Servers being hacked! -1 reply

  • 1
  • 2

Please wait...

¤Dx¤ØutLaw

AFK = A Free Kill

50 XP

15th March 2005

0 Uploads

90 Posts

0 Threads

#1 12 years ago

I have witnessed 3 servers so far hacked in Jedi Academy. The 5000 series, HOD clan and {SC} clan, and the {SC} server runs off the leader's home computer. Was wondering if anyone else was having a problem and if a solution can be found. This person enters a server and then gains access to rcon, they then like to chat to the players over rcon and mess around with server settings, they either get bored and start banning people or just crash the server by messing up all the cfg settings. I know it is the same person, they remembered me and my friends form the previous servers. I am hoping someone has obtained an ip for this person or a fix for the hack being used. The only thing he bragged about when he was messing around on 5000 server was he had the ability to obtain admin passes while in the server. After he banned all of us, we went to HOD server to continue our playing and immediately got an rcon message asking how we liked our server hopping.




TacoPie

Eating...

50 XP

5th March 2006

0 Uploads

122 Posts

0 Threads

#2 12 years ago

What mod (if any) are the servers using ? Also, I would make sure to have a fairly long and random letter/number rconpassword.




¤Dx¤ØutLaw

AFK = A Free Kill

50 XP

15th March 2005

0 Uploads

90 Posts

0 Threads

#3 12 years ago

They were all running ja+, not sure which version. He seem to get the rcon pass instantly. When {SC} kicked the guy he was only on for a minute if that and instantly logged in after getting kicked, on HOD server he was logged into rcon just seconds after we joined on the server. We all are still banned from 5000 series server so no way to inform the admin there, but HOD has been informed, SC server owner was on while this happened and was powerless to stop him. I posted here to see if anyone else had this problem or know of a way this guy keeps getting rcon access.




Mikouen VIP Member

What?

145,654 XP

4th September 2005

4 Uploads

11,732 Posts

2 Threads

#4 12 years ago

"Hacking"? Don't make me laugh....

Here's a few tips.

1. Don't run servers from home computers. Not only are home PCs not powerful enough to host a proper server, you can't get the security updates actual server machines use.

2. Make sure the server company has fully upgraded all their security software.

3. Make sure servers are v1.01 - v1.00 has a lot of security loopholes.

4. Don't use simple passwords. Make them as cryptic as possible.

5. Always disable autodownloading on the server.

6. If you suspect someone of deliberately causing trouble for whatever reason, don't login to admin or RCON via the console. Minimise the game and use a server tracker to get rid of them instead.


I don't know how, and I don't know why, but this is totally Sheep's fault.



UU_BobaFett

JKG Lead coder

50 XP

18th July 2006

0 Uploads

202 Posts

0 Threads

#5 12 years ago

the problem is simple, your server allows downloads doesnt it?

the allowdownloads system has 1 big security hole: the server doesnt check which files are bein asked for download, only the client does.. there's a hack (i made one myself), that overrides the game and lets you download pretty much any file you want from the server as long as it exists..

now the main targets for such a hack would be server.cfg and jampserver.cfg

if you dont have download protection (like my server has) i recommend you turn off downloads




Guest

I didn't make it!

0 XP

 
#6 12 years ago

Make that 4 people were hacked. Our servers were hacked also. He not only banned most of our members, but deleted all the logs so we couldn't track him. So look out everybody.




Zach

50 XP

5th July 2005

0 Uploads

3,271 Posts

0 Threads

#7 12 years ago

And they all run JA+. Maybe someone found a bug in it that allows them to grab the rcon password/config.




TacoPie

Eating...

50 XP

5th March 2006

0 Uploads

122 Posts

0 Threads

#8 12 years ago
FA_Dark_ArsenalMake that 4 people were hacked. Our servers were hacked also. He not only banned most of our members, but deleted all the logs so we couldn't track him. So look out everybody.

Sorry to hear that.

Also, I know this a dumb question, but were autodownloads on or off?




¤Dx¤ØutLaw

AFK = A Free Kill

50 XP

15th March 2005

0 Uploads

90 Posts

0 Threads

#9 12 years ago

This has been adressed on Slider's forums as well. http://www.japlus.net/phpBB2/viewtopic.php?t=291 I think word is getting around for people to turn off downloads.




Grizzlybear

Don't steal my cigars!!

50 XP

4th July 2006

0 Uploads

24 Posts

0 Threads

#10 12 years ago

I'm going to say it, JA Plus has more security holes than a block of swiss cheese. I've seen this before and a few other nasties that grab all the passwords used in game. First rule that has been stated here is Shut off the download option. I wouldn't use it and I haven't in the almost two years I have run my clan. The new 'fix' that Slider is doing I doubt will be safe either. Just a gut feeling but if someone wants a custom pk3, tell them to download it. Everytime someone comes up with a prevention to block the bad guys, another one pops up. For nothing else, change your passwords on a regular basis. I know it's a pain but it can help a bit.




  • 1
  • 2