So I've came across a massive dickhead that is maliciously installing his backdoor into his workshop addons and was caught doing it, now he doesn't (from what I see), and I managed to get the source code from him. Some other users turn out to be using it as well, and its getting more popular and I want to get this thing patched. I have tested it, it does work. Even if the backdoor is widely used and or known, I don't think it should be possible to even create anyways. So I would like it patched immediately. The backdoor basically copies server files from certain directories that are specified, and recreates them on a separate webserver. This can be used to steal scriptfodder addons, CUSTOM addons from communities that Developers have worked very hard on, and it needs to not happen. Dev's, if you want the code hit me up.
If you could post the workshop add-on's with the backdoor that would be good.
[QUOTE=meharryp;52255170]If you could post the workshop add-on's with the backdoor that would be good.[/QUOTE]
as I'm fucking lazy I'm not gonna read through my post twice I'm not sure that I mentioned that he removed his addons from what I see, but other people have used this backdoor by tricking people to install their addon, which seems to be the more popular way.
[QUOTE=ChargedModzHD;52255182]as I'm fucking lazy I'm not gonna read through my post twice I'm not sure that I mentioned that he removed his addons from what I see, but other people have used this backdoor by tricking people to install their addon, which seems to be the more popular way.[/QUOTE]
Why does this matter then? People are always backdooring addons.
[QUOTE=meharryp;52255346]Why does this matter then? People are always backdooring addons.[/QUOTE]
Yes but this is a script that STEALS the files without even needing access to the FTP. It's not some ordinary backdoor where people type something in console and then they can pleasure themselves with getting admin.
[QUOTE=ChargedModzHD;52256080]Yes but this is a script that STEALS the files without even needing access to the FTP. It's not some ordinary backdoor where people type something in console and then they can pleasure themselves with getting admin.[/QUOTE]
"Help that guy shot me"
"Who?"
"He shot me pretty badly"
"Yeah but who was it?"
"Yeah but like with a gun"
???????????
[QUOTE=ChargedModzHD;52256080]Yes but this is a script that STEALS the files without even needing access to the FTP. It's not some ordinary backdoor where people type something in console and then they can pleasure themselves with getting admin.[/QUOTE]
I don't understand, nobody can do anything if you don't post what it is
You say they deleted the addon but you also said you also have the source
Posting the code publicly is the fastest way to get something fixed, though I'm confident this isn't an exploit and is just a backdoor. Probably uses file.Read and POSTs it to a website somewhere
[QUOTE=ChargedModzHD;52256080]It's not some ordinary backdoor...[/QUOTE]
This is... [B]advanced backdoor![/B]
A backdoor is a backdoor. Some give you admin, some ban everybody on the server, some steal files. There's nothing you can do about it, just don't put addons on your server from an untrusted source
[QUOTE=ChargedModzHD;52255182]as I'm fucking lazy I'm not gonna read through my post twice I'm not sure that I mentioned that he removed his addons from what I see, but other people have used this backdoor by tricking people to install their addon, which seems to be the more popular way.[/QUOTE]
To reiterate, so there's no misunderstanding.
- You said you got the source code and tested it thus, contradicted yourself when explaining the existence of the code.
- You claim to have somehow have gotten the code from this anonymous author, meaning you have been in contact with him but yet to have reference the author to whom has written the code.
- You are attempting to ask for help but are failing to provide preliminary information under grounds of "I'm fucking lazy to read my own post".
Sorry, you need to Log In to post a reply to this thread.
