[cod] A word of advice
Geoff Goas
gitman at gmail.com
Sat Jan 16 23:45:56 EST 2010
That's correct.
On Mon, Jan 11, 2010 at 7:25 PM, Mavrick Master <mavrick.master at gmail.com>wrote:
> The client auto-download was used because I presume you are running a mod?
>
> Daniel 'mavrick' Lang
> www.mavrick.id.au
>
>
>
> On Thu, Dec 31, 2009 at 11:15 PM, Hannu Kumpeli <hannu at shadowstyle.nl>wrote:
>
>> well after they got the rcon pass they could change all non write
>> protected
>>
>> > But they could only download and view, not edit.correct?
>> >
>> >
>> >
>> > From: Geoff Goas [mailto:gitman at gmail.com]
>> > Sent: Thursday, December 31, 2009 1:03 AM
>> > To: Call of Duty server admin list.
>> > Subject: [cod] A word of advice
>> >
>> >
>> >
>> > This may not be news to some, but I just first hand experience with it,
>> so I
>> > think I should share....
>> >
>> > Someone just gained access to the RCON password for my CoD2 server.
>> > Apparently, they were able to use the client auto-download functionality
>> to
>> > download my server configuration, which I (stupidly) had named
>> "server.cfg".
>> >
>> > So a word to the wise - name your server config in such a way that
>> nobody
>> > can guess what it is. This is a Q3 engine bug, so the whole series is
>> > affected.
>> > --
>> > Geoff Goas
>> > Network Engineer
>> >
>> > _______________________________________________
>> > cod mailing list
>> > cod at icculus.org
>> > http://icculus.org/mailman/listinfo/cod
>>
>> _______________________________________________
>> cod mailing list
>> cod at icculus.org
>> http://icculus.org/mailman/listinfo/cod
>>
>
>
> _______________________________________________
> cod mailing list
> cod at icculus.org
> http://icculus.org/mailman/listinfo/cod
>
>
--
Geoff Goas
Network Engineer
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://icculus.org/pipermail/cod/attachments/20100116/891fa2e7/attachment-0001.htm>
More information about the cod
mailing list