[saffierr]

Hey there folks of Samp.

This is a simple and short tutorial on how to catch a player that's attempting to login to RCON.
I seriously hope, you won't just copy+paste everything, but rather read every explanation and write it yourself instead,
Only then, this tutorial has reached its clue for you.

Alright, let's start creating variables first.

Create this variable outside a callback somewhere ontop of your script

PHP код:

new RconAttempt[MAX_PLAYERS]; // This variable will hold the amount of attempts the player has 


We will create a maximum amount of attempts for the player to attempt to login to RCON
I personally would go for 2 attempts, because let's say you're the real owner and you per acidentally mistyped the rcon's password.

PHP код:

#define MAX_RCONATTEMPTS 2
// This sets the maximum of attempts  to 2 


Alright, these are basically the only variables we need.

Let's jump to the following callback in our script.

PHP код:

public OnRconLoginAttempt(ip[], password[], success) 


We will check if the player that tries to login has failed to login, because only then we will increase the 'RconAttempt' variable.

PHP код:

if(!success) // this checks if the player didn't succeed to login
{
    new string[128], pIP[32], pname[MAX_PLAYER_NAME]; // This will hold the message we are going to send to all players
    // We will now have to loop through all the online players because 'playerid' isn't usable in this callback.
    for(new i = 0, j = GetPlayerPoolSize(); i <= j; i++) // This is the loop, 'GetPlayerPoolSize' checks the highest ID IG, hence I'd rather use that loop instead of MAX_PLAYERS;
    {
        if(IsPlayerConnected(i)) // Check if the player is even connected
        {
            GetPlayerName(i, pname, MAX_PLAYER_NAME); // Get the player's name
            GetPlayerIp(i, pIP, 32); // Check the player's IP
            if(RconAttempt[i] < MAX_RCONATTEMPTS && !strcmp(ip, pIP)) //Check if the player hasn't reached the MAX_RCONATTEMPTS
            {
                RconAttempt[i]++; // if it's not reached, we will increase this variable
            }
            else if(RconAttempt[i] >= MAX_RCONATTEMPTS && !strcmp(ip, pIP)) // Check if the player reached the maximum attempts (2)
            {
                format(string, sizeof string, "%s has been automatically banned from the server. Reason: Attempting to hack the RCON password.", pname);
                SendClientMessageToAll(COLOR_RED, string); // Send the formatted message to everyone in red.
                Ban(i); // Ban the player who tried to login twice.
            }
        }
    }
} 


This is what the code should look like in the end:

PHP код:

public OnRconLoginAttempt(ip[], password[], success)
{
    if(!success)
    {
        new string[128], pIP[32], pname[MAX_PLAYER_NAME];
        for(new i = 0, j = GetPlayerPoolSize(); i <= j; i++)
        {
            if(IsPlayerConnected(i))
            {
                GetPlayerName(i, pname, MAX_PLAYER_NAME);
                GetPlayerIp(i, pIP, 32);
                if(RconAttempt[i] < MAX_RCONATTEMPTS && !strcmp(ip, pIP))
                {
                    RconAttempt[i]++;
                }
                else if(RconAttempt[i] >= MAX_RCONATTEMPTS && !strcmp(ip, pIP))
                {
                    format(string, sizeof string, "%s has been automatically banned from the server. Reason: Attempting to hack the RCON password.", pname);
                    SendClientMessageToAll(COLOR_RED, string);
                    Ban(i);
                }
            }
        }
    }
} 


Note: The formatted message won't be seen for the banned player, you will have to create a timer for that, but that's something aside of this tutorial.

I hope this tutorial is helpful for atleast 1 person.

Peace out.

[SteSte]

Oh Snap! Well made, I'll come back to this for my gamemode.
+Rep

[Astralis]

Always a good thing to have more than one password.

[SteSte]

Quote:

Originally Posted by Astralis Always a good thing to have more than one password.

You can do that?

[Konstantinos]

So 3 unsuccessful attempts will ban everyone because you forgot to compare IPs.

[iLearner]

PHP код:

 format(string, sizeof string, "%s has been automatically banned from the server. Reason: Attempting to hack the RCON password.", pname); 


Do you even know what is hacking.

[saffierr]

Quote:

Originally Posted by Konstantinos So 3 unsuccessful attempts will ban everyone because you forgot to compare IPs.

Ooh yes, excuse me, I indeed did.
I will edit it once I'm back home, probably tonight.
Thank you anyways!

[saffierr]

Quote:

Originally Posted by iLearner PHP код:  format(string, sizeof string, "%s has been automatically banned from the server. Reason: Attempting to hack the RCON password.", pname);  Do you even know what is hacking.

You can call it whatever you want, that was a word I used, it's totally optional for your prefferences.

[RxErT]

Quote:

Originally Posted by Heroleo911003 You can do that?

Yes, it does, try to use CrossAdmin, it has 2 Rcon passwords.

[saffierr]

Added the IP Check.

