Real Actual Threat Report :P

[St1flus]

I had a lot of rcon hackers before...
:\

Kinda stuck but really busy atm.

[OrganDonor]

i think if your just learning about srcds rcon hacking is something everyone tries like a right of passage lol

[St1flus]

Ahahahaha, but they should try on their own server, or an empty one, don't you think?

Or actually tell you are about to attempt this and get permission.

Heh, this kind of makes me want to know how to, but I know I won't get anything except in the black market of SRCDS.
"Ey man, I sellz you some interwebz hax crax? Joo wana bai?"

[pengy]

Make the clients.txt file read only, use eventscripts with iron wall, and add es_flags add gamedll ma_clients
to autoexec, so people cannon add themselves as admin.

[St1flus]

What do you mean evenscripts with ironwall?

[pengy]

Iron wall prevents rcon changes just incase hes using a rcon hacking script

[ComputerHelper]

I use IronWall on all my servers, and do believe my self &/or Assmunk were the first people to tell people about it there fore this is how to install it.

1) Install the lastest ver of ES ver2+

2) Install ES_Tools

3) IronWall - http://addons.eventscripts.com/addons/download/ironwall

3.1) Install IronWall

3.2) Goto the IronWall directory

3.3) Open ./cstrike/addons/eventscripts/ironwall/settings

3.4) Goto cvars.txt

3.5) Add your rcon_password to the 'rcon_password' line. The line sould look like "rcon_password '[your password]'". You can leave it blank, and it will disable rcon completely.

3.6) Add the other variables from the server.cfg (Server Rates)

3.7) Save

4) Open client_cvars.txt

4.1) Add/change any cvars you want to force clients to match.

4.2) Open banned_commands.txt

4.3) Add any commands that you would like clients not to be able to use. Don't add any ES commands or Mani commands. This is not 100% sure to work, so dont be upset if the commands are not blocked

4.4) Save

5) Open settings.ini

5.1) log_details (1/0) tells the script to log details when a watched variable is changed - like the playercount and map.

5.2) check updates (1/0) tells the script to check for new updates when it loads

5.3) log players (1/0) tells the script to log the player steamids on the server when a watched variable is changed

5.4) limit (number) is for flood control. Hackers might lag your server by trying to change lots of watched variables quickly, so if [limit] number of attempts are made in [time] seconds it lowers the CPU cost of changing the variable back (Does not write the player steamids etc)

5.5) time (number) is for flood control. Every [time] seconds the internal flood counter will be reset. Leave it as it is.

5.6) Password (string) is reserved for future updates

5.7) Save

6) Turn Server Back on and wala it loads up


I will also post this in srcds modifications

Jim

[ComputerHelper]

I went ahead and added him as the first hacker in the NEW hacker database.

The database can be found here:

http://forums.srcds.com/viewtopic/10128

Please Feal Free to Post All Knows Hackers There

[Beaverbeliever]

ComputerHelper Wrote:I went ahead and added him as the first hacker in the NEW hacker database.

The database can be found here:

http://forums.srcds.com/viewtopic/10128

Please Feal Free to Post All Knows Hackers There

Thanks, at least it will keep it out of General and into Off-Topic.

[St1flus]

Yep, thanks !

Now I can spam that database with noob hackers XD
Thanks dude, appreciate it.

[Drocona]

What did I say about these threads?

Don't post them here make some offsite blog for them or something!