Official Soldat Forums
Soldat Talk => Need Help? Report Bugs! => Topic started by: Zapper on September 05, 2010, 01:34:49 pm
-
Hellow,
some1 (not me) make ugly program that can crash every soldat server, its very simple, that program send some sockets that simulate adminloging with bad passwords, after some wrong tries server will get crashed.
If u dont believe me: http://yfrog.com/f/bfbeztytuufyxj/ ss is not my
That bug constains in soldatserver 2.6.5 (dont know 'bout highers)
I think that NCS should make patch that will ban IP that fails adminlog 10 times.
And man who create that "Server Crasher" is called "Polifen" he has account here, and he is from P[r]oland.
Sry for my bad english.
-
Yes, I wrote it, no, I didn't use it. This bug is quite well known and was used by a few more Soldat "hax0rs".
Edit: It should be in Server Help i think.
-
iptables. Is the only way right now I think. Ivy and some other "haxxors" did it to my server without any reason. I dont know, maybe they think its cool.
-
I had the same problem, there's no clue, you cannot do anything about it. I doubt it's fixed in new soldat server version.
-
Well there's some sort of firewall hardcoded in dedic server but it only occurs on joining game.
-
You can't firewall admin TCP connection, but you can use max admin connection. For most servers you can set MaxAdminConnection to 1 and just use the 1 slot with ARSSE. Next connection will be automatically disconnected. Tested and works for 1 crasher, i have no server to check if it will work with more crashers running.
-
You can't firewall admin TCP connection, but you can use max admin connection. For most servers you can set MaxAdminConnection to 1 and just use the 1 slot with ARSSE. Next connection will be automatically disconnected. Tested and works for 1 crasher, i have no server to check if it will work with more crashers running.
Most servers got more than 1 admin.
-
I think most servers use remote admins, ARSSE is usually only for the owner, but if you know that you will use 2 admin slots it should stop crasher. I'd need a server to test it, but my hosting died this month.
-
but if you know that you will use 2 admin slots it should stop crasher. I'd need a server to test it, but my hosting died this month.
To test what? Of course that if you got 2 admins connected and max connections set to 2 it will stop the attack, but you're not connected 24/7, are you?
-
But the number of slots left could be so low, that the server won't crash, also I'm not sure if MaxAdminConnection=3 and 3 admins logged in would really stop the program.
-
Someone is doing it to my server too.
EDIT: That sucks, as soon as my server is up it gets crashed. Hope it gets fixed as soon as possible :/
-
One of these hackers is Skaradisium.
His ip is 65.188.138.170.
Watch for him or try to prevent him, im not quite sure.
Hope this rampage stops.
-
Yea, when i IPTRACK him, i also get this name.
This is really annoying..
-
I think most servers use remote admins, ARSSE is usually only for the owner, but if you know that you will use 2 admin slots it should stop crasher. I'd need a server to test it, but my hosting died this month.
This works for a while but eventually it will cause people to disconnect from the sever and then crash it..
(22:36:43) Admin connected (65.188.138.170).
(22:36:43) Admin failed to connect (65.188.138.170).
(22:36:43) Admin connected (65.188.138.170).
(22:36:44) Admin failed to connect (65.188.138.170).
(22:36:44) Admin connected (65.188.138.170).
So there certainly needs to be a fix for this or that Skaradisium ass hat will continue to crash servers.
-
Skaradisium randomly went on one of the server i'm admin and he's a total asshole, he just lies and says he doesn't do anything. After i kicked him from the server, he crashed one of my servers.
-
Back to former days when this forum was a bit more active - naming cheaters/hackers and methods they use was forbidden. Cause was simple and clear - not give idea to other lamers how to cheat/crash your server.
-
Well he's not like a hacker in some ways, he's more like a server crasher and imo, people should know who he is to prevent his bullshiz
-
That's good that ppl use this exploit. Maybe eC will do anything, this exploit exist for a very long time.
-
That's good that ppl use this exploit. Maybe eC will do anything, this exploit exist for a very long time.
we can only hope.
-
(17:36:46) 89.174.36.53:23073 requesting game...
(17:36:47) 89.174.36.53:23073 requesting game...
(17:36:48) 89.174.36.53:23073 requesting game...
(17:36:49) 89.174.36.53:23073 requesting game...
(17:36:49) 89.174.36.53:23073 requesting game...
(17:36:50) Firewalled IP 89.174.36.53
Wondering if it's hardcoded in soldat server or is it my hoster feature. If hardcoded then nsc can just get it to work with on admin connection and we have this problem solved
-
Soldatserver has got a requesting game flood protection.
-
Yeah, that's normal.
The other thing is the admin failed to connect floods. Without a firewall, this server vulnerability rivals the size of Kirk Johnson's flexible poopchute.
-
requesting game flood protection.Nope. If it would have it, there will be not any "crashers".
I think that nup NCS should read that topic and make #some patch.
-
requesting game flood protection.Nope. If it would have it, there will be not any "crashers".
I think that nup NCS should read that topic and make #some patch.
game request=/=admin connection
-
I think that NCS is not reading that topic / category.
-
I think NSC is not reading any topics/categorys
-
I don't have any server atm, someone with the problem could msg him. As we can see in this topic, it's not just one person's problem.
-
Maybe this is the cause of crashing the servers:
OnScriptCrash=shutdown
Have you tried to crash server that way with scripting off?
-
@UP
no. Servers is not crashed by script.
Its something like arrse, but it use wrong password many times.
-
Its a tcp-admin connect try. You cant do it with any brute-force-programm out there. Some kind of "DOS".