Page 1 of 2 12 LastLast
Results 1 to 10 of 15

Thread: Reborn patch security issues?

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1

    Default Reborn patch security issues?

    Hello guys,

    i get kicked and banned in my own server.
    i have removed the rcon allready.
    i just removed all the info in admins.ini but i think he knows a trick to send rcon commands anyway.

    i found this in the log

    Rcon from 41.47.91.194:7130:
    kick
    broadcast: print "=|LuV|= Slimbips |CL| disconnected\n"

    and that guy was in my teamspeak... he also pokes me while hes not on my teamspeak.

    but how does he manage to use rcon commands in my server?

  2. #2

    Default

    Oke wait, its possible that the gay found screenshots in from alphamac and uses the admintool to kick and ban people

  3. #3
    Client Beta Testers Appelpitje's Avatar
    Join Date
    Jan 2012
    Location
    Belgium
    Posts
    571

    Default

    What can you see on the screenshot? rconpass or url to admin page? Dont know how alphamac works

  4. #4
    Senior Member beroo's Avatar
    Join Date
    Dec 2017
    Location
    Cairo
    Posts
    108

    Default

    Quote Originally Posted by Appelpitje View Post
    What can you see on the screenshot? rconpass or url to admin page? Dont know how alphamac works


    that's possible if u opened Edit login which in your admin tool and u have been forced screenshote while u are open it then u will upload the screenshots and u will not know u uploaded ur login into AlphaMAC website.






    i got Winchester's admin (admin in #Wov) before by chance, then i tryied to type it then it was works then i told him and Savior [Clan leader] to change his username and password i got this login had high rights. btw

    if that was someone another me and he have a knowledge and hates of this server he will do a lot of things something like to enable Allow Download then download them config server and he will get the rcon password as this guy did [who stole rcon password of Luv server from Slim]

    then i decided to remove edit login from my server's admins to don't play in this page while them playing.


    @slim u should remove all this button from ur admins tools
    Last edited by beroo; December 1st, 2018 at 02:17 AM.
    Greetings :-{[T_P]}- BeroO -{[CF]}-
    the-pharaohs.enjin.com

  5. #5

    Default

    oke found the problem.....

    Reborn INFO: 41.47.91.194 (Th3 R0cK) logged as admin using login "abdullah" and password "987y3hd676"
    Bad rcon from 41.47.91.194:12203:

    removed it

  6. #6

    Default

    doesnt work, he has the rcon again....

  7. #7

    Default

    its weird it came never into the loggs, but now suddenly was

  8. #8

    Default

    and whatever i change my rcon to.... i cant use it anymore.. it looks it changed right away when i restart server

  9. #9
    Client Beta Testers Appelpitje's Avatar
    Join Date
    Jan 2012
    Location
    Belgium
    Posts
    571

    Default

    There are multiple options here:
    - He has access to the server itself, who is your gamehoster?
    - You have a keylogger
    - Some admin gives him the rcon pass
    - ...

  10. #10
    Administrator James's Avatar
    Join Date
    May 2010
    Location
    on the intraweb
    Posts
    3,180

    Default

    Is it possible, that he's using the directory traverse exploit from Luigi??
    Make sure you have downloads set to 0

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •