What to do about SethHack users banning me from my server/micspamming/constantly forcing everyone to - Help

STEAM_0:1:43911188 STEAM_0:0:33149882 STEAM_0:1:43732934 - Changing the name of my server - Forcing every player to suicide while playing music in voice chat, can only stop this with a server restart, banning them does nothing but stop the music - Banning me from my own server - Unbanning themselves if I ban them - Putting files like "dongs.txt" and "noob.txt" in my server data folder - Persists despite multiple changes to rcon/control panel passwords

I don't think SethHack let's you unban yourself from a server. Nor does it let you ban someone from a server.

Use evolve or ULX as adminmod. Constantly forcing everyone to suicide? Sounds more like a suicide. And removing themselves from banned list will most likely not be possible when banned correctly.

I banned them using typical Source bans- banid 0 (STEAMID) kick If it's not SethHack it's something else. My server's being abused by an outside person STEAM_0:1:43732934 is the ID of a new hacker, the person keeps coming back on alt accounts or something and is mic spamming while forcing everyone to constantly suicide, they can remove themselves from my banlist despite multiple RCON/CP password change and ban me from my own server.

I recommend contacting Steam themselves. This sounds like a horrible hack :/

You make 2 mistakes. banid does (afaik) not take a SteamID but a User or UniqueID. (I guess User is the number of a currently connected player shown by status) After banid you must do writeid.

I see. Hopefully this brings some sort of a conclusion to the situation. Looked up the first one's Steam page and got [url=http://cloud.steampowered.com/ugc/614972449751535060/90815219D44E8D152C2D12C1E8802B155920E9CC]this[/url], so uh. Apparently this is Stan DeCarlo and Seth, if they're not lying, which they could be, but I've heard a lot of stuff about "devnull" and it sounds pretty bad. I don't know why these two would be going at lengths to attack me or my server but I guess that's what they're doing and I'm not exactly equipped to stop them from doing so. I need help.

Stan and Seth won't do anything against game-servers their self mostly. Afaik.

[QUOTE=Ideal-Hosting;35493986]Use evolve or ULX as adminmod. Constantly forcing everyone to suicide? Sounds more like a suicide. And removing themselves from banned list will most likely not be possible when banned correctly.[/QUOTE] Unless gmod is unique in the fact, banid does ban the steamid.

disable rcon

[QUOTE=Banana Lord.;35509343]disable rcon[/QUOTE] Didn't know this could be done. I'll try it. How would one do that?

rcon_password ""

writeid didn't change anything, they've unbanned themselves and done more griefing on the server. Hopefully rcon_password "" will fix this.

Make sure your advance duplicator tool is up-to-date.

[QUOTE=Zombie man70;35531905]Make sure your advance duplicator tool is up-to-date.[/QUOTE] Are you saying this, because of that RunString exploit, or am I missing something?

if they are banned and have people in the server (and the server has Adv Dupe from like early 2011) then it's probably that, otherwise it's RCON (can't use dupe when you're banned, you CAN brute force RCON though)

[code]rcon_password "" alias rcon_password nope[/code] Enjoy rcon password changing

Create a lua file that automatically ban's/kicks them when they join

Good idea. I'll need to see about that, because they can do it even when rcon_password is set to nothing at all.

Sounds bad. I have heard that some admin mods will ban the I.P. address, which doesn't make any sense because all you would have to do is use another network. But i know that you cant do anything if your steam id is banned. It can't be sethhack then (which i think is totally client-side) if you say that banning them just stops the music, but doesn't stop suicide and the other stuff. The only other thing it could be is rcon. Disable it if you dont need to access your server remotely. Also, did you say this still happens with a password on rcon? EDIT: If you only said you can stop everything with a server restart, than it has to be rcon because it gets reloaded every time you start the server (obvi), so the hackers just wait until it gets initialized and then they will begin again. I've never owned a dedicated before, i have a server in my basement that can only run Linux, and gmod cant run on it, i have no idea why and its extremely hard because everything is done with cli. I wonder if you can just get rid of rcon altogether, maybe that will stop them?

[QUOTE=Kung Fu Jew;35679122]because they can do it even when rcon_password is set to nothing at all.[/QUOTE] then it isn't RCON related

Sounds bad :\

run with -nomaster for a trial.

[QUOTE=Banana Lord.;35688340]then it isn't RCON related[/QUOTE] Didn't see that one. [editline]24th April 2012[/editline] Then the only other way in is the network. I think.