AwakenedRage

Haha, I can see your confusion with us having no players at this moment. However yesterday we had a considerably large amount of players on the server. You have to keep in mind that we aren't a very popular server at the moment and a majority of our player base is either in High School or College (Which just recently started for most people). Its understandable that our player base may be doing other things, but that will not keep us from contributing to the server. Most of us have been working on other things related to the community and constantly check on the server for players in the process. If a player joins, more staff will get on the server, but as of right now it is not needed. ~ AwakenedRage98 / Michael

I'm sorry to announce that we had alot of delays dealing with the Database Permission system and as a result it has caused us to push the date back a day. So the set date is now Monday!

The staff here at CU are happy to announce that within the next coming weeks our server will once again be changing to a hub sever architecture to evenly distribute performance and perform much smoother. But that isn't the whole reason, we are also introducing a Minigame server that is mutually ran by CU and a couple small server communities. This server includes Survival Games and many other minigames that players can participate in to receive money upon the match ending. Money on our economy system can be used to buy all sorts of items that can be used in the CU survival world as well as other servers. In order to accomplish this alot of plugins had to be removed and replaced with another plugin that can share data between servers. We decided to store all the data in multiple databases and transfered existing data from the current server on Tuesday in order to get a good idea on what players data is having issues transfering. Turns out, the transfer process takes alot longer then we expected (15+ hours With 1095 unique players on the server) Due to the high amount of time regarding the transfer, we have decided to retain the data from Tuesday night on the databases. We are completely aware that players will still be on the server making changes to their inventory while this is in the works. However, we request that our players who have been on the server after Tuesday night to place their whole inventory for the survival world in a chest so that items that were made/retrieved after Tuesday night will not be lost.The Estimated date that this will take place is on Next Sunday, (We encourage users to check this post often, because this date MAY change) While transfering the database we found that the following players inventories were having trouble transfering: - Dialga (Survival) The players listed above will need to put their inventory in a chest before the estimated date or their inventory will not be retained. But we wouldnt announce this much information for something that is in the works now would we? Well, I am pleased to confirm that I have my schedule completely free. With this opportunity I am positive that I can get a test server up by Sunday, maybe even earlier (No promises though) The test server will be under a whitelist so we can test the server at a controlled limit. In order for players to get whitelisted you will have to go to the CU Test Server Registration topic on the forums. All ND Staff and CU Staff are whitelisted by default, but if I missed anyone just PM me and I will whitelist you. Preregistration are allowed and are encouraged, however you should note that world data on the test server will not be retained when the SG server goes public. Lastly I wanted to talk about security on the new servers, we want to let all users know that the backend of the servers will not be accessiable to anybody but me, Halo, and some ND Staff. Nobody from the other small communities will have access. CONFIRMED DATE: Labor Day 11AM Hope you all enjoy your labor day weekend, ~ Michael/ AwakenedRage98 Task List: XenCenter Updates CentOS Installed on Xenserver VM's: 2 out of 2 Backend Configuration Server File Reorganizing BungeeCord Configuration Auto-In Socket Configuration Warps Verification Minigame Shop Working New Economy System Implementation. IP: mc.nucleardistrict.net:36279

All of Chaotic United's services will be unavailable Friday night at 3AM to 4AM Central time so we can put the necessary fixes to our PostGRESQL and MySQL Database servers. For your convenience we have scheduled it at a time that wont be most likely to interrupt anyone.

Thanks for the information, I noticed before looking at this message that the DBServer has completely stopped responding. Its an problem with the Operating System itself and now I am taking the appropriate action to fix the Database. I'll be sure to update you on my progess.