[Eoussama]

Increase the string's size,
(94 + 24) > 100

[Vince]

Who uses RCON anyway? I would just straight up block the IP of anyone who tries to login, no matter friend or foe. RCON is too crude a tool to be of any reasonable use so I prefer to disable it completely.

[HoussemGaming]

Nice one, keep it up, Rep+

[Meller]

Quote:

Originally Posted by Vince Who uses RCON anyway? I would just straight up block the IP of anyone who tries to login, no matter friend or foe. RCON is too crude a tool to be of any reasonable use so I prefer to disable it completely.

Server.cfg -> rcon 0, best configuration there is.

[saffierr]

Quote:

Originally Posted by Eoussama Increase the string's size, (94 + 24) > 100

Done.

Quote:

Originally Posted by Vince Who uses RCON anyway? I would just straight up block the IP of anyone who tries to login, no matter friend or foe. RCON is too crude a tool to be of any reasonable use so I prefer to disable it completely.

True, I do understand your point, though it was just a tutorial on how to detect, if someone is using rcon.

Quote:

Originally Posted by HoussemGaming Nice one, keep it up, Rep+

Thank you sir.

[coool]

PHP код:

if(!success) // this checks if the player didn't succeed to login 
{ 
    new string[128], pIP[32], pname[MAX_PLAYER_NAME]; // This will hold the message we are going to send to all players 
    // We will now have to loop through all the online players because 'playerid' isn't usable in this callback. 
    for(new i = 0, j = GetPlayerPoolSize(); i <= j; i++) // This is the loop, 'GetPlayerPoolSize' checks the highest ID IG, hence I'd rather use that loop instead of MAX_PLAYERS; 
    { 
        if(IsPlayerConnected(i)) // Check if the player is even connected 
        { 
            GetPlayerName(i, pname, MAX_PLAYER_NAME); // Get the player's name 
            GetPlayerIp(i, pIP, 32); // Check the player's IP 
            if(RconAttempt[i] < MAX_RCONATTEMPTS) // Check if the player hasn't reached the MAX_RCONATTEMPTS 
            { 
               [B] RconAttempt[i]++; [/B] // if it's not reached, we will increase this variable 
            } 


I think, It will increase every one's RconAttempts.

[iLearner]

True.

[TheRealMan]

Good.

[saffierr]

Quote:

Originally Posted by coool PHP код: if(!success) // this checks if the player didn't succeed to login  {      new string[128], pIP[32], pname[MAX_PLAYER_NAME]; // This will hold the message we are going to send to all players      // We will now have to loop through all the online players because 'playerid' isn't usable in this callback.      for(new i = 0, j = GetPlayerPoolSize(); i <= j; i++) // This is the loop, 'GetPlayerPoolSize' checks the highest ID IG, hence I'd rather use that loop instead of MAX_PLAYERS;      {          if(IsPlayerConnected(i)) // Check if the player is even connected          {              GetPlayerName(i, pname, MAX_PLAYER_NAME); // Get the player's name              GetPlayerIp(i, pIP, 32); // Check the player's IP              if(RconAttempt[i] < MAX_RCONATTEMPTS) // Check if the player hasn't reached the MAX_RCONATTEMPTS              {                 [B] RconAttempt[i]++; [/B] // if it's not reached, we will increase this variable              }  I think, It will increase every one's RconAttempts.

Thank you, editted!

[coool]

You are checking for one thing two times:

PHP код:

            if(RconAttempt[i] < MAX_RCONATTEMPTS && !strcmp(ip, pIP)) //Check if the player hasn't reached the MAX_RCONATTEMPTS 
            { 
                RconAttempt[i]++; // if it's not reached, we will increase this variable 
            } 
            else if(RconAttempt[i] >= MAX_RCONATTEMPTS && !strcmp(ip, pIP)) // Check if the player reached the maximum attempts (2) 
            { 
                format(string, sizeof string, "%s has been automatically banned from the server. Reason: Attempting to hack the RCON password.", pname); 
                SendClientMessageToAll(COLOR_RED, string); // Send the formatted message to everyone in red. 
                Ban(i); // Ban the player who tried to login twice. 
            } 


The `!strcmp(ip, pIP)` It can be done like this:

PHP код:

            if(strcmp(ip, pIP)) return 1;
if(RconAttempt[i] < MAX_RCONATTEMPTS) //Check if the player hasn't reached the MAX_RCONATTEMPTS 
            { 
                RconAttempt[i]++; // if it's not reached, we will increase this variable 
            } 
            else if(RconAttempt[i] >= MAX_RCONATTEMPTS) // Check if the player reached the maximum attempts (2) 
            { 


And in addition to this you are getting every player's name while you only need one players name:

PHP код:

    for(new i = 0, j = GetPlayerPoolSize(); i <= j; i++) // This is the loop, 'GetPlayerPoolSize' checks the highest ID IG, hence I'd rather use that loop instead of MAX_PLAYERS; 
    { 
        if(IsPlayerConnected(i)) // Check if the player is even connected 
        { 
            GetPlayerName(i, pname, MAX_PLAYER_NAME); // Get the player's name 


And also delay declaring global variables.