[.Dare Devil.]

Description:
This is very small plugin what will block command rcon_password.
Ive seen&heard about Raiz0's new hack and all i know for now is that it is somehow sending cfg files to server what will change your rcon_password.
( hack can also replace files somehow... )

Here is video about that hack: http://www.youtube.com/watch?v=tgFeMjWAmFo


Install:
Before you download sma you must follow few steps.
Step1:

Quote:

[IMPORTANT] change plugins.ini and all ohter plugins-(...).ini access to read-only

Step2:

Quote:

Download the sma or amxx, upload it and put it in your plugins.ini [IMPORTANT] this plugin must be first in your costom plugin list ( somehow, when i tell this someone, they never understand what i meant with that so i made you something ) here is an example: ; AMX Mod X plugins ; Admin Base - Always one has to be activated admin.amxx ; admin base (required for any admin-related) ;admin_sql.amxx ; admin base - SQL version (comment admin.amxx) // lets skip the middle... ; Counter-Strike ;restmenu.amxx ; restrict weapons menu statsx.amxx ; stats on death or round end (CSX Module required!) ;miscstats.amxx ; bunch of events announcement for Counter-Strike ;stats_logging.amxx ; weapons stats logging (CSX Module required!) ; Enable to use AMX Mod plugins ;amxmod_compat.amxx ; AMX Mod backwards compatibility layer ; Custom - Add 3rd party plugins here mypluginhere.amxx glowweapons.amxx admin_chat_color.amxx etc...

Support:
Some say that this hack will only work in nonsteam servers but the information about the program does not mention anything about dproto or any ohter nonsteam patch.
Because, it is related to amxmodx and metamod the update of hlds wont help it so i made this plugin.
To be honest i hate hackers, that is the reason why this thread was starded.
For now on this plugin will fix not only this hack but if something new is created i will update this plugin.
i need your help with that. If your server suffers some new exploit, dos or whatever and the hlds update can not help then post here details, error logs or any ohter source for example like that youtube link and Il update my plugin.
If i know how the hack works i can make plugin but if hack only work because of the nonsteam patches then i cant help you.

[YamiKaitou]

If you have updated your server using SteamCMD, you are not affected by this. Thus, this plugin is pointless

[.Dare Devil.]

Quote:

Originally Posted by YamiKaitou If you have updated your server using SteamCMD, you are not affected by this. Thus, this plugin is pointless

Have you tested this hack?

[YamiKaitou]

I don't have the hack, but if you look at the threads in HL1 Servers, you will see that there has already been a large discussion on it. The exploit he is using was fixed with the SteamPipe update.

[.Dare Devil.]

Quote:

Originally Posted by YamiKaitou I don't have the hack, but if you look at the threads in HL1 Servers, you will see that there has already been a large discussion on it. The exploit he is using was fixed with the SteamPipe update.

Uh, alright, trash this...

[Mikado]

Quote:

Originally Posted by YamiKaitou If you have updated your server using SteamCMD, you are not affected by this. Thus, this plugin is pointless

Some hosts still using HLDSupdatetool ;)

[YamiKaitou]

Quote:

Originally Posted by Mikado Some hostings still use HLDSupdatetool ;)

Then that is their problem. The correct solution to this hack is to update the server using SteamCMD.

[DIS]

PHP Code:

#include <amxmodx>

public plugin_init() register_concmd("rcon_password", "rc_b")
public rc_b() return PLUGIN_HANDLED 


WTF Only 3 lines?!
And no need if u dont use dproto

[ConnorMcLeod]

Method is not efficient, rcon_password is not a command, it's a server cvar and a client cvar.

What you should do is blocking the cvar to empty filed with Cvar Util module.

[saad700]

Nice Man ♥