Crashing My Server... -1 reply

Please wait...

Guest

I didn't make it!

0 XP

 
#1 13 years ago

Hi there, ive got a bit of a problem with someone crashing my server... Firstly ive removed the /ignore command with a hex and i know its not this that is making it crash.... i got a screenshot of the .ssh screen on putty when the person in quesion crashed it, and it seems that he was exploiting the /tell command... The last entry in thr .ssh log is (playername being the persons in question) :tell playername to playername : aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa how is he exploiting the /tell command because i have tried to do the same but not with the same effect of crashing.... Is there a fix for this? i dont want to remove the /tell command too because i use it quite freqeuntly for private chats.... Any help and advice would be much appreciated... Thanks uK[a] BuLLy




GODh

People say I post too much

50 XP

8th February 2001

0 Uploads

1,274 Posts

0 Threads

#2 13 years ago
'uK[aBuLLy'] The last entry in thr .ssh log is (playername being the persons in question) :tell playername to playername : aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa

Does this mean he is using the "tell" command to himself??




gibbs

The Internet ends at GF

50 XP

18th December 2004

0 Uploads

104 Posts

0 Threads

#3 13 years ago
Firstly ive removed the /ignore command with a hex

I know you said this isn't the problem but i wouldn't advise removing things as SoF2 points directly to specific memory locations and removing bytes may cause commands to move to different ones. What version of SoF2 are you running? There is a fix for people sending long strings to crash servers for 1.00 adn 1.03. Check this out if you haven't already patched it... http://securitytracker.com/alerts/2005/Feb/1013291.html




FF|CrYpTK33PeR

MoHFiles - Vice Site Manager

50 XP

12th April 2005

0 Uploads

274 Posts

0 Threads

#4 13 years ago

Similar topics have been answered many times here ;)




Guest

I didn't make it!

0 XP

 
#5 13 years ago

Thanks, im not sure whether my server is already patched, I rent it from Jolt so i should imagine they couldnt be bothered...

Ive visited that like for guidboom but couldnt find the patch for Linux. i have got a screenshot from putty of how he crashed the server: visit here: www.sof2crash.moonfruit.com look at the last entry on the screen, i was on the server when it crashed and i took this shot only seconds after. Thanks for your help uK[a]*BuLLy*




Guest

I didn't make it!

0 XP

 
#6 13 years ago

Sorry wrong web addy: its : www.crash.moonfruit.com




FF|CrYpTK33PeR

MoHFiles - Vice Site Manager

50 XP

12th April 2005

0 Uploads

274 Posts

0 Threads

#7 13 years ago

That guy who crashed your server is a known crasher, He crashed my server a couple of times to but its patched now for almost every exploit/bug whatever thanks to my server provider. The patch is developed by them dunno if they give it out to the public though, Think its only for customers ;)




Dark Saint

How many dogs are Pb'd?Maybe 2

50 XP

30th April 2004

0 Uploads

8,040 Posts

0 Threads

#8 13 years ago

If you are renting a server from Jolt, then they have to care. They should have already taken care of this. You may want to put in a support ticket and speak with them. For you to do anything you would have to have access to the box. Not just your server files but the box with which your server is on . they have to change the start up line to include the command line for any patch that they put on.




FF|CrYpTK33PeR

MoHFiles - Vice Site Manager

50 XP

12th April 2005

0 Uploads

274 Posts

0 Threads

#9 13 years ago

It seems like linux server are harder to patch against it then windows servers, ALmost every server provider who hosts their server on windows are very good protected against it.