• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Counter-Strike Source Server Administration

CoinOperatedBoy

CoinOperatedBoy

Golden Member
Does anybody have any experience with setting up and maintaining CSS servers? A buddy of mine has a clan and runs a couple servers, one of which has been repeatedly compromised by "hackers", which I use lightly since I don't know how they're actually getting in. The server runs only de_dust2, no map rotation, is pretty much set up vanilla except for Mani Admin.

One or two of these guys manage to gain admin rights, ban the existing admins, and start generally messing things up for the community until we take the server down and reset everything. My friend has banned the people responsible, but somehow they've managed to get back in, unban themselves, and do it again.

Are there well-known exploits that allow people to do this? Could Mani be a weak point? Easily-guessable rcon password or a keylogger or something? I'm honestly at a loss, but I'd like to provide some advice on how to get rid of these people and secure the server.
 
umm either they stole rcon password to the server or they have this one program that allows them to basically duplicate an admins steam ID, so the server thinks the hacker is a admin(u can pickup that program usually for around 5-15 dollars LOL just Google it)
 
Check the logs, see how they are doing it, should be easily identifiable.

Is it through manis plug in, or RCON?

Can you look at FTP logs?

Change ALL RCON, FTP passwords to something good IE -- 435^1!sfg3!

and try removing manis admin plug in, if that's an issue. My servers haven't been hacked...yet.
 
Originally posted by: ViviTheMage
Check the logs, see how they are doing it, should be easily identifiable.

Is it through manis plug in, or RCON?

Can you look at FTP logs?
Click to expand...

I'll request more info. I don't have access to the logs right now.


Change ALL RCON, FTP passwords to something good IE -- 435^1!sfg3!
Click to expand...

Ok, I'll tell him to use that one. 😀


and try removing manis admin plug in, if that's an issue. My servers haven't been hacked...yet.
Click to expand...

Yeah, I think we'll give that a shot.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top