AlliedModders
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

AlliedModders (https://forums.alliedmods.net/index.php)
-   SourceMod Anti-Cheat (https://forums.alliedmods.net/forumdisplay.php?f=133)
-   -   [NOTICE] 'status' abuse (https://forums.alliedmods.net/showthread.php?t=180939)

GoD-Tony 03-23-2012 05:45
[NOTICE] 'status' abuse
 
In today's update (0.7.7.5) I've added a command for displaying the server's player status (smac_status). It's meant to be a simple alternative to the existing 'status' command.

It's possible for an attacker to temporarily disable the status command on your server, and combined with a unicode-mess for a name can make it very annoying for admins to kick them. If you find this happening on your server, you can do one of the following:
  • Use smac_status in console
  • Use the existing status command from the server console
  • Use rcon or sm_rcon (1.4+) with the existing status command
Then grab their UserID and easily kick/ban them.

It's becoming increasingly more common for this to be abused. Now you're prepared!

TnTSCS 03-23-2012 10:48
Re: [NOTICE] 'status' abuse
 
Thank you for this command

GoD-Tony 04-27-2012 14:28
Re: [NOTICE] 'status' abuse
 
Today's engine update:
Code:
Source Engine Changes (TF2, DoD:S, HL2:DM)
- Fixed a problem that allowed malicious clients to disable the "ping" and "status" commands for other connected clients
The SMAC command will stay since it still applies to other games.

MundoAlterno 05-05-2012 07:25
Re: [NOTICE] 'status' abuse
 
I and been the victim of this attack here are the logs

Code:
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status
Fri Mar 23 19:45:06 2012: Console<0><Console><Console> executes: status

MundoAlterno 06-01-2012 20:23
Re: [NOTICE] 'status' abuse
 
as of today still attacks through this platform bug tf2


HTML Code:
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status
Fri Jun  1 20:32:40 2012: Console<0><Console><Console> executes: status

adrianman 06-02-2012 13:01
Re: [NOTICE] 'status' abuse
 
why don't you just block it?

checkster 06-12-2012 09:43
Re: [NOTICE] 'status' abuse
 
Whould you mind making this command public instead "smac_status" ? As it is useful for all, I know I can go in and edit myself, but then I have to do it each time the plugin updates, and that sounds like a lot of work :P

GoD-Tony 06-12-2012 09:47
Re: [NOTICE] 'status' abuse
 
Quote:
Originally Posted by checkster (Post 1727270)
Whould you mind making this command public instead "smac_status" ? As it is useful for all, I know I can go in and edit myself, but then I have to do it each time the plugin updates, and that sounds like a lot of work :P
http://wiki.alliedmods.net/Overridin..._Configuration

View the example for sm_chat.

checkster 06-12-2012 12:50
Re: [NOTICE] 'status' abuse
 
Quote:
Originally Posted by GoD-Tony (Post 1727273)
You clearly did not read my part about doing the work :P

But in all seriousness, not all admins are aware of how to edit/config they're server's, hence I made that suggestion.
I do get your point tho, and I will do it that way on my server.

TnTSCS 06-12-2012 14:07
Re: [NOTICE] 'status' abuse
 
here... there's not much to "fixing" it the way you want:

Code:
Overrides
{
        "smac_status"        ""        //Allow anyone to use "smac_status"
}


All times are GMT -4. The time now is 02:49.
Page 1 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin®
Copyright ©2000 - 2024, vBulletin Solutions, Inc.