How we as players can stop the DDOS - Rust

The DDOS attacks are coming from a french group using this domain. [url]http://WWW.DCRI.EC[/url] DCRI is [url]https://www.facebook.com/DirectionCentraleRenseignementInterieur[/url] --- They are spoofing the name of a french intelligence agency. This agency vigorously defends fraud of their name, and address. DCRI.EC is using their address as the business address for their website on Whois [url]http://WWW.DCRI.EC[/url] --- In addition to using it on CLOUDFLARE a website tool that stops DDOS attacks, that they have licensed for their site. 1. Report the cloudflare violation. -- go to cloudflare.com -- False use of an address breaks Terms of use. 2. Report the name/adress violation directly to [url]https://www.facebook.com/DirectionCentraleRenseignementInterieur[/url] 3. [url]http://www.interpol.int/Forms/Contact_INTERPOL[/url] -- Report the [url]HTTP://www.DCRI.EC[/url] for false use of a government mailing address, distribution of hacking tools for illicit purposes, and extortion.

Bump because why not. Keeps me busy at least. I mean doing this shit keeps me busy. Not the bumping.

''Website offline'' <-- does this mean their servers are down and DDOS has stopped or is it irrelevant?

[QUOTE=Justiful;43357551]The DDOS attacks are coming from a french group using this domain. [url]http://WWW.DCRI.EC[/url] DCRI is [url]https://www.facebook.com/DirectionCentraleRenseignementInterieur[/url] --- They are spoofing the name of a french intelligence agency. This agency vigorously defends fraud of their name, and address. DCRI.EC is using their address as the business address for their website on Whois [url]http://WWW.DCRI.EC[/url] --- In addition to using it on CLOUDFLARE a website tool that stops DDOS attacks, that they have licensed for their site. 1. Report the cloudflare violation. -- go to cloudflare.com -- False use of an address breaks Terms of use. 2. Report the name/adress violation directly to [url]https://www.facebook.com/DirectionCentraleRenseignementInterieur[/url] 3. [url]http://www.interpol.int/Forms/Contact_INTERPOL[/url] -- Report the [url]HTTP://www.DCRI.EC[/url] for false use of a government mailing address, distribution of hacking tools for illicit purposes, and extortion.[/QUOTE] An intelligent post about the DDOS and something we actually CAN do that doesn't involve a witch hunt. +1 for you OP

Too bad this isn't a DDoS... Its a completely different kind of attack.

[QUOTE=Ravin;43358609]Too bad this isn't a DDoS... Its a completely different kind of attack.[/QUOTE] DDoS is a broad term that includes many different kinds of attacks. Any attack that disrupts access to a service is a Denial of Service and any DoS that comes from many different machines is a Distributed Denial of Service attack.

[QUOTE=HEALVUR;43358639]DDoS is a broad term that includes many different kinds of attacks. Any attack that disrupts access to a service is a Denial of Service and any DoS that comes from many different machines is a Distributed Denial of Service attack.[/QUOTE] Wrong. this is a security issue with Rust Servers themselves. Its an exploit. Its a kind of DDoS, but doesn't follow the same kind of attack as a DDoS. They are not even slamming servers with packets of Data.

[QUOTE=Ravin;43358609]Too bad this isn't a DDoS... Its a completely different kind of attack.[/QUOTE] Regardless of what kind of attack this is, OP still has a valid point.

[QUOTE=Ehngage;43358706]Regardless of what kind of attack this is, OP still has a valid point.[/QUOTE] Didn't deny that OP has a good point. However, people keep looking for solutions in the wrong places. Thats why it has taken four days to fix this problem because its not a simple DDoS attack. It is a direct issue with the Rust servers they are exploiting to give them the results of a DDoS attack without even having to use a DDoS attack. You don't tell someone with a knife wound its a bullet wound just because they bled the same way.

Cloudflare doesnt give a damn.

If anybody else wants to get there stuff down, it's hosted on 1 VPS; TS+Website. Cloudflare Resolved: Mail: 50.17.226.60 Direct: 50.17.226.60 Direct-Connect: 50.17.226.60 Direct-Connect-Mail: 50.17.226.60 CPanel: 50.17.226.60 server: 50.17.226.60 www: 50.17.226.60

[QUOTE=Ravin;43358704]Wrong. this is a security issue with Rust Servers themselves. Its an exploit. Its a kind of DDoS, but doesn't follow the same kind of attack as a DDoS. They are not even slamming servers with packets of Data.[/QUOTE] Wrong. "In computing, a denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a machine or network resource unavailable to its intended users. Although the means to carry out, motives for, and targets of a DoS attack may vary, it generally consists of efforts to temporarily or indefinitely interrupt or suspend services of a host connected to the Internet." Just because it isn't a vanilla DDoS attack doesn't mean it isn't one at all.

Lets get back on topic. Keep reporting them to those three links. If anyone lives in france, or speaks french please report it to the proper authorities.

How do we even know its these guys that are doing it? Sorry but I don't know you OP and reporting someone on your say so does not fly...what proof do you have?

Go on their teamspeak. Speak french. Ask them about it. They freely admit it. They also have been offering tools to participate to many people. They are not hiding it. They are convinced nothing will happen to them.

TeamSpeak IP?

I saw someone else who posted the TS info get banned. But... it is the "standard" redirect based on website... Like most website redirects to it... So go ahead and do that :-p.

The term DOS is correct in this case. Service is being denied.

[QUOTE=Justiful;43362614]Go on their teamspeak. Speak french. Ask them about it. They freely admit it. They also have been offering tools to participate to many people. They are not hiding it. They are convinced nothing will happen to them.[/QUOTE] In saying this I assume you can translate or speak French fluently. Otherwise, this post is as meaningless and fraudulent as many others... such as the one earlier talking about it being Apple ddosing them. Shit cracked me up so hard.

Hunt -- No I do not. But yes I sent in a few separate translators from my community. They did confirm it.

Pretty much these guys doing it... [IMG]http://i41.tinypic.com/solbpz.jpg[/IMG]