Server hacker

etpro IAC: 1 GUID [2A6976F9001765B1284CA5FC69615BFC6C723314] [Jairpie]
01:39.48 ClientUserinfoChanged: 1 n\Jairpie\t\3\c\0\r\0\m\0000000\s\0000000\dn\\dr\0\w\0\lw\0\sw\0\mu\0\ref\0\p\0\ss\0\sc\0\tv\0\lc\1
01:39.48 ClientUserinfoChanged: 1 n\Jairpie\t\2\c\0\r\0\m\0000000\s\0000000\dn\\dr\0\w\0\lw\8\sw\7\mu\0\ref\0\p\0\ss\0\sc\0\tv\0\lc\1
01:39.48 ClientUserinfoChanged: 1 n\Jairpie\t\2\c\1\r\0\m\0000000\s\0000000\dn\\dr\0\w\8\lw\8\sw\7\mu\0\ref\0\p\0\ss\0\sc\0\tv\0\lc\1
01:39.48 ClientBegin: 1
01:39.50 Vote Passed: Change map to test
rconpassword gerpii
01:39.54 WeaponStats: 0 0 0 0 0 0 0 0 0
01:39.54 ClientDisconnect: 0
01:39.54 Vote Passed: Swap Teams

GUID [2A6976F9001765B1284CA5FC69615BFC6C723314] [Jairpie]
N1 tard changed rconpass with hack and ref passes
How could you change an rconpass with a hack? Anything related to rcon (admin) is serverside. Probably that old q3 bug again?
u could call it a hack, u need to change ur ET.exe for it
its a coded .exe by adawolfa, exploiting a q3 engine bug indeed.
if the vote passes the rcon is changed to the desired password.

this is detected by pb, and as far as i know, the new combinedfixes.lua fixed this
bypassed again.
most people use vote bug, but on YCN servers people can steal files from server ftp
don't now really
i can see in log he disconnects after a war
he connects again
and votes map test with rconpass after it
01:39.50 Vote Passed: Change map to test
rconpassword gerpii
I played against some kids from USA who did the same, except they didn't change the password. They first hacked the ref pw and kicked us and then they banned me from my own server with rcons..
such peopel should het banned on crossfire / clanbase as well
on crossfire yes but clanbase or ESL will be hard.
Theres a qmm fix by John from YCN which fixes this afaik.

And nice only getting his ETPRO guid, do you know these mean shit these days? :p
that fix doesnt stop people from stealing files from server ftp, if rcon passwords are in server.cfg some people can still see it (YCN servers)
Eh, lol, that was fixed in 2.60b ?? :P
And still, this was done with the callvote bug, the qmm plugin fixes that.
nope, works on every version

e: it has nothing to do with those vote bug, on ycn there seems to be a bug that some guys can easily steal every file from server ftp with some self wrote thingy. i think the guy who can do it belongs to the hupo/pale bunch
also a q3 bug, if cl_allowdownload is enabled, clients can download the server.cfg from the ftp, tho renaming ur server.cfg will fix a lot, since u need to guess for the .cfg name
and pale didnt invent this, but some dude called aluigi, with his q3 bug/exploit forum
All you need is ref access to be able to use this exploit..
make yourself ref, and use the callvote bug to change the rconpassword.
The code for it can be found on various sites, even the developers have been given the code to make it harmless, but they keep ignoring.
Back to top