RCON login attack? - Printable Version
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Scripting Help (https://sampforum.blast.hk/forumdisplay.php?fid=12)
+--- Thread: RCON login attack? (/showthread.php?tid=363922)
+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Scripting and Plugins (https://sampforum.blast.hk/forumdisplay.php?fid=8)
+--- Forum: Scripting Help (https://sampforum.blast.hk/forumdisplay.php?fid=12)
+--- Thread: RCON login attack? (/showthread.php?tid=363922)
RCON login attack? - Tee - 29.07.2012
Here's it: http://pastebin.com/raw.php?i=UcbEK4Zn
Am going to ban the IP but can anyone say what it is?
Re: RCON login attack? - SnG.Scot_MisCuDI - 29.07.2012
Most likely a hacker/bot spamming rcon login trying to crash server or something
Re: RCON login attack? - Tee - 29.07.2012
It's not coming from inside the server, it's external...
And do you see the speed?! Like 7 attempts per second...
Re: RCON login attack? - ReneG - 29.07.2012
Someone was trying to brute force your rcon password.
Re: RCON login attack? - Tee - 29.07.2012
I figured it was a brute force, but that's supposed to take years. My password is mixed with all kind of characters.
So right now, my only problem would be the spamming of my console, right? -_-
Re: RCON login attack? - ReneG - 29.07.2012
You could disable rcon by 'rcon 0' in your server cfg
You could basically script all of the commands.
Re: RCON login attack? - Skyrise - 29.07.2012
If someone were to manage to get your RCON, you can script in something that will kick on rcon login. You can also make it for admins only and such, and if they are not one it kicks them. All depends on your script. Also, the person who is brute forcing you is most likely using multiples to do it. Use all kinds of case and numbers. Make it very long.