[hlds_linux] RES: Anyone know how it works?
lol it seems video edition. Now days the video producers are using a lot of graphical features on their frag movies. - Marlon Almeida ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
[hlds_linux] source tv memory leak
Hi: We already know that theres a memory leak in source tv that eat the whole computer memory and the only way to fix it is to restart the servers at least once a day. Is Valve aware of this?, if Jason or Alfred are reading this post, theres plans to fix it? Best regards ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] RES: Anyone know how it works?
cs16 don't broadcast players heath. so it's server plugin(for streaming data) and overlay client program 2011/2/14 Marlon Almeida | CGBR mar...@cybergamesbrasil.com lol it seems video edition. Now days the video producers are using a lot of graphical features on their frag movies. - Marlon Almeida ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] source tv memory leak
Its been posted enough, just doesn't seem to be a priority unfortunately :( Regards Steve - Original Message - From: Andres Pozos javato...@yahoo.es To: hlds_linux@list.valvesoftware.com Sent: Monday, February 14, 2011 11:04 AM Subject: [hlds_linux] source tv memory leak Hi: We already know that theres a memory leak in source tv that eat the whole computer memory and the only way to fix it is to restart the servers at least once a day. Is Valve aware of this?, if Jason or Alfred are reading this post, theres plans to fix it? Best regards ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux This e.mail is private and confidential between Multiplay (UK) Ltd. and the person or entity to whom it is addressed. In the event of misdirection, the recipient is prohibited from using, copying, printing or otherwise disseminating it or any information contained in it. In the event of misdirection, illegible or incomplete transmission please telephone +44 845 868 1337 or return the E.mail to postmas...@multiplay.co.uk. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
Re: [hlds_linux] Prevent Linux-Server to execute plugins from outside
Offtopc: It's possible but complicated. I've tried it with makejail in conjunction with schroot (not chroot). It works and you can load normal plugins, but can't execute commands like wget or something else. Better for security. For those people who don't understand the risk of gameservers, here is a funny plugin: http://forums.eventscripts.com/viewtopic.php?t=3392 I think after the last updates this plugins doesn't work anymore for Win/Linux. For Linux there isn't a binary which supports the orangebox on linux. Ontopic: Onother solution can be, that valve make some new switches for the binary: -noplugins (disables the loading of plugins completely) -noplugins_load_after_start (disable plugin_load, removes that command, the code and makes it impossible for other plugins to load new plugins, but allows to load plugins via commandline) -load_plugin ../cstrike/plugin.so (loads a plugin via commandline) The easiest solution I've already posted: alias plugin_print Is there any way to delete an alisas? For the silliy Protection Mode the most providers forbid the upload of files. So there is no way to create a vdf-file which loads plugins at the server-starup. For two providers we have already published how to load ServerSideHacks in Protection Mode. It's very funny to see the reactions :-D http://www.esl.eu/de/css/forum/43/784/892913/ (sorry, only in german) This is a bug in thier concept and i think some people on this mailing list doesn't know if thier server is proof or not. In fact the ESL is a big league whith thousands of player who want's a protected server (don't think about the sense of this). You can't ignore them. Maybe there is only one percent who uses this kind of hacks. But when your customers tells you to cancel the contract, you will think about it. Grettings DeaD_EyE sourceserver.info 2011/1/21 Kacper Nowak ad...@gameranger.pl: It can be done by using chroot in server dir. Some startup script modification is required, but its simple. regards KN Its not fine :-D There are much more problems, which come out when the permissions aren't correct. Maybe running servers own with one user is ok. For providers it will make sense to create for every customer/server one user. I know there are some provider who handle it with a single user. It isn't easy to tell a big old script, which have 1000 of functions to work with users after a little code change. So they cant change it without spend much time for coding. 2011/1/21 Saul Rennisonsaul.renni...@gmail.com: I thought of the rcon issue previously but I forgot to bring it up. Massive problem that some people on this list thing that all customers on one user is fine. On Friday, 21 January 2011, Joonas Lehtolahti joonas.lehtola...@lehtopuu.fi wrote: The point isn't really that plugins can be loaded from elsewhere. No, that isn't needed, but the real problem is bigger than that. The srcds process has as much access as the user/group it is running as. If a user can upload a plugin to be used on that server, that plugin also has all the privileges as the host srcds process has. That is, it can go for example check the rcon_password variables from config files of other customers' installations if they are installed with the same user account. That as a simple example. If a customer should not be able to access the files of other customer, then their processes must be run with different local user accounts. On Fri, 21 Jan 2011 18:48:18 +0200, Andre Müllergbs.dead...