Botting

Discussion in 'BungeeCord Help' started by illuminator3, Feb 11, 2020.

  1. So basically some idiot started botting my bungee server with a service called 'mcspam.tech' and now it's always crashing because they're botting it 24/7 with 100 connections per second. How could I handle/stop this?
     
  2. How sad does one’s life have to be to literally pay money to make somebody else’s life miserable?

    I’d recommend trying out an anti-botting plugin such as AntiBot or Bot-Sentry. I haven’t used one of these myself as I don’t run a BungeeCord network, but hopefully they work for you. Good luck! :coffee:
     
    • Friendly Friendly x 1
  3. AntiBot isn't working and I don't have money to buy a premium plugin. (I already tried a paid plugin that is now removed from spigotmc)

    EDIT: Some bots get up to 300 CPS (300 connections per second)
     
  4. If you can’t afford 11 euros, I don’t know why or how you’re running a BungeeCord network. :coffee:
     
  5. I've got enough money but I'm not gonna buy it because the other plugin I bought didn't work.
     
  6. Contact the plugin developer and ask if the plugin will work for your situation. If it does work, you’ll be happy you tried it. Your situation sounds pretty serious, so I’d definitely do anything I could about it.

    Oh, and there’s even an extremely convincing ad for Bot-Sentry! If this doesn’t convince you to buy the plugin, I don’t know what will:



    :coffee:
     
    • Like Like x 1
  7. Phoenix616

    Resource Staff

    You might also want to try blocking their IPs in your firewall with fail2ban before buying anything ;)
     
    • Agree Agree x 1
  8. Doesn’t each bot have a different IP address? If there are hundreds of bots, how would you block each IP address manually?

    I read a little bit about Bot-Sentry, and all it seems to do is add a CAPTCHA so that bots will be blocked but real players can still play. That should work for any type of bot attack. While I haven’t used it myself, it does seem to me like it’d work just fine. :coffee:
     
  9. Phoenix616

    Resource Staff

    I would assume that they don't have unlimited addresses, as soon as there are duplicates in a short amount of time the script I posted would be able to block them. But you could probably also find a way to block all unknown addresses that do nothing but create a connection to the server. Seeing as spam services often don't actually connect with an account but only open a connection a basic captcha based bot blocking wouldn't work, you'd need to detect that it is a bot way earlier.
     
  10. You might try to contact mcspam.tech owner on his website he might be able to help you
     
  11. Someone who offers a service called "mcspam" will probably not give a damn if anyones server is spammed without permission. That's like opening a stress testing service and expecting all customers to use it purely for educational or permitted purposes.
     
  12. Well he helped me no idea why
     
  13. *someone sends a hitman after you*
    hitman: hey i’m here to kill u, i was paid a lot for it
    victim: um why what did i do
    hitman: i dunno man. i kill first and ask questions later ¯\_(ツ)_/¯
    victim: i mean i dont wanna like die or anything
    hitman: well sucks for u bcuz im like literally about to murder u rn
    victim: ummm yah but how bout u dont do that pls?
    hitman: oh ok srry, my bad lol. u should’ve just said that. bye bye.
    victim: thx man. want some tea? :coffee:
     
  14. What's with all the tea emojis?
     
    • Optimistic Optimistic x 1
  15. I don’t know what you’re talking about. :coffee:
     
  16. I meant coffee, not tea.
     
    • Funny Funny x 1
  17. How would I be able to add the script?
     
  18. Phoenix616

    Resource Staff

    You need to install fail2ban on your linux server, then follow the instructions in the two paste files. (You have to set the logpath to your's and the failregex to match the connections that are coming in)