eden.eustice@gmail.com 46 Posted July 22, 2012 (edited) I got a shirty email from my Hosting company today telling me they just forced shutdown my server and reset it back "it came to their attention it was locked against TOS"Now I know for a fact I did not lock it and I don't have access to the Logs as they are too large to open directly via the control panel I have and they don't provide FTP to download it.I am requesting a copy from them BUT:The password for the control panel in game is "Secure" in terms of mix of characters and complexity.I know people are able to run scripts on the servers to mess with the game to an obscene degree currently but is it possible for them to lock the server or gain admin access?I know this password should take the average "power user PC" about 2,500 years to brute force....Suffice to say I'm concerned.It's possible they just got insanely lucky and some how guessed or brute forced the password....but it seems unlikely...and I've not seen anything else about it on the forums.... Edited July 22, 2012 by Cannon Share this post Link to post Share on other sites
Cerven 80 Posted July 22, 2012 Who's your hosting company? Share this post Link to post Share on other sites
suspense 210 Posted July 22, 2012 I got a shirty email from my Hosting company today telling me they just forced shutdown my server and reset it back "it came to their attention it was locked against TOS"Now I know for a fact I did not lock it and I don't have access to the Logs as they are too large to open directly via the control panel I have and they don't provide FTP to download it.I am requesting a copy from them BUT:The password for the control panel in game is "Secure" in terms of mix of characters and complexity.I know people are able to run scripts on the servers to mess with the game to an obscene degree currently but is it possible for them to lock the server or gain admin access?I know this password should take the average "power user PC" about 2,500 years to brute force....Suffice to say I'm concerned.It's possible they just got insanely lucky and some how guessed or brute forced the password....but it seems unlikely...and I've not seen anything else about it on the forums....Without knowing the password, its hard to say if its actually difficult to bruteforce. Now i am not suggesting you should give it out lol, letters and symbols standing in singularity like eqs#€ae can in some circumstances be easy in terms of time to bruteforce, where as several words along can take longer. Let me point out, that this is not always the case.In regards to the scripts, no, theres no way the server was locked due to a script being run by a hacker. If the server indeed was locked, it was done through the control panel of your host. I highly suggest you find a host that allows ftp access or rdp to the vps its running on, in ArmA 2, a simple control panel just doesnt provide you with the tools you need to keep it safe, and keep track of whats going on. Share this post Link to post Share on other sites
eden.eustice@gmail.com 46 Posted July 22, 2012 (edited) Well that's good to know at least!Ya sadly i'm full aware our pitiful level of access really leaves us little better than public players who can reboot the server but given it's a service we pay for I don't want to be left carrying the can and the bill for a server that's blacklisted =p but I know it's mostly due to the restrictions and abuse of the Alpha TOS.I've worked in IT for the better part of 15 years so trust me the password is secure, 14 digits, Letters numbers and special character substitution, nothing related to the server, host or our publicly listed names or DayZ and no dictionary attack will help.Ok at least I know it was done via the panel, I've asked the host (Host Altitude) to let me know when/how/by Whom it was locked and for how long so I can investigate from there.I do have 2 friends who have the admin deets but I trust them both when they say It wasn't them.I'm just waiting for the server to go quiet (it's still full and I can't login to game from here to send a shutdown message) before I stop the server to change the password just in case.This time it will be a password that will take even the most powerful super computer on earth (that we know about) 394 years to brute force or a couple billion years for the average machine..If it stll gets locked again I'll know something seriously dodgy is going on or someone in the secret service likes DayZ and our Server and want's it all to thesmselves XDDDDD ;) Edited July 22, 2012 by Cannon Share this post Link to post Share on other sites
eden.eustice@gmail.com 46 Posted July 23, 2012 Never mind looks like the mail was sent in error, minor admin error causing me a small anurism XDThey have apologised and I can breathe a sigh of non hacked server relief =p Share this post Link to post Share on other sites
tofucake 6 Posted July 23, 2012 On a related note, get an RCon client (BERCon or RCon GUI). That will let you announce without having to load up the game. Share this post Link to post Share on other sites
eden.eustice@gmail.com 46 Posted July 23, 2012 I've heard about those tools, is it possible to use them with a hosted VM? if so I'll get right on it ^_^ Share this post Link to post Share on other sites
eden.eustice@gmail.com 46 Posted July 23, 2012 Sweeeet, thanks :) Share this post Link to post Share on other sites
