Requesting System Admin to Secure Server From Bungeecord Exploit

Status
This thread has been locked.
Max604

Max604

Feedback score
7
Posts
86
Reactions
24
Resources
0
Hello,

I need help securing my bungeecord server. I've set up firewal with UFW, and the only port open is 25565, but people still keep imitating the owner's account and keep griefing the server.

I will pay $5-10 for someone to guide me through the process on how to fix this.

I am lost because I already tried the firewall and it blocks the ports, but people can still tap into the vulnerability on the server and grief.
 
Click to expand...
PebbleHost
High performance, consistent uptime and fast support. Minecraft hosting that just works.
Spenser

Spenser

That guy!
Premium
Feedback score
38
Posts
3,427
Reactions
1,074
Resources
0
Why not just use IPWhitelist on all nonbungee servers? If you need more security, then do IPTables, but IPWhitelist works fine.

IPWhitelist is a free plugin.
 
Max604

Max604

Feedback score
7
Posts
86
Reactions
24
Resources
0
Spenser said:
Why not just use IPWhitelist on all nonbungee servers? If you need more security, then do IPTables, but IPWhitelist works fine.

IPWhitelist is a free plugin.
Click to expand...
If I do that, I lose the ip of each player and then they will be given their offline uuid instead of their proper one.
 
DenyCC

DenyCC

Leaving the scene
Premium
Feedback score
4
Posts
107
Reactions
123
Resources
0
Just change all IP addresses to the sub-servers in their server.properties file and your bungee config to be internal rather than external.

Example:
Bungee: {your external ip}:25565
Hub: 127.0.0.1:25566
Factions: 127.0.0.1:25567
Prison: 127.0.0.1:25568

If you do that in both places, it'll stop people accessing servers without going through the bungee first.
 
Max604

Max604

Feedback score
7
Posts
86
Reactions
24
Resources
0
DenyCC said:
Just change all IP addresses to the sub-servers in their server.properties file and your bungee config to be internal rather than external.

Example:
Bungee: {your external ip}:25565
Hub: 127.0.0.1:25566
Factions: 127.0.0.1:25567
Prison: 127.0.0.1:25568

If you do that in both places, it'll stop people accessing servers without going through the bungee first.
Click to expand...
They are, already.
 
Lockett

Lockett

Supreme
Feedback score
9
Posts
434
Reactions
158
Resources
0
Max604 said:
If I do that, I lose the ip of each player and then they will be given their offline uuid instead of their proper one.
Click to expand...
Letting the player use there offline uuid has no bad effect. It’s actully quite normal. For IPs you just need to make sure that you have Ip fwoard true in the Bungeecord. Run each server in offline mode. Aswell as set the server IP to 127.0.0.1 if all your servers are on the same machine. Lastly confirm Bungeecord is true in Spigot.yml and connection throttle in bukkit.yml is -1.
 
DenyCC

DenyCC

Leaving the scene
Premium
Feedback score
4
Posts
107
Reactions
123
Resources
0
Max604 said:
They are, already.
Click to expand...
If that's the case, it shouldn't be listening externally then.

Follow these steps to secure your firewall from this: https://www.spigotmc.org/wiki/firewall-guide/

Also make sure bungeecord is set to true in each server's spigot.yml. IP forwarding also needs to be set to true in bungee config.

Sourced from: https://www.spigotmc.org/threads/someone-bypassing-bungee-fast.117427/

If none of those help, you've done something wrong because something there should stop it.
 
Status
This thread has been locked.
Top