[narutoramen]

just wondering is there a time limit in the way it checks for cheat cvars till the ban occurs? for example KAC banned a guy who was in the server after 14 minutes, he had a kill:death ratio of 170:14 within 14 minutes playtime, obviously cheating.

He was banned in the end by KAC for:

L 10/16/2009 - 20:02:43: Bad CVar response! XXXXXXXX (STEAM_X:X:XXXXXXXX) has host_timescale (host_timescale) set to 4
L 10/16/2009 - 20:02:43: XXXXXXXX (STEAM_X:X:XXXXXXXX) was banned for cheating. KAC ID:5.7

Does KAC check for these commands as soon as the player connects? anyway to make the ban occur quicker?

[Kigen]

There is time delays due to the fact that over checking in a sort amount of time will lead to performance hits to the server.

I may make this configurable in the next update to the 1.2 branch but you'd need to be careful.

[egor1908]

Is there any other way to detect if Sourcemod or MetaMod is running on the client? I think RCON Lock and KAC can be bypassed by modifying sourcemod_version and metamod_version cvars so something else like smod_ver.
Rly true? Will try this out soon.

*gone haxxing some newbs*

[Kigen]

Its not impossible to hide a 3rd party mod from the server however, when they start messing with things they will get banned by KAC for cheating.

I just kick them before hand so that they have a chance to remove 3rd party mods before joining the server so there is no unintended bans either. A 3rd party mod like zBlock forces certain ConVars to be a specific values, sv_consistency for example is forced to be 1 at all times regardless of what the server has it set to. So KAC would ban someone running zBlock when the server's sv_consistency is set to 0.

[egor1908]

Quote:

Originally Posted by Kigen when they start messing with things they will get banned by KAC for cheating.

What exactly do they get banned for? They can f.e remove cheat flags from some commands, but are all cheat commands being checked?

What else can client-side plugins do?

[Timiditas]

KAC had false positives on Bots and one player
Propably because of something CSS RPG does.

PHP Code:

L 10/15/2009 - 19:00:00: Tom (BOT) attempted to exploit this server with: ent_fire player_speedmod ModifySpeed 0.550000
.
L 10/15/2009 - 19:00:00: Tom (BOT) attempted to exploit this server with: ent_fire player_speedmod ModifySpeed 1.0
.
L 10/15/2009 - 19:00:00: Tom (BOT) attempted to exploit this server with: ent_fire player_speedmod ModifySpeed 0.550000
.
L 10/15/2009 - 19:00:01: Tom (BOT) attempted to exploit this server with: ent_fire player_speedmod ModifySpeed 1.0
.
L 10/15/2009 - 19:00:12: -OnE-ShOt- (STEAM_0:0:xxxxxxxx) attempted to exploit this server with: ent_fire player_speedmod ModifySpeed 0.550000
. 


PHP Code:

03:45:08 Protocol version 7
         Exe version 1.0.0.34 (cstrike)
         Exe build: 10:05:39 Aug 26 2009 (3945)
Linux box 


PHP Code:

03:53:54 Loaded plugins:
         ---------------------
         0:<TAB>"Metamod:Source 1.7.1"
         1:<TAB>"CSSRPG v1.0.4 KinkyMunkey"
         --------------------- 


PHP Code:

03:44:44 Metamod:Source version 1.7.1
         Build ID: 644:f526469efdeb
         Loaded As: Valve Server Plugin
         Compiled on: Feb 25 2009
         Plugin interface version: 10:7
         SourceHook version: 4:3
         http://www.metamodsource.net/

03:44:18 meta list
03:44:18 Listing 4 plugins:
           [01] SourceMod (1.2.3) by AlliedModders LLC
           [02] CS:S Tools (1.2.3) by AlliedModders LLC
           [03] SDK Tools (1.2.3) by AlliedModders LLC
           [04] CS:S DM (2.1.0.446) by AlliedModders 


PHP Code:

03:46:13 sm version
03:46:13  SourceMod Version Information:
             SourceMod Version: 1.2.3
             SourcePawn Engine: SourcePawn 1.1, jit-x86 (build 1.2.3)
             SourcePawn API: v1 = 4, v2 = 3
             Compiled on: Aug 28 2009 00:21:15
             Build ID: 2755:389949cfb76a
             http://www.sourcemod.net/
03:46:13 L 10/18/2009 - 03:45:58: rcon from "80.128.65.117:1841": command "sm version"
03:47:51 sm plugins list
03:47:51 [SM] Listing 69 plugins:
           01 "High Ping Kicker - Lite Edition" (1.0.0.1) by Liam
           02 "Fun Votes" (1.2.1) by AlliedModders LLC
           03 "Players Votes" (1.3.2) by pZv!, The Resident
           04 "Halftime teamswitch" (1.0.5) by [30+]Gemeni
           05 "Sound Commands" (1.2.1) by AlliedModders LLC
           06 "DM Bonus" (1.0) by Timiditas
           07 "AntiStuck" (1.0.1.0) by devicenull
           08 "SourceBans" (1.4.5) by InterWave Studios Development Team
           09 "Map Decals" (1.02) by Berni, Stingbyte
           10 "Fart" (1.0.102) by <eVa>Dog
           11 "Rock The Vote" (1.1.0-svn) by AlliedModders LLC
           12 "KnifeMug" (2.0.0) by FlyingMongoose, sslice
           13 "Admin Help" (1.2.1) by AlliedModders LLC
           14 "Fun Commands" (1.2.1) by AlliedModders LLC
           15 "Aimbot Detection" (0.0.2.0) by devicenull
           16 "RateChecker" (0.4) by pRED*, mod. by BehaartesEtwas
           17 "Reserved Slots" (1.2.1) by AlliedModders LLC
           18 "ATAC Punishment Slap" (2.5.0) by FlyingMongoose
           19 "Mapvote" (1.2.1) by Zerak
           20 "Quake Sounds Fixed" (2.0) by dalto+Timiditas
           21 "Advanced Team Attack Control" (2.5.0) by FlyingMongoose
           22 "Extra Cash" (0.2) by Peoples Army
           23 "Damage report" (1.2.0) by [30+]Gemeni
           24 "blood.smx"
           25 "Basic Comm Control" (1.2.1) by AlliedModders LLC
           26 "Triggers" (2.3.0) by theY4Kman
           27 "Basic Votes" (1.2.1) by AlliedModders LLC
           28 "Admin File Reader" (1.2.1) by AlliedModders LLC
           29 "Anti-camp" (0.9) by dalto
           30 "Team Bets" (2.1) by GrimReaper - Original by ferret
           31 "Model Menu" (0.13) by pRED*
           32 "Basic Chat" (1.2.1) by AlliedModders LLC
           33 "Weapon Restrictions" (3.0.2) by Liam
           34 "Team Balance" (2.2.2) by dalto
           35 "Observe Client" (1.2.1) by WhiteWolf, puopjik, psychonic
           36 "Admin Menu" (1.2.1) by AlliedModders LLC
           37 "SM Super Commands" (0.51) by pRED*
           38 "Death Beam" (1.1) by Peoples Army, AMP
           39 "Say Sounds (including Hybrid Edition)" (3.1.8) by Hell Phoenix, -=|JFH|=-Naris, W]M[D FernFerret, LAMDACORE, Uberman, gH0sTy, Woody
           40 "ATAC Punishment Slay" (2.5.0) by FlyingMongoose
           41 "SM File/Folder Downloader and Precacher" (1.4) by SWAT_88
           42 "Advertisements" (0.6.1) by Tsunami, Otstrel.ru Team
           43 "AFK Manager" (2.6) by Liam
           44 "MapChooser" (1.2.0) by AlliedModders LLC
           45 "Nextmap" (1.2.1) by AlliedModders LLC
           46 "Spray Tracer" (5.8) by Nican132, CptMoore, Lebson506th
           47 "Timisettings" (1.1) by Timiditas
           48 "Client Preferences" (1.2.1) by AlliedModders LLC
           49 "FlashProtect" (1.1.0) by bl4nk
           50 "RCON Lock" (0.3.2) by devicenull
           51 "Basic Info Triggers" (1.2.1) by AlliedModders LLC
           52 "Flesh'n'scream" (1.1c) by Timiditas
           53 "Autodemo" (1.6.2) by Timiditas
           54 "Player Commands" (1.2.1) by AlliedModders LLC
           55 "Fun Votes Botslayvote" (1.1) by AlliedModders LLC, Timiditas
           56 "Anti-Flood" (1.2.1) by AlliedModders LLC
           57 "JoinExitSounds" (1.1) by Timiditas
           58 "ATAC Counter-Strike: Source" (2.5.0) by FlyingMongoose
           59 "CS:S Stats" (0.5) by R-Hehl, Timiditas
           60 "Advanced c4 Countdown Timer" (1.4.1) by dalto
           61 "sql report" (1.0) by Timiditas
           62 "Basic Commands" (1.2.1) by AlliedModders LLC
           63 "CS:S DM Basics" (2.1.0.446) by AlliedModders LLC
           64 "CS:S DM Preset Spawns" (2.1.0.446) by AlliedModders LLC
           65 "CS:S DM Spawn Protection" (2.1.0.446) by AlliedModders LLC
           66 "CS:S DM Equipment" (2.1.0.446) by AlliedModders LLC
           67 "CS:S DM Bot Quotas" (2.1.0.446) by AlliedModders LLC
           68 "Laser Tag" (1.0) by Chocolate and Cheese
           69 "Kigen's Anti-Cheat" (1.1.9) by Kigen (nosockets) 


[Kigen]

1.1.9 and older by default hook all cheat related commands, this includes ent_fire, and blocks them.

1.2.0 Beta does not have this problem. I suggest you use 1.2.0 Beta with CS:S RPG.

Right now I do not have the time to go back and fix the various issues with the 1.1 branch. Nor do I currently have time to fix bugs in the 1.2 branch.

My time is being dedicated towards development of the network back-end that will become quite the focus in future releases of KAC.

Currently, it looks like after the network back-end is in a beta state I will have to completely redo KAC once again. Though I promise to have more requested features and configuration.

[f64]

Many if not most of the cheaters being issued bans by this plugin and VBAC could be prevented from joining the server in the first place.
I base this on the belief that they are probably using the client plugin exploit, which can be defeated with pluginblocker.smx.

Also based on the idea that a hack that reports the 'wrong' cvar response to a cvar query would be several years old,
or just very poorly written.

I realize that BAIL unapproved pluginblocker, probably because he doesn't have time to tweak it for each and every game
and some cvars are going to vary depending on the map anyway. But it works fine, as line 194 is commented out
to handle the false positives which everyone will get.

If you don't want to get your sm logs spammed with these false positives, simply comment out lines 189 thru 194 (LogMessage part) in the script (.sp) and recompile.
This is just a stop-gap tweak. Obviously, if you know how, you can improve the efficiency.

I have tested these two plugins together and there are no issues. The client will be kicked if a plugin is loaded.

Why allow someone to come into your server with a plugin loaded (intentional or accidental) when it can be prevented? Everyone wins.

[Kigen]

I don't know if you noticed but KAC already attempts to block clients with plugins from joining servers.

[egor1908]

Quote:

Originally Posted by Kigen I don't know if you noticed but KAC already attempts to block clients with plugins from joining servers.

He's asking about any way to ALLOW a client with plugins to join, but just prevent all his stuff from working.