1. SA-MP Forums Archive
  2. Non-English
  3. Languages
  4. Español/Spanish

Threaded Mode
Ataques a servidores
RcoN!
Huge Clucker
****
Posts: 475
Threads: 42
Joined: Dec 2009
Reputation: 0
#1

18.07.2011, 21:11
Miren este es un ataque que talves muchos an sufrido y talvez no se han atrevido decirlo porque piensan que puede ser bug del script/ o falte una carpeta en scriptfiles, pues no es asi!

nosй como se llamarб este ataque, para mi es nuevo y para muchos talvez

lo que hace es que el server quede congelado, y me refiero literalmente congelado
en caso que si hay gente dentro del server y el server se congela la gente queda adentro siendo que no es asi,
la consola no responde, si entras al server te queda en la parte Connected. Joining the game... y no avanza mбs

este ataque lo a sufrido mi server "Fantasilandia" y un server amigo "SERVER LATINOAMERICANO" y tambien a muchos amigos que tienen servers SA:MP y siempre tenian la conclucion que podia ser una parte del gamemode mal echa... siendo que nу es asн

me e fijado en todos los log's de todos los servers que conosco y hasta que encontre al maldito sin vida que lo hacia

es de espaсa y se apoda "KR1ST14N"

miren aqui un log en el cual roba la rcon y le cambia el nombre al server etc.. y despues de salirse tilda el server sin dejar rastro alguno en el log

pawn Код:
[03:42:24] Incoming connection: 81.36.66.184:58852
[03:42:25] [join] An0nYm0uS has joined the server (4:81.36.66.184)
[03:42:25] [chat] [[Z]neiwo]: suban al coche
[03:42:32] [chat] [NIKE]: donde estann?ї?
[03:42:38] [chat] [[Z]neiwo]: primero el nomrbe de el clan! xd
[03:42:38] [chat] [PatoDeGoma]: no cabemos
[03:42:44] [chat] [[Z]neiwo]: que nombre serqa
[03:42:45] [chat] [PatoDeGoma]: voy a por un bus
[03:42:45] [chat] [[Z]neiwo]: ?
[03:42:53] [chat] [NIKE]: donde estannnnnnn
[03:42:53] [chat] [[Z]neiwo]: que nombre opnemos?
[03:42:55] [chat] [NIKE]: eeee
[03:43:00] [chat] [PatoDeGoma]: lARMYl
[03:43:01] [chat] [NIKE]: donde estanї?ї?
[03:43:01] [chat] [[Z]neiwo]: en /
[03:43:06] [chat] [[Z]neiwo]: sf
[03:43:11] [chat] [[Z]neiwo]: ok ahora lo pongo
[03:43:13] [chat] [AntraX_cHeYo_el2]:  /SF
[03:43:13] [nick] [Z]neiwo nick changed to neiwo
[03:43:13] [part] neiwo has left the server (0:1)
[03:43:15] RCON (In-Game): Player #4 (An0nYm0uS) <HostName:> failed login.
[03:43:29] RCON (In-Game): Player #4 (An0nYm0uS) has logged in.
[03:43:40] [chat] [AntraX_cHeYo_el2]: PATO
[03:43:46] RCON (In-Game): Player [An0nYm0uS] sent command: hostname Nueva IP: 188.165.220.131:1110
[03:44:03] [chat] [AntraX_cHeYo_el2]: PATO!
[03:44:06] RCON (In-Game): Player [An0nYm0uS] sent command: password hacked
[03:44:06] Setting server password to: "hacked"
[03:44:08] [chat] [PatoDeGoma]: k
[03:44:11] RCON (In-Game): Player [An0nYm0uS] sent command: kickall
[03:44:11] Unknown command or variable:
  kickall
[03:44:17] [chat] [NIKE]: 7tunear
[03:44:18] [chat] [AntraX_cHeYo_el2]: YO SOI JUAN :d
[03:44:18] RCON (In-Game): Player [An0nYm0uS] sent command: kick 3
[03:44:18] AntraX_cHeYo_el2 <#3 - 200.52.184.177> has been kicked.
[03:44:18] [part] AntraX_cHeYo_el2 has left the server (3:2)
[03:44:22] Incoming connection: 217.216.169.194:4635
[03:44:23] RCON (In-Game): Player [An0nYm0uS] sent command: kick 1
[03:44:23] NIKE <#1 - 83.54.1.180> has been kicked.
[03:44:23] [part] NIKE has left the server (1:2)
[03:44:25] RCON (In-Game): Player [An0nYm0uS] sent command: kick 2
[03:44:25] PatoDeGoma <#2 - 90.163.84.28> has been kicked.
[03:44:25] [part] PatoDeGoma has left the server (2:2)
[03:44:29] Incoming connection: 200.52.184.177:51983
[03:44:34] [part] An0nYm0uS has left the server (4:1) // AQUI SE VБ
[03:45:16] Incoming connection: 79.145.180.212:2848//DESPUES DE UN MINUTO EL SERVER DEJA DE REACCIONAR...
[03:45:32] Incoming connection: 83.54.1.180:63029//ESTOS INCOMING CONNECTION SON LOS JUGADORES QUE INTENTAN ENTRAR PERO NO PUEDEN PORQUE SE LES TILDA EN Connected. Joining the game
[04:13:08] Incoming connection: 79.145.180.212:1056
[04:36:07] Incoming connection: 186.16.36.6:10303
[04:37:44] Incoming connection: 88.10.66.123:14918
[04:37:58] Incoming connection: 170.51.216.76:1712
[05:05:18] Incoming connection: 201.246.56.234:1145
[06:27:05] Incoming connection: 189.106.29.179:10034
[06:31:00] Incoming connection: 190.30.173.250:1135
[06:32:17] Incoming connection: 190.30.173.250:1136
[06:34:19] Incoming connection: 190.30.173.250:1138
[06:35:25] Incoming connection: 190.30.173.250:1140
[06:37:01] Incoming connection: 189.106.29.179:10271
[06:43:14] Incoming connection: 186.16.137.82:60320
[07:04:51] Incoming connection: 186.92.189.18:56085
[07:18:29] Incoming connection: 190.166.48.169:50168
[07:19:11] Incoming connection: 93.143.147.24:54184
[07:19:37] Incoming connection: 190.166.48.169:50169
[07:25:15] Incoming connection: 190.166.48.169:53298
[07:26:46] Incoming connection: 190.209.248.207:52823
[07:32:04] Incoming connection: 186.90.217.140:51830
[07:35:27] Incoming connection: 190.135.141.27:1094
[07:36:24] Incoming connection: 190.135.141.27:1095
[07:44:42] Incoming connection: 190.179.100.28:47073
[07:46:05] Incoming connection: 190.73.33.78:1216
[07:47:22] Incoming connection: 190.73.33.78:1230
[07:54:55] Incoming connection: 190.228.67.138:1132
[07:57:41] Incoming connection: 190.228.67.138:1133
[07:59:56] Incoming connection: 201.164.163.198:1077
[08:00:15] Incoming connection: 201.165.137.88:1065
[08:01:01] Incoming connection: 190.135.141.27:1129
[08:02:05] Incoming connection: 190.135.141.27:1131
[08:11:21] Incoming connection: 79.145.180.212:1051
[08:17:07] Incoming connection: 201.165.140.155:1110
[08:21:58] Incoming connection: 201.246.55.195:1379
[08:23:28] Incoming connection: 201.165.132.185:1090
he probado con el firewall de neptuno y no sirve
nose que cosa podria servir para este tipo de ataque

