[404UserNotFound]

This was brought to my attention:

https://www.youtube.com/watch?v=AWhjT1RvzqA

The guy has targetted a server which I host for another community, and he recorded himself doing it.

He uses some weird chat commands like "| /lag 10" and such.

Also, there was this bit that the server owner asked me:

Quote:

I don't suppose this means anything to you.. //xx:de.://-lag//-MassCrab-//auto/dsvsvrsrff':.//-acount//-autojoin-//ext.//--fileacces--//.start

I'm not sure what the heck is going on here.


EDIT: "he's just coming on with different IP's and is instantly crashing us."

What a friendly guy >.>

[friagram]

Probably he is just accessing sourcemod commands which he has access to, be it legitemately or via backdoor plugin.

[404UserNotFound]

I don't think there's plugins with "sm_lag" and "sm_hardlag" commands, friagram.

It looks like maybe he's doing something similar to what TF2Speech.com's "TTS" "plugin"/program does, where it reads some "log.txt" file where chat is stored while you're using it, and it scans the constantly updating log.txt file for "!tts".

Upon it detecting !tts <message>, it plays the <message> portion over your microphone using its built in TTS voice. I have a feeling he's made his own little program that works similarly, but starts up some sort of LOIC or whatever the heck the script kiddies are using these days.

[friagram]

Quote:

Originally Posted by abrandnewday I don't think there's plugins with "sm_lag" and "sm_hardlag" commands, friagram.

Why not?
All youd have to do is set the host timescale to nearly zero for x seconds.
An idiot could do it.

[404UserNotFound]

Server owner says:

Quote:

"We don't have /lag or /hardlag for fuck sakes"

[friagram]

Could be a chat listener using string compare, rather than a registered command.

It is possible that it is some client sided script he is running that is dosing the server,.. but I kind of doubt it.

[404UserNotFound]

Quote:

Originally Posted by friagram Could be a chat listener using string compare, rather than a registered command. It is possible that it is some client sided script he is running that is dosing the server,.. but I kind of doubt it.

I'm going with your latter explanation because your former one makes no sense given that I've stated multiple times it's not related to plugins he's running. The guy who runs the server (who is a member here, "AwesomeX") doesn't run any plugin with any form of "lag" function in it.

EDIT: Also I'm done talking on X's behalf, I'm way too tired for this. X you're up.

EDIT 2:

Quote:

8:52 PM: Oh and by the way. 8:52 PM: He's done this on multiple servers in the past. 8:52 PM: Even Harpoon.

[AwesomeX]

According to a chat with this seemingly insane and rather unstable individual. He's stated that he's done this to other servers in the past. So it's not just a plugin on my server that allows him to do this.

[friagram]

Run a command listener, or try smac commands to see if he is spamming some dumb shit like sm version or whatever

[Benoist3012]

That reminds me an old crash issue with spec_goto that me and a friend send a fix to valve http://www.teamfortress.com/post.php?id=23851.

I doubt a command listener does the trick, it is probably a backdoor where the chat listener look for the string "/lag ; /hardlag ect" so it won't appear in the commands list, I believe the plugin doing that is actually public, the source doesn't contain it but the compiled plugin attached on the post contains it, and you have no way to tell if it has it or not, I guess you need to decompile every single pre-compiled public plugin you downloaded, and then nuke the public plugin.