This is getting out of control, people are constantly hacking my rcon and it is getting /REALLY/ annoying... any tips on how to make it impossible for anyone to use the rcon but myself?
That's not the problem, adv dupe is. Use the Wiremod version.
I'm confused, adv dupe = rcon hack ?
Your server may be getting attacked because of a read exploit or some addon that contains a bug.
Assuming someone found a new way to access server files via new read exploit.
There was a bug in adv dupe that allowed people to run lua on your server but if you have updated to the latest revision it should be fixed.
[QUOTE=Aide;30332703]Your server may be getting attacked because of a read exploit or some addon that contains a bug.
Assuming someone found a new way to access server files via new read exploit.[/QUOTE]
You sir are an idiot.
The file.Read exploit allows the server to view the clients files.
It does not allow people to get the servers rcon.
[highlight](User was banned for this post ("Flaming" - UberMensch))[/highlight]
[QUOTE=Science;30335332]You sir are an idiot.
The file.Read exploit allows the server to view the clients files.
It does not allow people to get the servers rcon.[/QUOTE]
I'm sure the guy was referring to the previous exploits allow people to read server.cfg?
[QUOTE=Science;30335332]You sir are an idiot.
The file.Read exploit allows the server to view the clients files.
It does not allow people to get the servers rcon.[/QUOTE]
Science your an idiot, I don't remember or see where I mentioned file.read.
[QUOTE=Pantho;30335750]I'm sure the guy was referring to the previous exploits allow people to read server.cfg?[/QUOTE]
Correct.
Update advanced duplicator or remove it.
oh, you mean jetboom is harvesting MOAR rcon passwords?
What gamemode are you using?
I have the RCON pass in my server.cfg set to "" meaning rcon is disabled, but they change the password, I'll set it to be disabled one day and the next it will be random. They are somehow changing my server files. I am running ULX on the sandbox gamemode.
Do you have adv dup?
Yes... and yes it's updated...
that's not the problem...
I think it's possible you can just set server.cfg the way you want it and somehow disable editing if your on a PC. Don't rate me dumb if I'm wrong, please.
[edit]
Setting it Read-Only might help.
[second edit]
Because it seems like what their doing is just taking the .cfg and changing it to an RCON of their choice and then saving it somehow. If you disable the saving by going to properties and setting it to read only it may stop them from saving the .cfg file.
Nvm... I found the hacker's adv dupe folder and they all have a dupe called "hax.txt", but my adv dupe is fully updated...
and they can edit all of the files... so I dont want to go through and set them all to "read only"
Do you have any kind of rawI/O lua module installed on your server?
[editline]13th June 2011[/editline]
PM me the hax.txt file.
Yeah, if you could pm me the hax.txt contents, too I might be able to experiment some way to patch it.
-snip- Rate me boxes
Sorry if I implied Flapadar had no knowledge of lua.
[QUOTE=jellybaby34;30424318]The best chance is to not PM anyone but the wiremod development team or trusted people who actually have lua knowledge and wouldn't go on a server destruction spree.[/QUOTE]
Yeah because I definitely don't have Lua knowledge and Overv definitely didn't tell me to ask for the file.
[editline]13th June 2011[/editline]
If I wanted to go on a server destruction spree I would do it with or without the file. This is to get it patched.
Or have your rcon password as "". I like joker's idea better.
My rcon was at "" but it was still being switched, for now I have made a different cfg file that contains the rcon... and as for pming the hax.txt I'll see what you guys can do with it but when I spawned it in game it was just a seat...
And joker, it doesn't matter, they aren't just finding the password, they areediting all of the files in the server, they even went into ULX and set it up so when someone joins the server it displays "U R MR FAGGOT"... and I don't anderstand the dll file that the first link contains...
Well I'm interested to see the lua file to see what ballpark we're looking at here.
[edit]
The 31:" part looks like where some magic is happening, but I'll go make a simple dupe and compare the files to see what's out of the norm.
[QUOTE=bosh22;30433623]My rcon was at "" but it was still being switched, for now I have made a different cfg file that contains the rcon... and as for pming the hax.txt I'll see what you guys can do with it but when I spawned it in game it was just a seat...
And joker, it doesn't matter, they aren't just finding the password, they areediting all of the files in the server, they even went into ULX and set it up so when someone joins the server it displays "U R MR FAGGOT"... and I don't anderstand the dll file that the first link contains...[/QUOTE]
Can you resend the file - just paste it using code tags in a PM to me - your megaupload link didn't work.
I already have it, I'm cross-comparing a regular dupe file with the dupe file he sent me right now.
[edit]
I don't even have the time or desire to do malicious things to other people. I delayed my lunch a few hours just to see if I could come up with any possible ways we could patch it.
[edit]
[QUOTE=thejjokerr;30425838]Can you send me the file as discussed in that thread: RCON hackers.
I don't know if you have any Lua experience, but I think a helping hand is always useful and I'm interested in seeing what it looks like.
If for some interesting reason you don't want to send it, can you then tell me what it is encrypted in. I don't know what Adv Dupe uses for interesting ways to save dupes. (Json, Glon or just KeyValues)
Thanks[/QUOTE]
Flapadar, Were you talking about this guy?
[edit]
Creator:"<b style="color:black;background-color:#ffff66">grinchfox</b>"
Oh, That's just wonderful.
It's the same old vehiclescript exploit that was supposedly fixed a while back.
[editline].[/editline]
[quote]Flapadar, Were you talking about this guy?[/quote]
Nah he knows what he's doing.
I've looked at this and in conclusion: Update adv dupe.
[editline]13th June 2011[/editline]
It's the same exploit that was patched a long while ago.
[QUOTE=thejjokerr;30436726]Why are you talking about me and just send me the damn file so I can have a look. Honestly, seeing how this is taking you so incredibly long I doubt it's in the right hands.[/QUOTE]
Ask Flapadar or OP, I'm so sure you could do a better job than me. Probably faster, since you started this when people were actually being active on this thread, not posting information and replying every couple of hours or so.
I'm actually a bit delighted you care so much about telling me I have no idea what I'm doing and that I shouldn't even be trying in the first place. I've learned so much since I first encountered you, Flapjack.
Blame me for trying
[QUOTE=thejjokerr;30436726]Why are you talking about me and just send me the damn file so I can have a look. Honestly, seeing how this is taking you so incredibly long I doubt it's in the right hands.[/QUOTE]
your name reminds me of a guy from neocron so much.
dont suppose you are he?
Sorry, you need to Log In to post a reply to this thread.
