1. SA-MP Forums Archive
  2. SA-MP Server
  3. Server Support

Threaded Mode
RCON Hacking Bot or something..
Luke_James
Huge Clucker
****
Posts: 399
Threads: 77
Joined: Jun 2011
Reputation: 0
#1

30.08.2012, 13:16
There's some automated thing attempting to crack our RCON password. I'm not worried about them getting it, as the password is 100 characters wrong and changes every day, but it's just a nuisance to see "<IP> failed RCON login attempt" every second when I load my server log. I know exactly who's doing it, their names, emails etc, I know their server and who hosts it. is there any way to get them into some sort of trouble for this?
Find
Reply
HyDrAtIc
High-roller
*****
Posts: 1,189
Threads: 51
Joined: Jan 2012
Reputation: 0
#2

30.08.2012, 13:25
Yeah report thier IP and Server IP to any of the moderators or Kalcor it's the best way to get them banned from Master Servers
Find
Reply
Emmet_
Unregistered
 
#3

30.08.2012, 13:28
1) You can rangeban their IP by typing the first two columns of their IP following the '*' character (without the quotes).

Example:
Код:
/banip OR /rcon banip 69.158.*
2) Or you can paste the snippet below into your gamemode and it will stop the failed login attempts.
pawn Код:
public OnRconLoginAttempt(ip[], password[], success)
{
    if (!success)
    {
        new szString[16 + 8];
        format(szString, sizeof(szString), "banip %s", ip);
        SendRconCommand(szString);
    }
    return 1;
}
Reply
Luke_James
Huge Clucker
****
Posts: 399
Threads: 77
Joined: Jun 2011
Reputation: 0
#4

30.08.2012, 13:40
RCON IP banning didn't work..

Quote:

[13:53:27] RCON (In-Game): Player [Luke_Wilkinson] sent command: banip 196.205.*
[13:53:27] BAD RCON ATTEMPT BY: 196.205.177.251
Find
Reply
Emmet_
Unregistered
 
#5

30.08.2012, 13:43
Quote:
Originally Posted by Luke_James
Посмотреть сообщение
RCON IP banning didn't work..
Oh, I forgot to tell you that even if someone is banned, they can still try to log in to RCON by using a simple .bat script.

However, it says 'BAD RCON ATTEMPT', so the player is not logged into RCON, yet they can do /rcon blablabla and such.

I don't think there's a solution, sorry.
Reply
Luke_James
Huge Clucker
****
Posts: 399
Threads: 77
Joined: Jun 2011
Reputation: 0
#6

30.08.2012, 13:45
Is it just trying random passwords?
Find
Reply
C00K13M0N$73R
Big Clucker
***
Posts: 189
Threads: 11
Joined: Aug 2012
Reputation: 0
#7

30.08.2012, 13:45
Try

rcon 0

in your server.cfg. This disables RCON.
Find
Reply
ColorHost-Kevin
High-roller
*****
Posts: 1,600
Threads: 3
Joined: May 2011
Reputation: 0
#8

30.08.2012, 14:01
I am assuming he still wants RCON active. Sadly i am not sure if there is a solution out there to disable that in your logs.
Find
Reply
linuxthefish
High-roller
*****
Posts: 2,857
Threads: 62
Joined: Dec 2010
Reputation: 0
#9

30.08.2012, 14:03
Kill it with fire, and turn rcon off. It's useless and outdated.
Find
Reply
Luke_James
Huge Clucker
****
Posts: 399
Threads: 77
Joined: Jun 2011
Reputation: 0
#10

30.08.2012, 14:15
Nope, I have no use for RCON, it just causes trouble. Didn't know you could turn it off though, thanks.
Find
Reply
« Next Oldest | Next Newest »


Forum Jump:


Users browsing this thread: 2 Guest(s)
  1. SA-MP Forums Archive
  2. SA-MP Server
  3. Server Support