about rcon exploits and the rcon locker(s)
 

both this module https://forums.alliedmods.net/showpo...56&postcount=7 and this plugin https://forums.alliedmods.net/showthread.php?t=93934 mention the possibility of the rcon password being changed
but what if mine stayed the same all throughout? does this mean it was changed then reverted?...

what can i do, what should i use to prevent someone from changing stuff like sv_pure through what i guess could only be an rcon hack of some sort?

Re: about rcon exploits and the rcon locker(s)
 

Afaik the SMAC Rcon Locker reverts the rcon password on the same frame it is changed (instantly) so there's no time for anyone to change anything. If you wan't to be 100% sure just disable rcon all together and only use sm_rcon.

Re: about rcon exploits and the rcon locker(s)
 

that means no hlsw.. but how would i simply disable it altogether, just not put it in server.cfg is what u mean?

Re: about rcon exploits and the rcon locker(s)
 

Yes if you leave rcon_password blank the rcon will be completely disabled. If completely disabling the rcon isn't an option and you're on linux and know how to use iptables you could restrict the port rcon uses (27015 TCP) to specific IPs only. Or you could use the built in IP whitelist feature in the rcon locker but for that to work you will also have to install this https://forums.alliedmods.net/showthread.php?t=168403

Re: about rcon exploits and the rcon locker(s)
 

windows
yea i saw that ext, i just wanted to keep it light...

how can i check the list at any given time?

EDIT: thank you so far, I really appreciate it

Re: about rcon exploits and the rcon locker(s)
 

welp i added the extension, added my ip, then had someone try to access via rcon and couldn't, but i just tried now from work with hlsw and worked :| like wtf