To server admins: hacking on JgdKo server. Can be elsewhere...

  • Two Factor Authentication is now available on BeyondUnreal Forums. To configure it, visit your Profile and look for the "Two Step Verification" option on the left side. We can send codes via email (may be slower) or you can set up any TOTP Authenticator app on your phone (Authy, Google Authenticator, etc) to deliver codes. It is highly recommended that you configure this to keep your account safe.
MadWoffen

MadWoffen

Soon! ©
May 27, 2001
2,593
2
38
53
Belgium
www.bifff.net
This night, 1st of june, someone hacked the JgdKo server to make silly things apparently but worse could be expected. He used some kind of admin rights to type different sentences with no senses that at first looked like some bug.
Some examples (it was on DTAS game):

- "defenders have been eliminated" (when a round started)
- "you have left server"
and some other silly things.

That makes me remember of a certain Deleran who used the same tricks and was/is a confirmed bot user.

I highly suspect the player under the name of Barry Manalow to be at the origin of the hacking. When I reported it to Deathwalker and he said he was checking, the guy left on short notice.

I leave you with 2 pics, one with one example of weird thing and another with the players present that night.

Cya
 

Attachments

  • weird1.jpg
    weird1.jpg
    121.6 KB · Views: 82
  • weird2.jpg
    weird2.jpg
    147 KB · Views: 77
Derelan

Derelan

Tracer Bullet
Jul 29, 2002
2,630
0
36
Toronto, Ontario
Visit site
hahahaha :lol:
I don't know who did it, but I can tell you how to easily stop it. White text and blue text abilities are easily hacked by the UTMenu.u file, just make sure your server checks the filesize of this file on the client, and you're set.
 
MadWoffen

MadWoffen

Soon! ©
May 27, 2001
2,593
2
38
53
Belgium
www.bifff.net
There was no blue text here, just "admin" text but without the id or "admin".

Thx for the info Shan but this was not the only thing. I never saw a bug that told me I was leaving the server. There was other texts as well that were incongruous. Someone clearly hacked the server.
 
ant75

ant75

aaaaaaaaaaaaaaaaa
Jan 11, 2001
1,050
0
36
Paris
The weirdest message was when someone complained about lag, and just after that there was a white message "lag left the game". I don't know much about admin stuff, but couldn't someone send a message just using the console, without being logged as a player ?
 
AlmostAlive

AlmostAlive

Active Member
Jun 12, 2001
1,114
0
36
Norway
Visit site
It's not a bug, it's a hack, just like the one Derelan used on the AFA server. And no, there's no need to tell people what it's called. Soon we'll have every 12 year old lamer googleing for it.

Someone please post the f*cker's IP on the private admin forums.
 
Cleeus[JgKdo]

Cleeus[JgKdo]

because respawns suck
Jun 8, 2002
798
0
0
Germany
www.cleeus.de
1. *plonk*
2. Don't panic. ;) It by far doesn't mean that the whole server is hacked, it just means that someone has a UT-cheat. Hacking a server means opening a remote shell and doing alot more things then just displaying text.
 
shan

shan

www.clanterritory.com
Jan 29, 2000
1,011
0
0
53
Portland, OR
www.clanterritory.com
All someone has to do to send white text messages that look like game or admin messages is log in as a Spectator and type in Say messages. Have you been able to verify that this is not the case?

BTW, I am not arguing that the server was not hacked or that a cheat was not used, just want to get as close to the bottom as possible, in case it happens on my server.
 
MadWoffen

MadWoffen

Soon! ©
May 27, 2001
2,593
2
38
53
Belgium
www.bifff.net
shan said:
All someone has to do to send white text messages that look like game or admin messages is log in as a Spectator and type in Say messages. Have you been able to verify that this is not the case?

BTW, I am not arguing that the server was not hacked or that a cheat was not used, just want to get as close to the bottom as possible, in case it happens on my server.
Click to expand...


That theory doesn't work if you take in account these little tricks stopped once I informed a JgdKo team member and that he replied he would check it immediatly. Less than 15 seconds later, that Barry Manalow left the server. If it was a spectator, he would have continued just for the fun or told "hey, it's me".

Obviously the guy was using a pseudo since I never saw that player nick before yet he seemed to know well how DTAS was working... So yes, I suspect someone and I wish there is a way to compare his IP or sub IP to others players of the day to have an idea on who it might be.
 
Last edited:
You must log in or register to reply here.
Top Bottom