@googlemail.com wrote: You all think it's ok, when the server can load plugins from anywhere. Do you need this? Tell me why. In example one provider have one user for all gameservers on a host. Every customer gets chrooted FTP-Access (virtual users) to his own serverdirectory. So he/she can't access to the other directories. I know you like it more complex and want for everey gameserver his own user. Nice, safty first. Then is the next problem to get the screen for an different user to his gameserver for debuging. Maybe sourcemod hangs or something else. When you like hacks, you can execute as root: chmod 666 `tty`; su -c screen -r css_27015 customer123 A little nice hack. I know you can use shared screen sessions. You like more complexity. Third example: You are using Teklab and your customer have two gameservers. So the customer can access to his two gameservers, when they are on the same host. In this situation the customer can load plugins from his second gameserver. There are many mini hosters who uses this. You really want to tell me, that you ever have loaded Plugins from outside the serverdirectory? plugin_load /home/plugins/zBlock/zblock I don't have tested it until yet, where the server after this writes the logfiles for zblock. Maybe in your addons-directory or outside in /home/plugins/zBlock/zb_logs/? I think its easier and safer to use for this way symlinks. The safest way is, to block only loading
Re: [hlds_linux] Prevent Linux-Server to execute plugins from outside
The easiest way to prevent such an occurrence is to make a security plugin that would prevent the command plugin_load from ever being used. Its actually fairly simple to do. 2011/2/14 Andre Müller gbs.dead...@googlemail.com: Offtopc: It's possible but complicated. I've tried it with makejail in conjunction with schroot (not chroot). It works and you can load normal plugins, but can't execute commands like wget or something else. Better for security. For those people who don't understand the risk of gameservers, here is a funny plugin: http://forums.eventscripts.com/viewtopic.php?t=3392 I think after the last updates this plugins doesn't work anymore for Win/Linux. For Linux there isn't a binary which supports the orangebox on linux. Ontopic: Onother solution can be, that valve make some new switches for the binary: -noplugins (disables the loading of plugins completely) -noplugins_load_after_start (disable plugin_load, removes that command, the code and makes it impossible for other plugins to load new plugins, but allows to load plugins via commandline) -load_plugin ../cstrike/plugin.so (loads a plugin via commandline) The easiest solution I've already posted: alias plugin_print Is there any way to delete an alisas? For the silliy Protection Mode the most providers forbid the upload of files. So there is no way to create a vdf-file which loads plugins at the server-starup. For two providers we have already published how to load ServerSideHacks in Protection Mode. It's very funny to see the reactions :-D http://www.esl.eu/de/css/forum/43/784/892913/ (sorry, only in german) This is a bug in thier concept and i think some people on this mailing list doesn't know if thier server is proof or not. In fact the ESL is a big league whith thousands of player who want's a protected server (don't think about the sense of this). You can't ignore them. Maybe there is only one percent who uses this kind of hacks. But when your customers tells you to cancel the contract, you will think about it. Grettings DeaD_EyE sourceserver.info 2011/1/21 Kacper Nowak ad...@gameranger.pl: It can be done by using chroot in server dir. Some startup script modification is required, but its simple. regards KN Its not fine :-D There are much more problems, which come out when the permissions aren't correct. Maybe running servers own with one user is ok. For providers it will make sense to create for every customer/server one user. I know there are some provider who handle it with a single user. It isn't easy to tell a big old script, which have 1000 of functions to work with users after a little code change. So they cant change it without spend much time for coding. 2011/1/21 Saul Rennisonsaul.renni...@gmail.com: I thought of the rcon issue previously but I forgot to bring it up. Massive problem that some people on this list thing that all customers on one user is fine. On Friday, 21 January 2011, Joonas Lehtolahti joonas.lehtola...@lehtopuu.fi wrote: The point isn't really that plugins can be loaded from elsewhere. No, that isn't needed, but the real problem is bigger than that. The srcds process has as much access as the user/group it is running as. If a user can upload a plugin to be used on that server, that plugin also has all the privileges as the host srcds process has. That is, it can go for example check the rcon_password variables from config files of other customers' installations if they are installed with the same user account. That as a simple example. If a customer should not be able to access the files of other customer, then their processes must be run with different local user accounts. On Fri, 21 Jan 2011 18:48:18 +0200, Andre Müllergbs.dead...