SM RCon (updated 2012-09-09)
2 Attachment(s)
Provides forwards for handling RCon auth and commands from within SourceMod plugins.
This extension borrows some knowledge from the former gmsv_rcon extension for gmod, and expands on it with more functionality reversed. Currently, only the Source 2007, Source 2009, L4D and L4D2 engines are supported. This includes:
Support for more engines can (probably) be added if there is interest. PHP Code:
Unlike this extension, linux builds are available, RCon listeners' unique id is passed through so SM, RCon disconnections are passed, server command callbacks can be identified as from RCon, extended rcon logging support is available, and most importantly, unauthed RCon commands are not passed to SM. Source code: https://github.com/psychonic/smrcon |
Re: SM RCon
This should be very useful. Thanks!
|
Re: SM RCon
This will come handy to get a list of people using the rcon.
Thanks a lot! |
Re: SM RCon
Holy sh*tsauce, thanks for those additional hooks Great Duck !
|
Re: SM RCon
I have an update mostly ready that I'll package/post tomorrow which adds a forward for when an RCon log line is being written (since this is in the engine, it bypasses SM's log hook).
This will allow easy blocking of "spammy" RCon by IP, such as from stats pollers, without sacrifising the rest of your RCon logs. In addition, authed RCon commands that are manually blocked in SMRCon_OnCommand will log with the tag " (rejected)" added to the end. Right now, manually blocked ones are not logged at all due to being blocked altogether. Edit: it will also have a linux version that actually loads >.< |
Re: SM RCon
Quote:
Shouldn't be anymore changes for a bit unless any issues are reported (though it worksforme) or unless more engine support is requested (which won't affect existing versions). So, glhf. |
Re: SM RCon (updated 2011-09-29)
Requesting a version for L4D2 if that isn't too much work.
#edit Doh, just saw the change log. Will test. |
Re: SM RCon (updated 2011-09-29)
Thank you again!
|
Re: SM RCon
Quote:
Good stuff! |
Re: SM RCon (updated 2011-09-29)
thanks for Linux support :)
I wrote this for shits and giggles but then realized my firewall blocked all of the requests so perhaps someone could modify this and have some fun: PHP Code:
|
Re: SM RCon (updated 2011-09-29)
I'm using this for verbose rcon logging, but I'm starting to see some potential problems.
1. SMRCon_OnAuth is triggered even if an IP is banned. Meaning they could continue spamming auth attempts and flood logs. 2. Some plugins rely on the rcon output to get information from servers (HLSW, maybe SourceBans), and logging during SMRCon_OnCommand sends that information back over the rcon which would interfere. Is logging during these forwards a bad idea to begin with? |
Re: SM RCon (updated 2011-09-29)
Quote:
Quote:
|
Re: SM RCon (updated 2011-09-29)
As a followup to my last post; I worked around issue #2 by delaying the logging using a timer, and issue #1 by not monitoring failed auth attempts.
|
Re: SM RCon (updated 2011-09-29)
1 Attachment(s)
Can someone give advice, how I could log actions without showing to rcon user/spammer ?
https://forums.alliedmods.net/attach...1&d=1323370478 Happen: SMRCon_OnAuth() SMRCon_OnCommand() (And maybe rest Action: functions)... PHP Code:
|
Re: SM RCon (updated 2011-09-29)
Quote:
|
Re: SM RCon (updated 2011-09-29)
Quote:
stupid plugin
output txt
|
Re: SM RCon (updated 2011-09-29)
What's different in sm basic rcon system?
|
Re: SM RCon (updated 2012-03-10)
Version 1.2.0 has been posted.
This will now, by default, block rcon from any banned addresses, even if they use the correct password. The engine apparently lets banned users use rcon :/ This also resolves SMRCon_OnAuth being fired when banned addresses attempt to auth. |
Re: SM RCon (updated 2012-03-10)
Quote:
Yes! *edit God dam ! I go my self banned :D, can't remove my IP XD. Need do a trick... *edit If you have same IP as Server, you can still log in rcon with right password, even you have get banned by rcon hacking (extension not prevent this). |
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
Quote:
Quote:
|
Re: SM RCon (updated 2012-03-10)
and like every other time, they don't fix these security holes for L4D/2.
why is that? is it because l4d 1 and 2 already has everything that TF2 has or is it just valve being lazy and ignorant like usual? |
Re: SM RCon (updated 2012-03-10)
Quote:
This will leave L4D2 and CS:S as the only games this supports that requires this just for that fix (though the other functionality is still useful for plugins ofc). CS:S will also get the fix next time they sync in the engine changes. Quote:
|
Re: SM RCon (updated 2012-03-10)
that's up to you. i don't play it anymore.
|
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
more like every third week now and no, they don't seem to patch srcds vurnabilites on l4d2. the only thing valve has been doing lately is updating their mutations and it sucks big time.
they did fix some bugs for certain maps last month but that's it. tf2/cs:s has been having a lot of server vurnability related patches and why they haven't been pushed into l4d1/2 is something I don't understand. tonight's update, if there will be one, will most likely be another mutation update and nothing else. if there is no update tonight, then it's been a month since the last decent update which was in february. edit: the update contained some map bug fixing and a mutation change like usual. and like usual, they didn't patch any server vurnabilites like the rcon one that was just discovred. very dissapointed again. |
Re: SM RCon (updated 2012-03-10)
with this extension loaded, im not able to get server logs through HLSW with rcon.
l4d2 game. as soon as I unload it, i can get live server logs from HLSW again. Edit: will you fix it? i consider this extension useless with the metioned bug. otherwise it can be a really handy one. |
Re: SM RCon (updated 2012-03-10)
no comment about not being able to get logs through HLSW?
one more question. if i'd put rcon_password "" in my server.cfg and then define a rcon password inside public Action:SMRCon_OnAuth, which I got to work with HLSW (except for the logging issue I just metioned), would this still block attackers from attacking my servers tcp rcon port? |
Re: SM RCon (updated 2012-03-10)
Quote:
Quote:
|
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
Version 1.2.1 has now been added to the first post.
|
Re: SM RCon (updated 2012-03-10)
Thanks! I'll be making good use of this again soon. Lately I've just been loading it for the proper rcon banning support on CS:S. :up:
|
Re: SM RCon (updated 2012-03-10)
thanks psychonic, logging works now :). can someone show me how to add an IP whitelist and disallow rcon if the ip is not equal to the one(s) that I want to allow.
edit: i think this worked. edit:2 i think my server is crashing with this extension loaded now. both my local and non local. yeah my local has been crashing nonstop on map end with this. i removed it and no longer crshes Code:
public Action:SMRCon_OnAuth(rconId, const String:address[], const String:password[], &bool:allow) |
Re: SM RCon (updated 2012-03-10)
Just tried loading this on GMOD, but I get this error with it.
Quote:
|
Re: SM RCon (updated 2012-03-10)
Quote:
|
Re: SM RCon (updated 2012-03-10)
Current version of GMOD.
|
Re: SM RCon (updated 2012-03-10)
Hi everyone. Please help me with this script:
Code:
#include <smrcon> |
All times are GMT -4. The time now is 07:54. |
Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.