WARNING TO ALL SERVER OWNERS!!

  • Offline Mokey
  • Fractured Wasteland
  • Elite
  • ******
  • Posts: 606
  • Https://Fractured-Gaming.com

WARNING TO ALL SERVER OWNERS!!

« posted: Jan 17, 2015, 10:39 PM »
https://mobile.twitter.com/mwafflesquare/status/556561500769648642

This guy just hacked our server and announced his twitter. He apparently gets his rocks off to shutting down Servers. We do not know how he did it. We believe he did it through an Rcon tool.

We immediately shut down the server and changed everything.  Removed his bans. Not sure if I will happen again.

I'm letting you guys know this because this dick apparently does this for fun.

Thanks for your time A3W
Posts once, edits post 40 times in 60 seconds. STUPID FAT FINGERS!
  • Offline micovery
  • Moderator
  • Hardened
  • ******
  • Posts: 159

Re: WARNING TO ALL SERVER OWNERS!!

« Reply #1 posted: Jan 17, 2015, 11:40 PM »
Don't post your RPT files with your server's command line for the whole world to see. Also, if you post your startup scripts, make sure to change the path to something generic like

Code: [Select]
C:/path/to/your/arma3

Once hackers know the location of your BE config files, it's not very hard for them to pull your BE settings file.

Also, you should not give the hacker his 5 minutes of fame ... they feed on that :-)
  • Offline Mokey
  • Fractured Wasteland
  • Elite
  • ******
  • Posts: 606
  • Https://Fractured-Gaming.com

Re: WARNING TO ALL SERVER OWNERS!!

« Reply #2 posted: Jan 17, 2015, 11:52 PM »
On the server launcher -cmd? Is that what your referring to?
Posts once, edits post 40 times in 60 seconds. STUPID FAT FINGERS!
  • Offline AgentRev
  • Developer
  • Veteran
  • ******
  • Posts: 2495

Re: WARNING TO ALL SERVER OWNERS!!

« Reply #3 posted: Jan 18, 2015, 02:46 AM »
Once hackers know the location of your BE config files, it's not very hard for them to pull your BE settings file.

The server.cfg parameters "allowedLoadFileExtensions", "allowedPreprocessFileExtensions", and "allowedHTMLLoadExtensions" prevents all .cfg files from being extracted via SQF code

https://community.bistudio.com/wiki/server.cfg#Server_Security