Raised This Month: $149 Target: $400
 37% 

Identify Backdoors


Post New Thread Reply   
 
Thread Tools Display Modes
Author Message
jackharlow
Junior Member
Join Date: Nov 2020
Old 11-02-2020 , 06:17   Identify Backdoors
Reply With Quote #1

Hello Guys!
Yesterday my server was hacked by plugin backdoor!

My question is how can I to identify backdoor in plugins ?!

Last edited by jackharlow; 11-02-2020 at 06:18.
jackharlow is offline
DeteCT0R
Member
Join Date: Jun 2012
Location: My Home
Old 11-02-2020 , 06:46   Re: Identify Backdoors
Reply With Quote #2

Check source code. If you found any steam id or any stuff which gives rcon access delete it. If you does have source code then delete the plugin from the server.
__________________
My steam:
DeteCT0R is offline
jackharlow
Junior Member
Join Date: Nov 2020
Old 11-02-2020 , 07:28   Re: Identify Backdoors
Reply With Quote #3

Quote:
Originally Posted by DeteCT0R View Post
Check source code. If you found any steam id or any stuff which gives rcon access delete it. If you does have source code then delete the plugin from the server.
But I had disabled rcon from server.cfg!
i don't know how but he didn't hack my admin he was just installing map for me !!!
how is that possible ?!
jackharlow is offline
OciXCrom
Veteran Member
Join Date: Oct 2013
Location: Macedonia
Old 11-02-2020 , 08:32   Re: Identify Backdoors
Reply With Quote #4

If you gave him access to your server's files, it's pretty obvious how.
__________________

Last edited by OciXCrom; 11-02-2020 at 08:32.
OciXCrom is offline
Send a message via Skype™ to OciXCrom
jackharlow
Junior Member
Join Date: Nov 2020
Old 11-02-2020 , 11:13   Re: Identify Backdoors
Reply With Quote #5

Quote:
Originally Posted by OciXCrom View Post
If you gave him access to your server's files, it's pretty obvious how.
That make sense!
give me the solution please !

how Identify Backdoor in plugins to opposition from that hack ?!
jackharlow is offline
Mordekay
Squirrel of Fortune
Join Date: Apr 2006
Location: Germany
Old 11-02-2020 , 13:00   Re: Identify Backdoors
Reply With Quote #6

Simply don't use precompiled plugins.
Only use plugins from this site and compile them manually on your own computer.
__________________


Last edited by Mordekay; 11-02-2020 at 13:00.
Mordekay is online now
fysiks
Veteran Member
Join Date: Sep 2007
Location: Flatland, USA
Old 11-02-2020 , 22:35   Re: Identify Backdoors
Reply With Quote #7

Quote:
Originally Posted by jackharlow View Post
But I had disabled rcon from server.cfg!
i don't know how but he didn't hack my admin he was just installing map for me !!!
how is that possible ?!
If the hacker is installing maps then he's probably got your FTP password. Technically, someone could write a plugin to download files but you had to install the plugin. So you need to change all your passwords (FTP, control panel, etc.) and then re-install all the official AMX Mod X plugins from the official download and remove all other plugins. Then add back only plugins that you compiled (and know that there isn't any backdoors in the source code) or downloaded directly from this site with the "Get Plugin" link.
__________________
fysiks is offline
jackharlow
Junior Member
Join Date: Nov 2020
Old 11-03-2020 , 06:09   Re: Identify Backdoors
Reply With Quote #8

Quote:
Originally Posted by fysiks View Post
If the hacker is installing maps then he's probably got your FTP password. Technically, someone could write a plugin to download files but you had to install the plugin. So you need to change all your passwords (FTP, control panel, etc.) and then re-install all the official AMX Mod X plugins from the official download and remove all other plugins. Then add back only plugins that you compiled (and know that there isn't any backdoors in the source code) or downloaded directly from this site with the "Get Plugin" link.
Thank U so Much!!!
My problem is solved!!
jackharlow is offline
Reply


Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -4. The time now is 14:29.


Powered by vBulletin®
Copyright ©2000 - 2021, vBulletin Solutions, Inc.
Theme made by Freecode