This sounds like the exploit fixed last week, make sure you update your install. In particular that exploit would let you download .cfg file from your server, and if you put your rcon password in that file they can then get full rcon control of the server (and change the motd amongst other things).
- Alfred -----Original Message----- From: hlds_linux-boun...@list.valvesoftware.com [mailto:hlds_linux-boun...@list.valvesoftware.com] On Behalf Of Collin Howard Sent: Monday, July 02, 2012 1:46 PM To: hlds_linux@list.valvesoftware.com Subject: [hlds_linux] CS 1.6 New Exploit? I think there is a new exploit out. Today on one of my servers someone was able to download my server.cfg file and was able to upload his own motd file with a link to a virus download. I checked my cstrike folder and it had server.cfg.ZTMP Anyone else experience this? Or is this an old exploit and what protection is there from it? _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: https://list.valvesoftware.com/cgi-bin/mailman/listinfo/hlds_linux
