I already made some security actions as: Difficult password for rcon Only USGN Users allowed Run server as "cs2d" user (not as root) and i added some changes from security page on cs2d.com
Please suggest more security changes for my server
Edit: Oooops. Looks like you already read it. Sorry.
Make sure that you use sv_rconusers! RCon is one of the major weaknesses if someone manages to get the password. This setting makes the rcon password useless unless the attacker also has the login data of one of the specified U.S.G.N. user accounts.
Besides that you can create more strict firewall rules like oxytamine suggested. I'm not an iptables pro so I can't help you with this but there are several ways to control/limit incoming packets. Google might help.
@ Shawni: Securing a CS2D server which is running on Linux includes securing the operating system (Linux) itself. So I'm pretty sure that I'm not wrong at all.
@ DC: And @ Trotskygrad:
Both of you are wrong.
He's talking about security of his cs2d server not a security for linux.
He said he is not running his server as root, which implies he is using Linux. Also if you read his later posts you will even see he said he uses Linux! - Meaning you are wrong. Ghost-Rider is asking for both kinds of security.
Contact me via Xfire: mostafa221
I'll help you out with Linux security. I doubt I could explain all of it, and teach you all here in this thread. Not trying to make a useless post here, but just for you to get help via Xfire for your convenient.
Contact me via Xfire: mostafa221
I'll help you out with Linux security. I doubt I could explain all of it, and teach you all here in this thread. Not trying to make a useless post here, but just for you to get help via Xfire for your convenient.
And why would you not share the information with the rest of the US.de community?
If possible, add somekind of packet filtering to Linux then allow only CS2D packets. Although I don't know how to achieve this myself, it's a good idea however.