View Single Post
Author Message
xSLOW
Member
Join Date: Apr 2019
Location: Romania
Old 01-10-2020 , 18:11   CSGO NEW Exploit crashing players from public server (11/01/2020)
Reply With Quote #1

How it works?
There is a new exploit that somehow a client can flood the rcon with requests and sourcemod cant handle these requests and gives timeout to the players. ( I dont know exactly what is going on, if you know something more, leave a comment )
This exploit only works if a player sends requests to the rcon before joining the server, while loading the map. I didnt found this exploit by myself, a player from my server did, he didnt gave many details.

Here are the messages from console when the exploit is active:
HTML Code:
Banning 176.111.180.209 for rcon hacking attempts
Banning 176.111.180.209 for rcon hacking attempts
Banning 103.22.248.59 for rcon hacking attempts
Banning 103.22.248.59 for rcon hacking attempts
Banning 203.128.80.180 for rcon hacking attempts
Banning 79.101.45.94 for rcon hacking attempts
Banning 176.111.180.209 for rcon hacking attempts
Banning 79.101.45.94 for rcon hacking attempts
These are proxy IPS, I think, not legitimate players.

The fix is simple, you will need to install this plugin to lock the rcon before connecting.
Good version: https://forums.alliedmods.net/showpo...&postcount=517
I had smac_rcon and it didnt worked, latest SMAC version actually.

Also, if it doesnt work, you cant try these things, I've got them from another AM threads:

1. Add these commands to server.cfg

//exploit
sv_rcon_banpenalty 5
sv_rcon_maxfailures 10
sv_rcon_minfailures 5
sv_rcon_minfailuretime 30
sv_allowupload 0 // doesnt affect fastdl
sv_allowdownload 0 // doesnt affect fastdl

2. Create a blank file ".txt" in /csgo directory and "1.txt"
__________________
My servers:



Contact:
* Steam: https://steamcommunity.com/id/imslow2k17/

Last edited by xSLOW; 01-10-2020 at 18:12.
xSLOW is offline