1

Topic: Server Crash exploit.

Hello, today someone joined a server via bot/script and changed team very fast. This made the server crash or something else. I had to even reset my connection. I dont know what he exactly did, i hope he didnt bufferoverflow the client and inject some malicious code, but it could be possible i think.

2

Re: Server Crash exploit.

If you whether the server was hacked?
Would it not possible that there is only one server congestion?
Not equal overreact;)

3

Re: Server Crash exploit.

Yeah those bitches have ingame names like "Teeg0t |XXXX" or something.
They suck horse cock. Very annoying.. they need to get laid once in their life.

*** JUSTICE ALWAYS WINS ***

4

Re: Server Crash exploit.

I just say, that the server cannothandle very fast teamchanges... I dont know if the application really crashed or if we just all got disconnected.

5

Re: Server Crash exploit.

I don't know how they spam so much(whole screen is spammed with text, though spamprotection is active).

They do it very often. Never saw a bunch of morons like that. Typicall no-lifes.
Sad sad

As i said it wasn't their first time...

*** JUSTICE ALWAYS WINS ***

6

Re: Server Crash exploit.

i think the server doesn't crash. but perhaps a accountsystem could be developed, so you can ban people by their accountnames. to change the name in the game their could be a second name, which is displayed everywhere.

7 (edited by [PL]Towelie 2008-05-24 22:33:41)

Re: Server Crash exploit.

You are sure he had an evil program ( bot, virus )? Maybe he just bound 'change team' on a keyboard and that's why he can do it so fast?

Try to catch an IP of that asshole ( of course he may have changable IP but it would be good to know his IP anyway ).

But if actually he did attack your client by overflow error, we should tell this TW programmers immadiately so they could fix the problem.

You wanna get high?

8

Re: Server Crash exploit.

I think the devs could tell us if its possible or not. ^^

9

Re: Server Crash exploit.

I'm not sure we have seen this before... Can someone of you reproduce it?
Matricks has done a great job in securing the client/server so buffer overruns should be a lot more harder. What might have happened is that something was not initialized correctly.

Languages shapes the way we think, or don't.

10

Re: Server Crash exploit.

Captain AMN wrote:

Yeah those bitches have ingame names like "Teeg0t |XXXX" or something.
They suck horse cock. Very annoying.. they need to get laid once in their life.

Hey peeps, I'd just like to tell you that, the people who are crashing the servers are imposters, they are just using my name, I don’t know why they do this, my guess would be that they are fp8 members as they hold a grudge against me (stena/ICETE4?)... But that isn't me, I haven't played the game for some time now... So please do not mistake me of being one of them, I’m serious, that is not me!

11

Re: Server Crash exploit.

Im not sure Ice Tea. You have always been some kinda strange. I think you should not play TW for some weeks or months... maybe years.

You wanna get high?

12

Re: Server Crash exploit.

someone "crashed" my server short time ago. The server is still running. Perhaps that will help you somehow:


25.05.08 15:54:  teeg0tfan | Teamkiller I.: I GAINED THE POWER

25.05.08 15:54:  teeg0tfan | Teamkiller I.: TO CRUSH THIS SERVER

25.05.08 15:54:  teeg0tfan | Teamkiller I.: OF MY MASTER

25.05.08 15:54:  teeg0tfan | Teamkiller I.: ICE TEA

25.05.08 15:54:  teeg0tfan | Teamkiller I.: YOU WILL FEEL THE JUDGMENT!"!!!!!

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the red team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the blue team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the red team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the blue team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the red team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the blue team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the red team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the blue team

25.05.08 15:54:  *** teeg0tfan | Teamkiller I. joined the red team

(that was only the beginning)

13

Re: Server Crash exploit.

Just auto ban them if they change team 5 times in a row did that on ubuntu's mod

14

Re: Server Crash exploit.

Ice Tea wrote:

Hey peeps, I'd just like to tell you that, the people who are crashing the servers are imposters, they are just using my name, I don’t know why they do this, my guess would be that they are fp8 members as they hold a grudge against me (stena/ICETE4?)... But that isn't me, I haven't played the game for some time now... So please do not mistake me of being one of them, I’m serious, that is not me!