opinen porfavor
Find
Reply
Lunnatiicz
High-roller
*****
Posts: 1,495
Threads: 82
Joined: Dec 2010
Reputation: 0
#2

18.07.2011, 21:27
Yo dirнa que con desactivar la Rcon muchos ataques pararнan..
Find
Reply
linux
Huge Clucker
****
Posts: 254
Threads: 3
Joined: Jul 2010
Reputation: 0
#3

18.07.2011, 22:02
Bueno si tu rcon es 1234 ya te jodistes, recomiendo poner algo como *30_-SoiPu..!@
Find
Reply
RcoN!
Huge Clucker
****
Posts: 475
Threads: 42
Joined: Dec 2009
Reputation: 0
#4

18.07.2011, 22:06
el caso no es que ayan robado la rcon ademas la rcon era "asf98687788711186"

yo me refiero al ataque cuando tilda el server
Find
Reply
TiNcH010
High-roller
*****
Posts: 1,964
Threads: 180
Joined: Apr 2010
Reputation: 0
#5

18.07.2011, 22:12
Quote:
Originally Posted by Lunnatiicz
Посмотреть сообщение
Yo dirнa que con desactivar la Rcon muchos ataques pararнan..
Segun la wiki samp, el RCON se desactiva dejandolo en '0' pero a mi nunca me resulto, es mas, me logeaba con /rcon login 0 y logeaba perfecto
Find
Reply
RcoN!
Huge Clucker
****
Posts: 475
Threads: 42
Joined: Dec 2009
Reputation: 0
#6

18.07.2011, 22:18
estoy diciendo qe a lo que voy es cuando tildan el server!!! no desvien el tema porfavorr
Find
Reply
Lunnatiicz
High-roller
*****
Posts: 1,495
Threads: 82
Joined: Dec 2010
Reputation: 0
#7

18.07.2011, 22:19
a lo que me refiero es que en la prуxima versiуn, la Rcon sea removida por completo, algunos dirнan, їPara quй necesitamos hacer /rcon login asd' si cuando entramos al server nos logeamos y con un sistema de admin usamos /ban /kick bla bla.

En si, yo no le veo mucha utilidad, pues no la uso x)
Find
Reply
RcoN!
Huge Clucker
****
Posts: 475
Threads: 42
Joined: Dec 2009
Reputation: 0
#8

18.07.2011, 22:30
y nade se ha fiajado que en

pawn Код:
[03:43:15] RCON (In-Game): Player #4 (An0nYm0uS) <HostName:> failed login.
hay debe decir asi

pawn Код:
[03:43:15] RCON (In-Game): Player #12 (An0nYm0uS) <La contraseсaRcon > failed login.
Find
Reply
TiNcH010
High-roller
*****
Posts: 1,964
Threads: 180
Joined: Apr 2010
Reputation: 0
#9

19.07.2011, 02:20
Quote:
Originally Posted by WHEELMANDTS
Посмотреть сообщение
estoy diciendo qe a lo que voy es cuando tildan el server!!! no desvien el tema porfavorr
nadie desvia el tema, en todo caso no habremos "entendido"
Find
Reply
« Next Oldest | Next Newest »


Forum Jump:


Users browsing this thread: 1 Guest(s)
  1. SA-MP Forums Archive
  2. Non-English
  3. Languages
  4. Español/Spanish