<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<TITLE>Message</TITLE>
<META name=GENERATOR content="MSHTML 8.00.6001.18928"></HEAD>
<BODY bgColor=#ffffff text=#000000>
<DIV><SPAN class=640344310-15092010><FONT size=2 face=Verdana>In that case,
couldn't you just add rcon password parameter to startup command line and leave
it out of cfg file?</FONT></SPAN></DIV>
<DIV><SPAN class=640344310-15092010><FONT size=2
face=Verdana></FONT></SPAN> </DIV>
<DIV><SPAN class=640344310-15092010><FONT size=2
face=Verdana>~SgtBilko</FONT></SPAN></DIV>
<DIV><SPAN class=640344310-15092010><FONT color=#0000ff size=2
face=Verdana></FONT></SPAN> </DIV>
<DIV><SPAN class=640344310-15092010><FONT color=#0000ff size=2
face=Verdana></FONT></SPAN> </DIV>
<DIV></DIV>
<DIV dir=ltr lang=en-us class=OutlookMessageHeader align=left><FONT size=2
face=Tahoma>-----Original Message-----<BR><B>From:</B> Mavrick
[mailto:mavrick.master@gmail.com] <BR><B>Sent:</B> den 15 september 2010
10:29<BR><B>To:</B> Call of Duty server admin list.<BR><B>Subject:</B> Re: [cod]
Cfg download hacking<BR><BR></FONT></DIV>Probably a silly question but can u set
the rcon password in the console query string?<BR><BR>If so, why not database
the password then just parse it when the server loads? This way anyone can use
the exploit if they want but wont get the password?<BR><BR>On 15/09/2010 5:45
PM, Nosjp Nosjp wrote:
<BLOCKQUOTE id=mid_AANLkTimOAyJ0JFFWzMy9UhVT6VNAcNGcEcvTKs0uSP0C_mail_gmail_com
cite=mid:AANLkTimOAyJ0JFFWzMy9UhVT6VNAcNGcEcvTKs0uSP0C@mail.gmail.com
type="cite">If you set sv_allowdownload "0" - disable all downloads :
built-in download + HTTP redirect download ( it doesn't matter value of
sv_wwwDownload)<BR><BR>Another solutions: disable console (set
sv_disableClientConsole "1") + random .cfg name<BR>in case of rcon stealer a
player must be connected to server, then player trying to download manually
within game console:<BR> /download server.cfg or /download
main/server.cfg guessing server config<BR><BR>Take a look here for more
details/solutions: <BR><A
href="http://game-violations.ggl.com/index.php?page=Thread&postID=99870#post99870"
moz-do-not-send="true">http://game-violations.ggl.com/index.php?page=Thread&postID=99870#post99870</A><BR><BR>
<DIV class=gmail_quote>On Tue, Sep 14, 2010 at 9:48 PM, Morpheus <SPAN
dir=ltr><<A href="mailto:morpheus@clantoc.org"
moz-do-not-send="true">morpheus@clantoc.org</A>></SPAN> wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_1 class=gmail_quote>
<DIV text="#000000" bgcolor="#ffffff">I have one question : I have these
dvar in my server cfg<BR><BR>set sv_allowdownload "1"<BR>seta sv_wwwDownload
"1"<BR>seta sv_wwwBaseURL <A href="http://whaterver_you_wnat.com/cod"
target=_blank
moz-do-not-send="true">"http://whaterver_you_wnat.com/cod"</A><BR>seta
sv_wwwDlDisconnected "1"<BR><BR>If you put the allowdownload to 0, does it
disable the www capability ? if we could restrict the download part to http
downloading, things could be easier to cope with.<BR><BR>Le 14/09/2010
20:44, Nosjp Nosjp a écrit :
<DIV>
<DIV class=h5>
<BLOCKQUOTE id=StationeryCiteGenerated_2 type="cite">@Marco: <BR><BR>If
you have a server <BR>- without custom maps/mods/pam -> disable
downloads: seta sv_allowDownload "0"<BR>- with custom maps/mods/pam
-> disable game console (set sv_disableClientConsole "1") +
random .cfg name<BR><BR><BR><BR>
<DIV class=gmail_quote>On Tue, Sep 14, 2010 at 9:37 PM, Sheepa <SPAN
dir=ltr><<A href="mailto:sheepa@sheepa.org" target=_blank
moz-do-not-send="true">sheepa@sheepa.org</A>></SPAN> wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_3 class=gmail_quote>Is there even any working
POC for
this?<BR><BR>--------------------------------------------------<BR>From:
"Marco Padovan" <<A href="mailto:evolutioncrazy@gmail.com"
target=_blank
moz-do-not-send="true">evolutioncrazy@gmail.com</A>><BR>Sent:
Tuesday, September 14, 2010 8:14 PM<BR>To: "Call of Duty server admin
list." <<A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A>>
<DIV><BR>Subject: Re: [cod] Cfg download hacking<BR><BR></DIV>
<DIV>
<DIV>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_4 class=gmail_quote>I see...<BR><BR>will
take the "random cfg filename" path as all other workarounds
are<BR>not acceptable for my use :(<BR><BR>On Tue, Sep 14, 2010 at
8:01 PM, Morpheus <<A href="mailto:morpheus@clantoc.org"
target=_blank moz-do-not-send="true">morpheus@clantoc.org</A>>
wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_5 class=gmail_quote> I think
iptables is too low-level to deal with such specific hack
attempts.<BR>At least you can use it to ban IP addresses you
catch... It's sad it has not<BR>been fixed since discovery, with all
the games that are using the<BR>codebase...<BR><BR>Le 14/09/2010
19:32, Marco Padovan a écrit :<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_6 class=gmail_quote><BR>I'm aware of
the exploits... was looking for some suggestion on how to<BR>fix
them... even via iptables eventually...<BR><BR>On Tue, Sep 14,
2010 at 6:56 PM, James Landi<<A href="mailto:jim@landi.net"
target=_blank moz-do-not-send="true">jim@landi.net</A>>
wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_7 class=gmail_quote><BR> The
exploit I just posted about could be an older version or not
the<BR>same<BR>as described in this mail list
thread.<BR><BR>using the second link should give you a good list
of quake based exploits<BR>you may want to watch
for.<BR><BR>Sorry for the wrong ling<BR><BR>Jim
Landi<BR>Rudedog<BR>FPSadmin.com<BR>Microsoft MVP, Games for
Windows | Twitter@ therealrudedog<BR><BR><BR>On 9/14/10 12:25
PM, Morpheus wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_8 class=gmail_quote><BR>We're
talking about the built-in download system, not the http
redirect<BR>one, which you can control with symlinks and
htaccess features. It's<BR>about a<BR>security hole that
virtually exists in all q3-based games (at least
for<BR>the<BR>net code).<BR><BR>Le 14/09/2010 18:21, Mavrick a
écrit :<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_9 class=gmail_quote><BR>Anyone
tried symbolic links?<BR><BR>On 14/09/2010 3:11 AM, Nosjp
Nosjp wrote:<BR>
<BLOCKQUOTE
style="BORDER-LEFT: rgb(204,204,204) 1px solid; MARGIN: 0pt 0pt 0pt 0.8ex; PADDING-LEFT: 1ex"
id=StationeryCiteGenerated_10 class=gmail_quote><BR>The
only one solution: set sv_allowDownload
"0"<BR><BR>On Mon, Sep 13, 2010 at 7:45 PM,
Marco<BR>Padovan<<A
href="mailto:evolutioncrazy@gmail.com" target=_blank
moz-do-not-send="true">evolutioncrazy@gmail.com</A><BR><mailto:<A
href="mailto:evolutioncrazy@gmail.com" target=_blank
moz-do-not-send="true">evolutioncrazy@gmail.com</A>>>
wrote:<BR><BR> We are having major hack
attempts that consist in people<BR> downloading the
cfg files.... currently we had to use
random<BR> file names...<BR><BR> is there any
solid work around?<BR><BR><BR>
_______________________________________________<BR>
cod mailing list<BR> <A
href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><mailto:<A
href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A>><BR>
<A href="http://icculus.org/mailman/listinfo/cod"
target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR><BR><BR><BR>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org"
target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod"
target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR></BLOCKQUOTE><BR>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org"
target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR></BLOCKQUOTE><BR>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR></BLOCKQUOTE><BR>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR><BR></BLOCKQUOTE>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR></BLOCKQUOTE><BR>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR><BR></BLOCKQUOTE>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A>
<BR></BLOCKQUOTE>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org" target=_blank
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR></DIV></DIV></BLOCKQUOTE></DIV><BR><PRE><FIELDSET></FIELDSET>
_______________________________________________
cod mailing list
<A href="mailto:cod@icculus.org" target=_blank moz-do-not-send="true">cod@icculus.org</A>
<A href="http://icculus.org/mailman/listinfo/cod" target=_blank moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A>
</PRE></BLOCKQUOTE></DIV></DIV></DIV><BR>_______________________________________________<BR>cod
mailing list<BR><A href="mailto:cod@icculus.org"
moz-do-not-send="true">cod@icculus.org</A><BR><A
href="http://icculus.org/mailman/listinfo/cod" target=_blank
moz-do-not-send="true">http://icculus.org/mailman/listinfo/cod</A><BR><BR></BLOCKQUOTE></DIV><BR><PRE wrap=""><FIELDSET class=mimeAttachmentHeader></FIELDSET>
_______________________________________________
cod mailing list
<A class=moz-txt-link-abbreviated href="mailto:cod@icculus.org">cod@icculus.org</A>
<A class=moz-txt-link-freetext href="http://icculus.org/mailman/listinfo/cod">http://icculus.org/mailman/listinfo/cod</A>
</PRE></BLOCKQUOTE><BR></BODY></HTML>