No, the fp8 clan has absolutely nothing to do with this. They play the game and do not waste time ruining the game for others who just want to play some round.

And some days ago i was with stena and icete4 on the same server when the "teeg0t" entered. They didn't spam  cause they would have been kicked right away.

So don't blame others..

And scosu has delivered enough material to strengthen my argumentation.

I just can't understand why people waste time pissin other people off.

*** JUSTICE ALWAYS WINS ***

15

Re: Server Crash exploit.

it can be a problem... there was another attack and the RAM usage raised to 170mb...

did you changed the source for that? could you upload the patch somewhere?

16 (edited by [PL]Towelie 2008-05-26 00:47:45)

Re: Server Crash exploit.

Yeah Rajh pls write something ( patch ) that kicks tees when they change teams too fast ( maybe after 5 times ). I would do that but i don't have C installed on my computer.

... ok wouldnt do that i cant write programs in C.

And after you write the program/patch post the link on forum. I know it is easy for you:)

You wanna get high?

17 (edited by Rajh 2008-05-25 23:29:33)

Re: Server Crash exploit.

PatchBased on Ban patch from GregWar
Should work but didn't test I can't now
The player will be bann 15 mins if he tries to change team 5 times in a row (5sec i guess)

18

Re: Server Crash exploit.

made a modification now, too. It only allows 8 chatmessages and 5 teamchanges in 30 seconds. After that he blocks the action for 2 minutes. on another 3 chatmessages or teamchanges the player will be kicked.

But i have problems with diff. it seems to me that it interprets the code somehow and changes the code. i am working with diff and patch the first time. i am using "diff -ur teeworlds-src patch-src" but that changes the code, can you help me please?

19 (edited by milk 2008-05-25 23:57:15)

Re: Server Crash exploit.

+1 for you guys. Thanks to listening to my post, taking it serious and reacting.

20

Re: Server Crash exploit.

[PL]Towelie wrote:

Yeah Rajh pls write something ( patch ) that kicks tees when they change teams too fast ( maybe after 5 times ). I would do that but i don't have C installed on my computer.

... ok wouldnt do that i cant write a programs in C.

And after you write the program/patch post the link on forum. I know it is easy for you:)

LoL you're so funny, pls join us!
Wow thanks Rajh. You roX!
And special thanks to scosu too wink

*** JUSTICE ALWAYS WINS ***

21

Re: Server Crash exploit.

Stoping spam message is very easy to do btw:
        if(config.sv_spamprotection && players[client_id].last_chat+time_freq() > time_get())
        {
            // consider this as spam
+                       players[client_id].last_chat = time_get();
        }
---------------------------

If someone binds a key he will have to wait 1 sec to press it again and its more anoying that holding it or spaming it tongue

22

Re: Server Crash exploit.

i still have problems with the diff program, but here is a x86 binary.

Player who write more than 9 messages in 30 seconds will be muted for 2 minutes. After another 4 messages while muted, the player is kicked. Also the player is blocked after 5 teamchanges. Than the player will be kicked after 4 more tries to change team.

23

Re: Server Crash exploit.

@scosu windows exe? or give me source code wink i can compile it myself

Remember me? Questions? Just leave a message, I will respond within 72 hrs!

24

Re: Server Crash exploit.

now you can vote maps with "/++" or "/--". This message isn't shown in the global chat and produces a message like "...[game]: map-voting /++". The player gets a confirmation about the vote. every maprotation player can only vote once.
every end of a round will appear a variable chatmessage.

config options with standardvalues:
sv_teamchanges 4  how often a player is allowed to change teams in 30 seconds
sv_teamchangeskick 2  how often the player is allowed to try changing team after he is blocked
sv_messagesnum 8  how many messages a player can write in 30 seconds
sv_messageskick 2  how often the player can try to write a message after muting
sv_endroundmessage   message shown at the end of a round in the chat

@Dani no sorry... but here is the compressed directory: src

25

Re: Server Crash exploit.

Please, more serveradmins need to apply these patches. This h4x0r guy has been ruining games all afternoon.

teeeeeeeeeeeeeeee