Question: How to protect rcon from hacker
Experince: Since 01-01-2009 Temmatedown! come to my server and attacking my server i mean using the rcon without password on that problem i deal with him (I give him admin account but don't attack my server again but after 1 year he said this server is **** so i kicking him from admin) 01-01-2010 he back to my server and take a revenge (Maybe because the name was change to Dr. Trojan) his cheat same as teammatedown cheat i mean he can using the rcon without password too and he still doing that until now (23-05-2011)
So, how to protect the rcon from hacker? and how to make people cannot join our server anymore (Example: We already ban this guy ip but he still can join without change his ip only need using port and his ip is changed so my suggestion on the next version better DarkCorner delet the port function) How to protect your server from a hacker that is using RCon:
Change the RCon password daily.
IP banning isn't working:
Subnet ban the bugger. If his IP address is like 123.53.457.[Random], then use:
Port function stuff:
And what, may I ask, are you talking about here?
Hard-to-read English:
Please write a little more carefully and slowly. It's very hard to read your post. No, teammate down uses a hack. Nothing to do with rcon, he can use buttons and trigger everything from a distance.
What to do if this idiot child comes to the server.
Ban him, that's all. Really, just keep on banning him until he gets bored. Well one suggestion is to ban his whole subnet temporarily since that should keep him away for quite some time.
Simply because single IP's aren't that effective to block.
Otherwise use the built-in "UnrealSoftware ID users only" support to be able to see the joining players US ID and therefor you could also add a Lua to your server which blocks the joining players if they have a matching US ID of any of your banned users. It's the best solution I could think of anyways. There is also a lua for rcon (If he does actually know the rcon or whatever) that only certain people can use it. For fuck sakes, just use an admin script that disables the use of rcon commands. Yates has written
There is also a lua for rcon (If he does actually know the rcon or whatever) that only certain people can use it.
Fun-Gaming used it. Crashboy asked me for doing it. As far as I know it works properly. Yasday has written
Yates has written
There is also a lua for rcon (If he does actually know the rcon or whatever) that only certain people can use it.
Fun-Gaming used it. Crashboy asked me for doing it. As far as I know it works properly.
Yeah, I know. Works fine
Edit: Just wondering actually, how did you make it? DannyDeth has written
How to protect your server from a hacker that is using RCon:
Change the RCon password daily.
IP banning isn't working:
Subnet ban the bugger. If his IP address is like 123.53.457.[Random], then use:
Port function stuff:
And what, may I ask, are you talking about here?
Hard-to-read English:
Please write a little more carefully and slowly. It's very hard to read your post.
I think change the rcon daily it not effective he dosen't need to know the password to active it he just like automatic can login the rcon
But thank you for your suggestion banip
Yates has written
No, teammate down uses a hack. Nothing to do with rcon, he can use buttons and trigger everything from a distance.
What to do if this idiot child comes to the server.
Ban him, that's all. Really, just keep on banning him until he gets bored.
o.O If i do your suggestion maybe i will be crazy because must 24 hour online at my own server
KimKat has written
Well one suggestion is to ban his whole subnet temporarily since that should keep him away for quite some time.
Simply because single IP's aren't that effective to block.
Otherwise use the built-in "UnrealSoftware ID users only" support to be able to see the joining players US ID and therefor you could also add a Lua to your server which blocks the joining players if they have a matching US ID of any of your
banned users. It's the best solution I could think of anyways.
Yeah i already do ban his ip 41.237.29.*
But i think banning his usgn is not effective i already know him since 2009 and i already see he have many account like 50910 and other i forgot i only ban this usgn
Yates has written
There is also a lua for rcon (If he does actually know the rcon or whatever) that only certain people can use it.
What ever i already change the rcon and maybe 50% Protect the server from hacker because there is space password to password example: No es but he still can hack it
Btw can you give me the lua for block it from hacker? 1
2
3
4
5
6
7
8
9
10
11
admins = { [0]=YOUR_USGN_HERE, [1]=ANOTHER_USGN, [2]=ETC_ETC }
addhook("rcon","rcon")
function rcon(cmd,id)
	local usgn = player(id,"usgn")
	for i=0,#admins,1 do
		if usgn == admins[i] then
			return 0
		end
	end
	return 1
end
I'm not sure if this little sketch is exactly what you want, but I know it should do what you need. DannyDeth has written
1
2
3
4
5
6
7
8
9
10
11
admins = { [0]=YOUR_USGN_HERE, [1]=ANOTHER_USGN, [2]=ETC_ETC }
addhook("rcon","rcon")
function rcon(cmd,id)
	local usgn = player(id,"usgn")
	for i=0,#admins,1 do
		if usgn == admins[i] then
			return 0
		end
	end
	return 1
end
I'm not sure if this little sketch is exactly what you want, but I know it should do what you need.
Thank you DC Admin Offline
Quote
(Example: We already ban this guy ip but he still can join without change his ip only need using port and his ip is changed so my suggestion on the next version better DarkCorner delet the port function)
remove the port?! I'm sorry but that's technically impossible. a network application can't work without using a port. it's nothing I have added for fun. it's essential. please read something on how the internet works.
moreover: the port has no influence on bans. so it doesn't make any sense what you are saying here.
Quote
I think change the rcon daily it not effective he dosen't need to know the password to active it he just like automatic can login the rcon
that's not possible either. he must know the rcon password.
maybe he installed malware on your system to get the password or the password is too easy to guess. use a long combination of random numbers and letters.
also make sure that mp_maxcrconfails is set to a low value (but higher than 0).
check the log files of your servers to see what is REALLY going on! your are describing this guys as an almighty god who can hack every server without knowing anything and do everything on it. but that's impossible because CS2D has many protections against that stuff.
another good solution is to enable usgn only and ban his usgn id(s). he'll stop sooner or later because creating new accounts all the time is quite annoying. I must ask, what is this 'hacker' actually doing to your server/the players on your server?
EDIT:
DC has written
[...] another good solution is to enable usgn only and ban his usgn id(s). he'll stop sooner or later because creating new accounts all the time is quite annoying.
Yeah, this is true, but look at oxytamine, he registered like a million accounts in one night. Admin/mod comment
and all of them are banned and can not be used in-game anymore He can use a button from a distance. That's all.
No matter where he stands if he can see the button, he can use it. A button? Wtf are you talking about? But what has this got to do with people messing with servers using RCon? It doesn't, just he thinks it does.
That's the same what crashboy thought, that the rcon was hacked.
Using the usgn rcon only script won't help, because it has NOTHING to do with rcon at all. Make some walls and triggers for Lua, shouldn't be too hard and it'll solve the problem.