service iptables save

You'll find things may not be working since you put the rules in, research
how the apps on your server work and make exceptions to you rules
accordingly.

Hope that helps.

Cheers
Nathan



- Original Message -
From: "James Gurney" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, October 15, 2002 2:20 PM
Subject: Re: [hlds_linux] [OT?]Securing a linux box running HLDS


> Adam Hobbs wrote:
> > rule, or can even point me to an online guide to doing it I would be
most
> > appriciative.
>
> Go to Google and do a search for "Linux firewall howto" and you'll find
> probably a dozen guides to setting up a firewall using ipchains/iptables.
>
> ___
> To unsubscribe, edit your list preferences, or view the list archives,
please visit:
> http://list.valvesoftware.com/mailman/listinfo/hlds_linux
>


___
To unsubscribe, edit your list preferences, or view the list archives,
please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

RE: [hlds_linux] [OT?]Securing a linux box running HLDS

2002-10-15 Thread Adam Hobbs 

nathan writes

Hi James and Adam

You'll find that most of the stuff written about iptables is by geeks, for
geeks, and isn't much help to anyone who just wants to get a box up and
running safely.





Thanks Nathan, gave me a bit better understanding.  Im using ipchains, but
it seems to be similar enough.

Looks like I'll leave OUTPUT at accept all, and DENY ALL on INPUT.  As far
as I can see all I need to let in is TCP 22 for SSH, TCP and UDP on port
2701x (what ever the server(s) are/is on) and TCP 27011 for the banlist

Only thing I am yet to work out is how to get the rules applied at boot
time.

mentasm

___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

Re: [hlds_linux] Helping me convince the IT guy...

2002-10-15 Thread Anders Vinger 

At 19:36 14.10.2002 -0400, you wrote:
>I have been trying to convince my IT guy to let me park a server.
>
>He is concerned about what is stopping anyone from hacking into our
>server and then getting into the rest of our network here at work. He is
>also concerned about someone ping flooding our connection.
>
>Also I need to know what an 18 player TFC server would use for
>bandwidth. I remember a long time ago a spreadsheet with bandwidth
>statistics on it.
>
>Any help would be greatly appreciated.

As an "IT-guy" myself, there is no way in h... I would do this if I didnt
personally have an interest. Setting up a game server and keeping an eye on
it is some work. If one of the users around my place asked me to set up a
game server for them, I would laugh, and send them packing.

I dont give a damn about the security issue, it is easy to handle, doing
extra work for a simple user? lol


DarkSpawn
And yes my clan tag is [BOFH]

___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux

[hlds_linux] changelevel

2002-10-15 Thread John Frings 

Hi, I set up a server on my slackware server for cstrike a couple of days
ago. I noticed that when the time for a map is up hlds_l says "map hldm1 not
found". I only have valid cstrike maps in the cstrike/maps folder and
mapcycle.txt in cstrike/ contains all the maps in the cstrike/maps folder. I
set it up just like I use to but this time there seems to be something weird
happening when the daemon is to change maps.

Anyone know whats wrong?

/John

___
To unsubscribe, edit your list preferences, or view the list archives, please visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux