[crossfire] metaserver differences and code
Rick Tanner
leaf at real-time.com
Fri Apr 14 15:00:24 CDT 2023
Another note...
https://sourceforge.net/p/crossfire/metaserver/ci/master/tree/meta_update.php#l40
Which is:
// Basically, either forward or reverse addressing must work -
// if the ip that the user specified hostname resolves to does
// not match that of the incoming connection, or the hostname based
// on the ip of the incoming connection does not match that specified
// by the server, we reject this user - no spoofing of other servers
// allowed.
if ($ip != $_SERVER['REMOTE_ADDR'] && $hostname != $_POST['hostname']) {
echo "neither forward nor reverse DNS look corresponds to incoming
ip address.\n";
echo "incoming ip: " . $_SERVER['REMOTE_ADDR'] . ", DNS of that:
$hostname\n";
echo "User specified hostname: " . $_POST['hostname'] . " IP of
that hostname: $ip\n";
log_message(LOG_WARN, $_SERVER['REMOTE_ADDR'] . " does not have
correct hostname set\n");
exit;
}
And find this:
$ dig crossfire.crowcastle.com
crowcastle.com.
173.48.158.241
$ dig -x 173.48.158.241
pool-173-48-158-241.bstnma.fios.verizon.net.
More information about the crossfire
mailing list