We already know how the crash of the server occured and whoever iniated the mass amount of bots to flood the site with spam.was IP Spoofing all except a couple IP's. To farther clarify, we do know that Nuclear District DID NOT cause the crash due to the fact they would not be able to pull off such an advanced attack involving over 9,000 IP addresses. Our gameservers have also been receiving packets for the past couple of days. But all the malicious traffic has been absorbed with no leaking traffic. This is honestly isn't surprising to us due to recent events in other communityies and the fact it isn't easy to make the people behind the DDoS attacks give up. These attacks have become extremely less common for Chaotic United after April, and didn't start back up until in June. Obviously evidenced by the picture below, whoever is doing this a complete novice for not changing up their types of attacks. Don't bother trying to take credit for the attack because we know that the attacker behind the crashing of the webserver is completely different then the one for the gameserver Whoever is doing this, I am well aware that they go on our forum quite a bit and I just want to say kudo's to you, because you arent accomplishing anything by attacking us. We also have a surprise for the community very soon.

Hi Everyone, I have an update. A majority of the staff are studying for finals this week. This includes all of our technicians that have physical access to the server. Due to my critical finals taking place tomorrow and the fact I will need to study really hard I will not be able to reassemble the server infrastructure until tomorrow night. Nor will any other technicians be able to. Just because I know a handfull of you won't study or do not have finals at this time. I've created the roleplaying catergory where you can roleplay various topics and such. This is just to give those handful of people things to tide them over until the server reopens. I know that this is nothing compared to the server, but I'm at least showing some effort and giving you guys something that doesn't require any management on my part. Also ever heard of Steam? Use it if your bored We are sorry for this but finals are important. I personally can't afford to do poorly on this final and hope you understand. If you need to contact me, email me at [email protected] Thanks, AwakenedRage

Due to the main ceiling fan in the server room no longer working, we are replacing the fan tomorrow. During this procedure the power on the servers will have to be turned off while the new fan is put in. As a result of this the server will be going offline tonight at 10PM Central Time and will be back online at 6PM Central Time tomorrow. At 10PM our main server infrastructure will be dismantled with our set procedures to prevent any of our equipment getting damaged when the power is turned off. Ex: Data Loss, Corruption, Etc We apologize for any inconvenience this may bring, but with summer coming up we don't want the server room to become hot as a sauna because the fan doesn't work. Steps Not Completed: Servers Turned Off Fan Installed Power Restored DB Server Powered On All Necessary Services Online (DNS, NAPS, ADS) Main Server Powered On Network Connection Verified Console Server Online and Working MC Server Activated

To Run the SFC /SCANNOW Command in Windows 7 1. Open an elevated command prompt. 2. To Scan and Repair System Files NOTE: Scans the integrity of all protected system files and repairs the system files if needed. A) In the elevated command prompt, type sfc /scannow and press Enter. (see screenshot below) NOTE: This may take some time to finish. Go to step 4. 3. To Only Verify if the System Files are Corrupted NOTE: Scans and only verifies the integrity of all proteced system files only. A) In the elevated command prompt, type sfc /verifyonly and press Enter. 4. When the scan is complete, hopefully you will see all is ok like the screenshot below. NOTE: If not, then you can attempt to run a System Restore using a restore point dated before the bad file occured to fix it. You may need to repeat doing a System Restore until you find a older restore point that may work. 5. When done, close the elevated command prompt. If all is good, then you are safe. At this time we advise you not to take files from players or staff members of Chaotic United until we can safely say our staff members are secure. At this moment we are unable to give a ETA on the server being back online. But we will be sure to let you know when we do! Thanks, AwakenedRage

