One month ago, me and a friend informed about a bug in the rcon system. Although someone in the list (hey Jolt Admin! :) didn't understand it very well, it actually was (and is) a serious bug. However, it hasn't been fixed in the latest release :(
Better than search for the previous mail, here you have a "proof of concept" server log to help those lazy Valve guys }:) > I start my dedicated server and set a rcon password: rcon_password valve rcon_password "rcon_password" is "valve" > Now, I set an incorrect password in HLSW and do some Tests: Bad Rcon from 157.88.191.10:7130: rcon 2386680300 "badpassword" echo HLSW: Test L 06/14/2002 - 19:20:37: Bad Rcon: "rcon 2386680300 "badpassword" echo HLSW: Test" from "157.88.191.10:7130" Bad rcon_password. Bad Rcon from 157.88.191.10:7130: rcon 2386680300 "badpassword" echo HLSW: Test L 06/14/2002 - 19:20:39: Bad Rcon: "rcon 2386680300 "badpassword" echo HLSW: Test" from "157.88.191.10:7130" Bad rcon_password. Bad Rcon from 157.88.191.10:7130: rcon 2386680300 "badpassword" echo HLSW: Test L 06/14/2002 - 19:20:40: Bad Rcon: "rcon 2386680300 "badpassword" echo HLSW: Test" from "157.88.191.10:7130" Bad rcon_password. Bad Rcon from 157.88.191.10:7130: rcon 2386680300 "badpassword" echo HLSW: Test L 06/14/2002 - 19:20:42: Bad Rcon: "rcon 2386680300 "badpassword" echo HLSW: Test" from "157.88.191.10:7130" Bad rcon_password. User 157.88.191.10:7130 will be banned for rcon hacking > I am banned after 4 failed attempts (it's ok) and remove my ban: removeip 157.88.191.10 IP filter removed. > And do another HLSW test, but this time with the correct password: rcon 2386680300 "valve" echo HLSW: Test L 06/14/2002 - 19:21:58: Bad Rcon: "rcon 2386680300 "valve" echo HLSW: Test" from "157.88.191.10:7130" Bad rcon_password. listip IP filter list: 157. 88.191. 10 : permanent rcon_password "rcon_password" is "valve" > I'm immediately banned O_O The server needs to be restarted in order to solve this. PD: Yes, I know that my english is horrible :/ _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
