Fix some possible server attack&hacking? - Printable Version

+- SA-MP Forums Archive (https://sampforum.blast.hk)
+-- Forum: SA-MP Server (https://sampforum.blast.hk/forumdisplay.php?fid=6)
+--- Forum: Server Support (https://sampforum.blast.hk/forumdisplay.php?fid=19)
+--- Thread: Fix some possible server attack&hacking? (/showthread.php?tid=620646)

---

Fix some possible server attack&hacking? - imrobert - 01.11.2016

Hello everybody.
In the past, i have some samp servers. 30% of them was hacked by sqli injection
Now, im working at a new gamemode.
I already fixed sql injection with escape string, but a guy tell me he can hack my server when he want.
I have a panel of my gamemode, but it's not problem because it's protected (anti sqli, anti shell, etc).
Can u guys can help me with some ideas how to protect server? He told me at the opening will ban all my players, how he can do that?

---

Re: Fix some possible server attack&hacking? - Sithis - 01.11.2016

Make sure to have proper logging. In case of an attack, you'll at least be able to determine how it was carried out.

---

Re: Fix some possible server attack&hacking? - imrobert - 01.11.2016

I already made a pin system.
I'm single person who have acces at the panel informations, no one else.
I dont have admins yet, and i dont have at opening, only me.
- How cand i remove permanently rcon ?
- How can i search of backdoors commands?

---

Re: Fix some possible server attack&hacking? - ISmokezU - 01.11.2016

You need a forloop OnRconLoginAttempt doesn't have a playerid parameter,also i'll advice add chances like 3/3 chances then you get kick in the case of a wrong spelling you'll get kick.

---