Ask questions about dedicated servers here and we and other users will do our best to answer them. Please also refer to the self-help section for tutorials and answers to the most commonly asked questions.
Today i was on the VDS and a message pops up that someone else has connected, and it kicked me off each time i tried to reconnect.
All i have done is enable FTP for filezilla and webhosting, could it be any of those? I find it really frustrating, the attacker even closed my server and opened Server manager but i don't think he did anything, he is no longer trying to connect.
I have stopped the running process webhosting in servermanager.
This is a good reminder to everyone not to install WAMP or XAMPP on a production server unless you really know what you're doing (and if you do know what you're doing.. you should be installing the applications directly anyway). We see far too many people who are immediately exploited like this when they do it.
Your safest bet would be to do as John suggested, and backup your game servers and do a reinstall of windows. You will have the same IP address(es), so your players will be able to find you again when you're back online.
You could try to do a system restore, which would restore your OS to a previous state(you would lose any changes made to the OS/files after that point though).
Edge100x wrote:This is a good reminder to everyone not to install WAMP or XAMPP on a production server unless you really know what you're doing (and if you do know what you're doing.. you should be installing the applications directly anyway). We see far too many people who are immediately exploited like this when they do it.
You should back up your files and perform a wipe.
Edge,
Can you provide more details on this? I have WAMP running for my B3 database but I followed all your recommended security tips and only use FileZilla to transfer applications and install locally. Changed FTP and RDP ports as well.
Edge100x wrote:This is a good reminder to everyone not to install WAMP or XAMPP on a production server unless you really know what you're doing (and if you do know what you're doing.. you should be installing the applications directly anyway). We see far too many people who are immediately exploited like this when they do it.
You should back up your files and perform a wipe.
Edge,
Can you provide more details on this? I have WAMP running for my B3 database but I followed all your recommended security tips and only use FileZilla to transfer applications and install locally. Changed FTP and RDP ports as well.
It's really not just WAMP or XAMPP that are insecure, most pre-configured options are going to be insecure since they are not designed for a production environment. They were designed as a quick and easy way to do development and testing.
That doesn't mean they can't be secured, it just takes a bit more work to do so. Generally people that use those applications don't know what steps to take and in-turn leave them unsecured indefinitely.
@Kraze^NFo> Juski has a very valid point
@Juski> Got my new signature, thanks!
@Kraze^NFo> Out of context!
@Juski> Doesn't matter!
@Juski> You said I had a valid point! You can't take it back now! It's out there!