Attention, It has been brought our attention of a potential compromise in Chaotic United Gameserver's and Database server. The cause of this is to be determined, but from what information we have right now we advise everyone running Windows who has received files from staff members since last October to: Download: Malwarebytes http://www.malwarebytes.org/mwb-download/confirm/ Do a Full System Scan or Threat Scan Delete all threats that you do not recognize, After the threats are dealt with it should ask to restart the computer. and thats exactly what needs to be done. Restart the computer and once Windows is rebooted a text file should open. You can close as it isn't important at this time. Now you are going to want to download adwcleaner http://www.bleepingcomputer.com/download/adwcleaner/ Please de aware that Avira Webguard is using the ASK Toolbar as part of its web security. If you remove the ASK Toolbar by using Adwcleaner, Avira Webguard will no longer work properly on your system. Therefore, if you use this program please use the instructions below to access the options screen where you should enable /DisableAskDetections before using AdwCleaner. Important! Before starting AdwCleaner, close all open programs and internet browsers. Double click on AdwCleaner.exe to run the tool. Windows Vista/ 7/8 users right-click and select Run As Administrator. Click on the scan button, When the scan is ready click on the Clean butten Your desktop icons will be disappear, this is normal so don’t be worry about that. Press OK when asked to close all programs and follow the onscreen prompts. Press OK again to allow AdwCleaner to restart the computer and complete the removal process. Close the text file that opens after the restart, double click on adwcleaner.exe to run the tool. Click now on Uninstall, then confirm with yes to remove AdwCleaner from your computer. After ADWCleaner is installed we want to be sure that we got the virus completely, •Hold down Control and click on the following link to open ESET OnlineScan in a new window. ESET OnlineScan •Click the button. •For alternate browsers only: (Microsoft Internet Explorer users can skip these steps) Click on to download the ESET Smart Installer. Save it to your desktop. Double click on the icon on your desktop. •Check •Click the button. •Accept any security warnings from your browser. Leave the check mark next to Remove found threats. •Check •Push the Start button. •ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time. •When the scan completes, push •Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply. •Push the button. •Push I am not sure whether ESET will ask you to restart, but after it does we are going to want to verify that your system files were not damaged by using SFC

Ban has been lifted, I meant to ban the user Kira Jokingly. I thought Bans had to be exact, but I guess not Sorry.

I will try later tonight to rollback the area before the griefing, I'm better with Logblock parameters typically but if I am still unable to roll it back, LB will be reconfigured to proper settings and I will locate whoever started the whole mess manually in the DB and sanction accounts associated I'll explain in more detail when I am not swamped with a huge amount of work.

Hi all, Since the meeting a couple new rules have been introduced into Chaotic United. 1) Threatening to DCMA anybody on the community will not be tolerated and will result in a ban. 2) Making posts on the forums or messages on the Minecraft server threatening to harm yourself purely to gain attention will not be tolerated on the forums and will result in a suspension. 3) In extreme cases occurrences on other communities may carry over from here if the discussion is relevant to Chaotic United in some way All the issues have been resolved pertaining to last week and on a short note, I will be on the server less often.

Hi all, The DBServer will be relocated to its original running location tomorrow (Sunday) at 1PM Central Time and all servers will be down for 1 hour while it is moved and everything is rewired. The gamserver has tons of wires for PS/2 Connections, USB and Ethernet connections. I want to organize it so it isn't an eyesore for someone that comes into the room and also make sure the DBServer uses a different source to get internet instead of the same ethernet switch that the gameserver uses. I was running network file transfers and it caused lag on the game server last night. I deeply apologize for this oversight and will take the necessary measures to fix it. Thanks, AwakenedRage

Hi all. We're having quite a few issues around here lately due to certain upset staff members tainting the community quite a bit. Unfortunately although this is a small group of people, they have affected a large percentage of our users, spreading false rumors, and posting inappropriate content on our services. That's not all, though! We'll also be discussing other things (hopefully on a lighter note) and we invite you to join us in this discussion tomorrow at 6 PM, Central time. At the time this is posted it is around 10:06 PM in the timezone. You are welcome to participate in the conversation on a live thread which will be posted on the forums around the same time and will be advertised on the discussion. But to receive live feed on the discussion You will have to inform me t by emailing [email protected] and making it explicitly clear that you want to join the conversation. We may also welcome certain trusted users to speak to us personally, however we are being very delicate with these opportunities due to recent events. As a result we are prohibiting ND Staff from participating and will not be taking questions from them.(We are not being biased towards Nuclear District, however we feel that when this is regarding a staff members personal life that they should be left out of this). Hopefully all of our moderators will be in attendance and we welcome any Demoria Online staff members to join us in our talking session, and it would actually be encouraged due to recent events regarding the server as well. Feel free to PM me with an official account here on the forums for details! All of you are welcome, whether you are old or new on that staff team. We'd love to hear from you. Requirements: You must message me with your official email on the forums You must use a Non Proxied IP You Must include your Skype name on the email. This discussion will be PG rated and we suggest if you are under 14 years old that you do not attend.

