RE: [hlds] VALVe hide our sv_downloadurl paths!
It looks like he made a typo, try replacing SetEnfIf with SetEnvIf. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mikee Sent: Tuesday, June 07, 2005 3:47 AM To: hlds@list.valvesoftware.com Subject: Re: [hlds] VALVe hide our sv_downloadurl paths! I tried Simon's guide and put this in an .htaccess file in the /hlds_downloads/ folder on my website (that contains the /maps/ folder for download), but it did not work when I joined the server, I still got the same player missing map, disconnected me. SetEnfIf Referer ^hl2://67\.18\.241\.75 MY_SERVER=1 Order Allow,Deny Allow from env=MY_SERVER Deny from all If I remove the .htaccess file, I can download the missing map and join the server. My server is at 67.18.241.75 ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
RE: [hlds] HL/HL2 HTML Motd Allows Execution of .NET Applications
I just checked the .NET Configuration tool and it seems that internet zone applications have the right to connect back to the site where the file originated from. So, for instance a file located at www.example.org/blah.exe should be able to connect to www.example.org/upload.php and send data back. I'll probably whip something up to test it later on anyway. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Andrew Simpson Sent: Tuesday, June 07, 2005 11:42 AM To: hlds@list.valvesoftware.com Subject: RE: [hlds] HL/HL2 HTML Motd Allows Execution of .NET Applications Does the default Internet security settings actually allow for the opening of sockets? Just checking the .net SDK says that you need SocketPermission to open a Socket, and WebPermission to make a HTTP request, and I'm not sure either of those are granted under the Internet permission set. Actually, just checking the .net configuration tool, I don't think either of those are granted by default, but I haven't tested it. It's a bit hard to phish someone's details if there's no way to actually send them to the phisher. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
RE: [hlds] VALVe hide our sv_downloadurl paths!
I may be wrong but, I believe that the HL/HL2 sends a header with the server's IP address in it. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mikee Sent: Monday, June 06, 2005 6:29 PM To: hlds@list.valvesoftware.com Subject: Re: [hlds] VALVe hide our sv_downloadurl paths! How would you use the .htaccess to only allow folder access from a given server IP, since it is basically a web url based access? It is amazing what can be done with that file, so I don't doubt you. Posting how to customize it for a given folder and server IP would be handy...I'm just wondering if a player doesn't need to have their own player IP to access it however...which would open it back up to everyone. - Original Message - From: Dagok [EMAIL PROTECTED] To: hlds@list.valvesoftware.com Sent: Monday, June 06, 2005 5:52 PM Subject: [hlds] VALVe hide our sv_downloadurl paths! This is a multi-part message in MIME format. -- [ Picked text/plain from multipart/alternative ] This was posted on the Source DS (Windows) team forums. POsting it here in hopes that it will get directly to Valve. ok a little problem is people being able to just type sv_downloadurl in console and steal our links and use it on there server stealing our bandwith. I think valve should hide this when someone types it Yes there are ways for people to setup htaccess etc so only they can use the folder. But it sure would be nice if typing sv_downloadurl in the console would return ** like sv_password and rcon_password do. Can you please pass this along Alfred? thanks, Dagok -- ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
[hlds] HL/HL2 HTML Motd Allows Execution of .NET Applications
This is a multi-part message in MIME format. -- [ Picked text/plain from multipart/alternative ] There's happens to be a feature in IE that allows .NET application to launch from the browser without any user intervention, since HL uses the Internet Explorer control to render HTML it is affected by this as well. Applications that are launched using this method are run within a secure sandbox to prevent access to the system, and other security risks. The biggest problem that I can imagine is that someone could possibly create an application that looks identical to the steam login screen and use it as a way of phishing accounts. I have temporarily set up a server at 64.92.174.226:27015 to demonstrate this. If you connect and have .NET 1.1 installed the application located at http://64.92.174.226/hl/test.exe (which is totally harmless) should launch. -- ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
RE: [hlds] Odd lag problem
Running mplayer2 with an avi loaded helps. Also increase fps_max, or sv_maxfps I think it might have been. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [AoL]Renshai Sent: Tuesday, February 08, 2005 5:42 PM To: hlds@list.valvesoftware.com Subject: Re: [hlds] Odd lag problem I seem to remember a way to speed up your FPS on the server was to open a seperate application affecting video (i.e. a flash animation). I dunno, trying to search my internal memory, but old age is getting in the way and clouding it up. Anyone else remember something about that, or is it just me getting old? :) I guess my point is, could it be related to that same video issue? especially if the pings go down, WHEN you connect? Also, have you checked out the performance on the box when the pings go up/down? Once again, old age getting in the way here, and I don't remember if you said you were or not. ;) Thanks, -Ren Ill try explain the situation better. Server runs a hlds procces in the background. When i log in from either my pc, or any other server with vnc/radmin/remote desktop the pings in the cs server are absolutely wonder full. But as soon as i close the VNC/radmin/remote (what ever u logon with) connection the server starts lagging 1500 pings, then timeouts, then runs fine, then lag, time outs etc. On the EXACT moment i log in with one of the apps again, the pings go real low again. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
RE: [hlds] sys_ticrate on win2k3
Run mplayer2.exe and play an avi file. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of DLinkOZ Sent: Friday, August 27, 2004 7:52 PM To: [EMAIL PROTECTED] Subject: [hlds] sys_ticrate on win2k3 Quick question, archives show this mentioned but not answered. On my win2k3 box, sys_ticrate does nothing for 3 instances. If one instance runs the hlbooster MM plugin, then all instances can use their own sys_ticrate properly (2 without the hlbooster plugin). However, a server that uses 1-5% of the cpu at 16 players normally jumps to approximately 60% with an fps of about 125 using this method. Is there some way to get the sys_ticrate funcitoning without hlbooster? ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds