our server has been hacked by some cheaters.
I would like to have following security stuff in openTTD server running linux:
- Fail2ban will check if somebody attempts to login with Wrong SERVER password 10 or 20 times. And If yes, it will ban IP address of the attacker.
- Fail2ban will check if somebody attempts to login with Wrong RCON password 10 or 20 times. And If yes, it will ban IP address of the attacker.
- Fail2ban will check if somebody attempts to login with Wrong COMPANY password 20 or 30 times. And If yes, it will ban IP address of the attacker.
- How to log users IP addresses
- How to setup Fail2ban to check attempts mentioned above
I created new company today with super long password. I hope there is no exploit in game so it would be really big problem for OpenTTD.
Here are logs of what I have seen: (google translate to english)
[2019-01-04 19:42:37] *** Game Suspended (Clients Join)
[2019-01-04 19:42:40] *** Player # 1 joined the game (client # 192)
[2019-01-04 19:42:40] [Everyone]: Hello! Welcome to this server. I wish you nice
[2019-01-04 19:42:40] *** Game Restored (Clients Join)
[2019-01-04 19:42:47] *** Player # 1 joins company # 1
[2019-01-04 19:45:14] *** Player # 1 leaves game (disconnect)
[2019-01-04 20:05:45] *** Player leaves game (disconnect)
[2019-01-04 20:05:45] *** Game suspended (lack of players)
I think this is REALLY important and the whole community of OpenTTD should be aware on this problem.
[TrueBrain]: I changed the topic, as it has little to do with a vulnerability.