Hi All, A security exploit has been identified in the openjdk 1.7.0 version. The server uses OpenJDK 1.8 and has already patched the exploit. However this is also present in Java SE clients. It is highly advised that you update your java. FAQ Are there any crucial differences between Oracle and Open JDK? Nothing crucial. The openjdk project is mostly based on hotspot source code donated by Sun. Moreover, openjdk was selected to be the reference implementation for java 7, and is maintained by Oracle engineers. There's a more detailed answer to your question here, which links to this blog post: Q : What is the difference between the source code found in the OpenJDK repository, and the code you use to build the Oracle JDK? A : It is very close - our build process for Oracle JDK releases builds on OpenJDK 7 by adding just a couple of pieces, like the deployment code, which includes Oracle's implementation of the Java Plugin and Java WebStart, as well as some closed source third party components like a graphics rasterizer, some open source third party components, like Rhino, and a few bits and pieces here and there, like additional documentation or third party fonts. Moving forward, our intent is to open source all pieces of the Oracle JDK except those that we consider commercial features such as JRockit Mission Control (not yet available in Oracle JDK), and replace encumbered third party components with open source alternatives to achieve closer parity between the code bases. i dont get it. if they are similar then why two? Technical differences are a consequence of the goal of each one (OpenJDK is meant to be the reference implementation, open to the community, while Oracle is meant to be a commercial one) They both have "almost" the same code of the classes in the Java API; but the code for the virtual machine itself is actually different, and when it comes to libraries, OpenJDK tends to use open libraries while Oracle tends to use closed ones; for instance, the font library. Is the Server Affected? The Server was not affected by this exploit as the server uses OpenJDK 1.8 which had this fixed. Updated java-1.7.0-openjdk packages fix security vulnerabilities Publication date: 15 Apr 2015 Type: security Affected Mageia releases : 4 CVE: CVE-2005-1080 , CVE-2015-0460 , CVE-2015-0469 , CVE-2015-0477 , CVE-2015-0478 , CVE-2015-0480 , CVE-2015-0488 Description Updated java-1.7.0 packages fix security vulnerabilities: An off-by-one flaw, leading to a buffer overflow, was found in the font parsing code in the 2D component in OpenJDK. A specially crafted font file could possibly cause the Java Virtual Machine to execute arbitrary code, allowing an untrusted Java application or applet to bypass Java sandbox restrictions (CVE-2015-0469). A flaw was found in the way the Hotspot component in OpenJDK handled phantom references. An untrusted Java application or applet could use this flaw to corrupt the Java Virtual Machine memory and, possibly, execute arbitrary code, bypassing Java sandbox restrictions (CVE-2015-0460). A flaw was found in the way the JSSE component in OpenJDK parsed X.509 certificate options. A specially crafted certificate could cause JSSE to raise an exception, possibly causing an application using JSSE to exit unexpectedly (CVE-2015-0488). A flaw was discovered in the Beans component in OpenJDK. An untrusted Java application or applet could use this flaw to bypass certain Java sandbox restrictions (CVE-2015-0477). A directory traversal flaw was found in the way the jar tool extracted JAR archive files. A specially crafted JAR archive could cause jar to overwrite arbitrary files writable by the user running jar when the archive was extracted (CVE-2005-1080, CVE-2015-0480). It was found that the RSA implementation in the JCE component in OpenJDK did not follow recommended practices for implementing RSA signatures (CVE-2015-0478). References https://bugs.mageia.org/show_bug.cgi?id=15706 http://blog.fuseyism.com/index.php/2015/04/15/security-icedtea-2-5-5-for-openjdk-7-released/ http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html https://rhn.redhat.com/errata/RHSA-2015-0806.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1080 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0460 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0469 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0477 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0478 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0480 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0488 I am glad that I used the Beta Version of Mageia that has updated dependencies and took the extra downtime. This would of been a nightmare to take care of. Looks like the downtime actually benefited us for once

Please Stop making false reports, Thanks, AwakenedRage

I can also assure you that you can build it again, and it will not be lost due to LB being enabled. Sorry for the trouble, Ever since the DBServer was having problems it has been effecting the stability of the server. We are almost positive that it will raise the stability when I get the primary server running again, now that the DBServer is fixed.