@googlemail.com wrote: You all think it's ok, when the server can load plugins from anywhere. Do you need this? Tell me why. In example one provider have one user for all gameservers on a host. Every customer gets chrooted FTP-Access (virtual users) to his own serverdirectory. So he/she can't access to the other directories. I know you like it more complex and want for everey gameserver his own user. Nice, safty first. Then is the next problem to get the screen for an different user to his gameserver for debuging. Maybe sourcemod hangs or something else. When you like hacks, you can execute as root: chmod 666 `tty`; su -c screen -r css_27015 customer123 A little nice hack. I know you can use shared screen sessions. You like more complexity. Third example: You are using Teklab and your customer have two gameservers. So the customer can access to his two gameservers, when they are on the same host. In this situation the customer can load plugins from his second gameserver. There are many mini hosters who uses this. You really want to tell me, that you ever have loaded Plugins from outside the serverdirectory? plugin_load /home/plugins/zBlock/zblock I don't have
Re: [hlds_linux] Prevent Linux-Server to execute plugins from outside
Yes, this can also be a solution. Can you write a little VSP for this? Maybe whith a whitelist combinied with hash values of the allowd plugins and implemt a command for Players to show loaded VSP and if the hash values are ok? The rest is the job of the providers. Greetings DeaD_EyE 2011/2/14 Kigen theki...@gmail.com: The easiest way to prevent such an occurrence is to make a security plugin that would prevent the command plugin_load from ever being used. Its actually fairly simple to do. 2011/2/14 Andre Müller gbs.dead...@googlemail.com: Offtopc: It's possible but complicated. I've tried it with makejail in conjunction with schroot (not chroot). It works and you can load normal plugins, but can't execute commands like wget or something else. Better for security. For those people who don't understand the risk of gameservers, here is a funny plugin: http://forums.eventscripts.com/viewtopic.php?t=3392 I think after the last updates this plugins doesn't work anymore for Win/Linux. For Linux there isn't a binary which supports the orangebox on linux. Ontopic: Onother solution can be, that valve make some new switches for the binary: -noplugins (disables the loading of plugins completely) -noplugins_load_after_start (disable plugin_load, removes that command, the code and makes it impossible for other plugins to load new plugins, but allows to load plugins via commandline) -load_plugin ../cstrike/plugin.so (loads a plugin via commandline) The easiest solution I've already posted: alias plugin_print Is there any way to delete an alisas? For the silliy Protection Mode the most providers forbid the upload of files. So there is no way to create a vdf-file which loads plugins at the server-starup. For two providers we have already published how to load ServerSideHacks in Protection Mode. It's very funny to see the reactions :-D http://www.esl.eu/de/css/forum/43/784/892913/ (sorry, only in german) This is a bug in thier concept and i think some people on this mailing list doesn't know if thier server is proof or not. In fact the ESL is a big league whith thousands of player who want's a protected server (don't think about the sense of this). You can't ignore them. Maybe there is only one percent who uses this kind of hacks. But when your customers tells you to cancel the contract, you will think about it. Grettings DeaD_EyE sourceserver.info 2011/1/21 Kacper Nowak ad...@gameranger.pl: It can be done by using chroot in server dir. Some startup script modification is required, but its simple. regards KN Its not fine :-D There are much more problems, which come out when the permissions aren't correct. Maybe running servers own with one user is ok. For providers it will make sense to create for every customer/server one user. I know there are some provider who handle it with a single user. It isn't easy to tell a big old script, which have 1000 of functions to work with users after a little code change. So they cant change it without spend much time for coding. 2011/1/21 Saul Rennisonsaul.renni...@gmail.com: I thought of the rcon issue previously but I forgot to bring it up. Massive problem that some people on this list thing that all customers on one user is fine. On Friday, 21 January 2011, Joonas Lehtolahti joonas.lehtola...@lehtopuu.fi wrote: The point isn't really that plugins can be loaded from elsewhere. No, that isn't needed, but the real problem is bigger than that. The srcds process has as much access as the user/group it is running as. If a user can upload a plugin to be used on that server, that plugin also has all the privileges as the host srcds process has. That is, it can go for example check the rcon_password variables from config files of other customers' installations if they are installed with the same user account. That as a simple example. If a customer should not be able to access the files of other customer, then their processes must be run with different local user accounts. On Fri, 21 Jan 2011 18:48:18 +0200, Andre Müllergbs.dead...@googlemail.com wrote: You all think it's ok, when the server can load plugins from anywhere. Do you need this? Tell me why. In example one provider have one user for all gameservers on a host. Every customer gets chrooted FTP-Access (virtual users) to his own serverdirectory. So he/she can't access to the other directories. I know you like it more complex and want for everey gameserver his own user. Nice, safty first. Then is the next problem to get the screen for an different user to his gameserver for debuging. Maybe sourcemod hangs or something else. When you like hacks, you can execute as root: chmod 666 `tty`; su -c screen -r css_27015 customer123 A little nice hack. I know you can use shared screen sessions. You like more complexity. Third example: You are using Teklab and your customer have two gameservers. So the customer can access to
