New RCON exploit
Quote:
Also replaced contents of clients.txt with his own data for two other steam accounts in addition to the one used for the hack. CLIENT UPLOADED THERE OWN FILE to server! |
Re: New RCON exploit
Kerigan's Anti Cheat? Someone's been playing a little Star Craft.
I tried to tell you this in steam chat zero, but there are quite a few Mani takeover scripts going around that do not require sv_cheats or rcon access; it's why I was recommending you rid your servers of it. That being said, this was one of those Mani takeover scripts. Sadly, the author of the script sells it for $15 a pop so they're becoming more and more prevalent. However, you should make sure you have the latest EventScripts version because that may be how your server was targeted (outdated ES has a few nice security holes). Aside from that, I can't stress enough that you get rid of Mani until it's completely fixed (which may never happen). |
Re: New RCON exploit
Mani = bad mkay? :)
|
Re: New RCON exploit
If you'd get on steam Zero, I'd like to discuss something with you.
|
Re: New RCON exploit
Will do although it looks like random python files have been altered last night on the server and only on this server...
|
Re: New RCON exploit
Yea, I plan to toss mani out as soon as vb4 comes out :D
|
Re: New RCON exploit
It's Mani. Remove it and you will be fine. This isn't new at all, a bit of searching would have revealed.. this
|
Re: New RCON exploit
devicenull, please use your uber programing voodoo magic to fix this until VB4.0 comes out. I got to hold off until then becuase my sm and vbb databases are merged and the update could kill sourcebans and thus I am delaying the move until 4.0 is released any my plugin that links admins to vbb is shown to work without problem.
So until that can happen I need your uber mods to be updated to protect me! I can send you the souls of a thousand hackers for you to use in making the update if needed! I tired using an es script called exploit to block ma_rcon but it returns: es_xflags: Could not find var or command: ma_rcon so maybe it can be done is sm b/c es sux... |
Re: New RCON exploit
It won't help.. the exploit relies on the changelevel command. For some reason mani fucks this up which means it can execute commands somehow. RCON lock attempts to block it, but depending how mani is installed, it may not.
In rcon lock, find this: Code:
new String:cheat_flag[][] = { "dumpcountedstrings", "dbghist_dump", "dumpeventqueue", "dump_globals", "physics_select" Code:
new String:cheat_flag[][] = { "dumpcountedstrings", "dbghist_dump", "dumpeventqueue", "dump_globals", "physics_select" |
Re: New RCON exploit
Disable rcon and create something similar using sourcemod
|
All times are GMT -4. The time now is 19:41. |
Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.