Hi, We recently did a rollback to stop a griefing of spawn. Please note that the server said "Temporary!" meaning stuff was not being logged with Logblock. Recently that has changed though and everything now will be logged (as of last night). I do believe that your items should not have rolled back. The main survival world has been weird, I havent been resetting player data yet, it seems that it has. I do nbot know the actual cause of why this happens, your satisfaction is my priority so if you have something in mind that I can exclusively compensate you with let me know.

http://www.magicmicro.com/ You customize the computer and they build it. I built my gaming PC for 350$ and it runs any game flawlessly. Highly recommended. Pretty sure they ship internationally due to them shipping through eBay. If the website doesnt take you to eBay try googling around for their ebay page and build your own so you can return it easily.

Please Note, that Ender Dragons currently are prohibited from fighting. It creates tons of lag on the server and we are already low on system resources due to the other machine still being repaired from a Ethernet Adapter failure. Not to mention the EXP orbs would be a nightmare. When I restored from a backup and put in Multiverse Inventories it was supposed to be a security measure to prevent items from creative going to Survival. Just make sure a manager is on the server while you fight the enderdragon, so that a ClearLagg can be launched if the XP orbs become too much for the server. Thanks, AwakenedRage

Dude, we lost interest in you guys a long time ago. Color and Arc have become more threatening then you guys ever will be. They have talked about hititng you guys next and to be quite frank, I can't wait to see what will happen considering we nearly got obliterated twice. That conversation barely affects this community today except by proving to us that the ND Staff are just a group of autists (Except -blam!-). Now you are welcome to play on our servers let me just remind you that you are walking a fine line on the terms of rules on this community but begin breaking the rules and you will find yourself gone. Anyway The material in question that started this whole mess is not copyrighted, or the copyright has expired in the United States of America. It is therefore in the public domain and may be reproduced by anyone. You guys has provided no copyright registration information or other tangible evidence that the material in question is in fact copyrighted, and I have a good faith belief that it is not. The allegation of copyright violation is therefore in dispute, and at present unsupported. Our use of the material is legally protected because it falls within the "fair use" provision of the copyright regulations, as defined in 17 USC 107. We do not use this for personal gain as all donations go towards the community.If you disagree that this is fair use, you can go away now because none of us care what ND thinks,

Hey All, You all are probably bored out of your mind due to the intense DDoS, as obviously evidenced due to the lack of people on the forums. I have gotten a date that the new IP will be given to me to activate. I know its absolutely unacceptable for the downtime that occurred, and is even worse for players who are on spring break right now. This has already affected me a bit regarding finances and I had to spend a handful of money just to make sure that I am properly protected. I am going to compensate everyone for this unfortunate event. From Friday to Sunday all players will enjoy Platinum permissions for absolutely no cost , before being reverted back to your old rank. You then have an option to donate for a rank at a discounted price. Minecraft TOS Update: Proxies are now allowed on the server once more. You may only connect to the server using the given ip mc.chaoticunited.net If a numeric IP is used to connect to the server, we will know and will ban you for violating the rules by not going through the DDoS protection check. Permission Updates: IP Banning will no longer be given to any rank but console due to the DDoS protection masking everyones IP. In other words if someone IP bans a players IP using the DDoS protection then everyone using the DDoS protection gets banned. DBServer Updates: Distance Latency has been fixed and the TempVPS will no longer be used and all data will be moved back to the DBServer that can send queries locally on the network instead of sending it through the web to a server located in the UK. This reduces LB from being overloaded so easily. DBServer will certificates changed to accommodate for the new version of OpenSSL that was just recently configured. Mumble Server Mumble data has been lost in the transition to Windows Server 2012 R2, you will need to register once more. Mumble SSL Certificates changed, this IS not a security breech. DDoS Protection Upgraded all services now use DDoS protection except for the forum. THE DATE: Friday *This announcement is subject to change, v1.0