Re: [hlds_linux] logscripts hlds/srcds logs
Hi, I've written a little tool, wich looks for the timestamp of files L???.log and moves the files into the directories (-mm-dd). Mybe it can help you. I think the python code works also under windows. Usage: ./log_sorter.py /path/to/logs Code: #!/usr/bin/python from glob import glob from shutil import move from datetime import datetime from os import path, mkdir, stat import sys def usage(): print Please run the Programm with %s /path/to/srcds_logfiles % sys.argv[0] sys.exit() if len(sys.argv) = 1: usage() if path.isdir(sys.argv[1]): for log in glob('L???.log'): log_date=datetime.fromtimestamp(stat(log)[8]) dirname=datetime.strftime(log_date,'%Y-%m-%d') if not path.isdir(dirname) and not path.isfile(dirname): mkdir(dirname) move(log,dirname) else: usage() I hope there is no error inside. I've tested it with some Logfiles from my server. Greetings DeaD_EyE sourceserver.info 2011/2/14 Harry Strongburg harry.h...@harry.lu: On Sun, Feb 13, 2011 at 10:15:09PM +0100, Rikard Bremark wrote: Hi! Anyone here that has any log-scripts for their hlds/srcds setups that moves yesterdays logs to a folder with yesterdays date? Windows/Unix I personally think grep is nice for sorthing them on-request. If you want it to run once a day, crontab would probably work fine. crontab -e: 0 0 * * * cd /path/to/logs/ mkdir `date +%F` mv *.log `date +%F` Make sure crond is running. That will run daily at midnight system time and move all logs that were in that folder on that day into the folder it made (i.e. if you ran that command right now, you would probably get a folder called 2011-02-14). I am unsure if srcds properly handles when a log file gets moved or renamed, so you might want to be aware of that. Don't have time to check right now. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
[hlds_linux] Team Fortress 2 Update Available
Required updates for Team Fortress 2 are now available. The specific changes include: Source Engine Changes (CS:S, DoD:S, TF2, HL2:DM) - Updated the version check when connecting to a server to indicated whether the server's version of the game is older or newer than the client's version when they're different. Team Fortress 2 - Made Bill's Hat always tradable. - Fixed a client crash caused by malformed custom client spray. - Added a Red team skin to the Fists of Steel. - Fixed melee attacks not destroying remote detonation pipes. - Added the Rimmed Raincatcher to the list of Unusual hats. - Fixed the Stickybomb Launcher viewmodel sleeves using the wrong team colors for team Blue. - Fixed players getting set bonuses applied on tournament servers when the server is restricting the player's weapons using the item_whitelist. - Updated CP_Thundermountain - Updated the final stage to have the train begin receding after 15 seconds. - Reduced the cart speed on the final two ramps in the final stage to 1/2 normal speed. Jason ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
[hlds_linux] Hud Text for CS:S.
Hi again. Is there any reason in specific why HudText has been intentionally removed from Counter-Strike: Source? I mean, it's in every other Source game, and it's only there to provide functionality for mod developers. However, Counter-Strike: Source has been lacking it for years. I know at least one person has changed the file, and sent it to a Valve employee. This said employee said the file (ClientScheme.res at the time) would be merged, and pushed. However, (apparently) just as it was about to go live, the file was reverted and communication was severed. Could we please get this added? I'd like to use it on my current project for displaying who's the VIP (if the clients wish this, toggle-able of course). I could also keep who the VIP's information (Health, Armour, Ammo, etc) there for the Counter-Terrorist Team. https://forums.alliedmods.net/showthread.php?t=147500 is the plugin I'm talking about (if it really matters at all). I know the Zombie:Reloaded project, along with many others would love to use it in an effort to display information to clients. HintText isn't too great. CenterText is just down right intrusive for displaying information. HudHint is decent ( https://forums.alliedmods.net/showthread.php?p=1271439 , https://forums.alliedmods.net/showthread.php?p=1303007 ). However, without being able to move it around, or creating multiple messages with it. It's sadly not doing much for us. The limit of 254bytes per message also prevents us from displaying a decent amount of information, which is another let down. I do know this has been brought up multiple times on the list, on the Steam Forums, everywhere. No one quite understands why we're discouraged from displaying information to clients, and or to our own Server Admins. This is why I'm bringing it up again. Please allow us to use this feature which is already built into the engine. Thank you, Kyle Sanderson. ___ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux