03.06.2012, 17:38
Dear SA:MP Community.
I come here to report some rather scary reports coming from the 'DM Community' part of SA:MP.
You may or may not know SA:MP is now an official 'e-sport' on the Electronic Sports League. This seems like a good thing however the 'ESL' has given a select group of SA:MP players control over the game, game server and forum.
These ESL servers run a gamemode called 'Deadly Combinations' which is an attack and defend game mode. However, whilst browsing through the filterscripts of this file an 'ESL' admin who is a close personal friend of mine found an unusual script and a plaintext file with usernames and plaintext passwords of every member who had registered.
After decompiling the filterscript he found that it records, in plaintext, the username and what he types when he uses the /register command (Which allplayers have to use to enter the spawn selection)
So basically, on these high traffic servers, there is a script which records your username and password in plaintext.
I am not here to make accusations or point fingers but the fact is there is a script that steals your password on servers that are run by a 3rd party company (ESL) and members of our own community (mainly from the A/D clan PTM and various other DM players)
In my opinion the script would have been added by an untrustworthy player or group of players and the 'ESL' had no knowledge of it. There has also been an alarming amount of reports from DM clans about their members accounts been logged into by unknown IP addresses and some admin accounts being logged into to deface forums and clan sites. Funnily enough my own clan website got defaced by someone logging into a members account and deleting topics etc, strangely enough the IP addresses was identical to that of an 'ESL Admin' from portugal. I don't know if I am allowed to name and shame or post IP addresses here so I will leave that out unlessI am told I am allowed to reveal who it was who got access to our clan site.
I thought it is best to post this here as a warning to people and perhaps to get some help from some other SA:MP players or perhaps SA:MP devs who can help me combat this blatent disregard for personal information. People are using our game to steal our passwords and I think that is a disgrace.
If any senior SA:MP dev wants more information about this feel free to PM me and I can give you more information. I alone can't do anything about this but with some help from a senior member hopefully we can get to the bottom of this.
I come here to report some rather scary reports coming from the 'DM Community' part of SA:MP.
You may or may not know SA:MP is now an official 'e-sport' on the Electronic Sports League. This seems like a good thing however the 'ESL' has given a select group of SA:MP players control over the game, game server and forum.
These ESL servers run a gamemode called 'Deadly Combinations' which is an attack and defend game mode. However, whilst browsing through the filterscripts of this file an 'ESL' admin who is a close personal friend of mine found an unusual script and a plaintext file with usernames and plaintext passwords of every member who had registered.
After decompiling the filterscript he found that it records, in plaintext, the username and what he types when he uses the /register command (Which allplayers have to use to enter the spawn selection)
So basically, on these high traffic servers, there is a script which records your username and password in plaintext.
I am not here to make accusations or point fingers but the fact is there is a script that steals your password on servers that are run by a 3rd party company (ESL) and members of our own community (mainly from the A/D clan PTM and various other DM players)
In my opinion the script would have been added by an untrustworthy player or group of players and the 'ESL' had no knowledge of it. There has also been an alarming amount of reports from DM clans about their members accounts been logged into by unknown IP addresses and some admin accounts being logged into to deface forums and clan sites. Funnily enough my own clan website got defaced by someone logging into a members account and deleting topics etc, strangely enough the IP addresses was identical to that of an 'ESL Admin' from portugal. I don't know if I am allowed to name and shame or post IP addresses here so I will leave that out unlessI am told I am allowed to reveal who it was who got access to our clan site.
I thought it is best to post this here as a warning to people and perhaps to get some help from some other SA:MP players or perhaps SA:MP devs who can help me combat this blatent disregard for personal information. People are using our game to steal our passwords and I think that is a disgrace.
If any senior SA:MP dev wants more information about this feel free to PM me and I can give you more information. I alone can't do anything about this but with some help from a senior member hopefully we can get to the bottom of this.