Raised This Month: $218 Target: $400
 54% 

CSGO NEW Exploit crashing players from public server (11/01/2020)


Post New Thread Reply   
 
Thread Tools Display Modes
Author Message
xSLOW
Member
Join Date: Apr 2019
Location: Romania
Old 01-10-2020 , 19:11   CSGO NEW Exploit crashing players from public server (11/01/2020)
Reply With Quote #1

How it works?
There is a new exploit that somehow a client can flood the rcon with requests and sourcemod cant handle these requests and gives timeout to the players. ( I dont know exactly what is going on, if you know something more, leave a comment )
This exploit only works if a player sends requests to the rcon before joining the server, while loading the map. I didnt found this exploit by myself, a player from my server did, he didnt gave many details.

Here are the messages from console when the exploit is active:
HTML Code:
Banning 176.111.180.209 for rcon hacking attempts
Banning 176.111.180.209 for rcon hacking attempts
Banning 103.22.248.59 for rcon hacking attempts
Banning 103.22.248.59 for rcon hacking attempts
Banning 203.128.80.180 for rcon hacking attempts
Banning 79.101.45.94 for rcon hacking attempts
Banning 176.111.180.209 for rcon hacking attempts
Banning 79.101.45.94 for rcon hacking attempts
These are proxy IPS, I think, not legitimate players.

The fix is simple, you will need to install this plugin to lock the rcon before connecting.
Good version: https://forums.alliedmods.net/showpo...&postcount=517
I had smac_rcon and it didnt worked, latest SMAC version actually.

Also, if it doesnt work, you cant try these things, I've got them from another AM threads:

1. Add these commands to server.cfg

//exploit
sv_rcon_banpenalty 5
sv_rcon_maxfailures 10
sv_rcon_minfailures 5
sv_rcon_minfailuretime 30
sv_allowupload 0 // doesnt affect fastdl
sv_allowdownload 0 // doesnt affect fastdl

2. Create a blank file ".txt" in /csgo directory and "1.txt"
__________________
My servers:



Contact:
* Steam: https://steamcommunity.com/id/imslow2k17/

Last edited by xSLOW; 01-10-2020 at 19:12.
xSLOW is online now
vorestell
New Member
Join Date: Dec 2019
Old 01-10-2020 , 19:37   Re: CSGO NEW Exploit crashing players from public server (11/01/2020)
Reply With Quote #2

I "created" the exploit, and all u need to know is that i simply send certain things towards the server before i even load into the game, wich leads into the server banning people for rcon hacking attemps and kicking them out.

- only works on linux based servers, and the fix in this thread ^

Last edited by vorestell; 01-10-2020 at 19:38.
vorestell is offline
Franc1sco
Veteran Member
Join Date: Oct 2010
Location: Spain (Madrid)
Old 01-10-2020 , 19:44   Re: CSGO NEW Exploit crashing players from public server (11/01/2020)
Reply With Quote #3

You should always set
Code:
sv_allowupload 0 // doesnt affect fastdl
sv_allowdownload 0 // doesnt affect fastdl
for prevent that someone upload random stuff to your server in CSGO.
__________________
Veteran SourceMod Coder -> Activity channel
Taking some paid jobs and selling some private stuff.
Contact: Steam, Telegram or discord ( Franc1sco#7876 ).

You like my work? +Rep in my steam profile comments or donate.


Last edited by Franc1sco; 01-10-2020 at 19:46.
Franc1sco is offline
Send a message via MSN to Franc1sco
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 14:44.


Powered by vBulletin®
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
Theme made by Freecode