Nutty_101 0 Posted November 11, 2007 If you have the firewall plugin it will firewall off depending on a setting. Xml setting in the config. <table border="0" align="center" width="95%" cellpadding="0" cellspacing="0"><tr><td>Code Sample </td></tr><tr><td id="CODE"><Entry Name="BadAction">BLOCK;0:180:0;</Entry> Block = Firewall packets. The second part is a time format. 0:0:0 is a perm block. The format is DD:HH:MM There are two log folders. This is in the daily cheater log folder so you can sort it quicker should you want/need. Files are not locked so you can parse them with another application. <table border="0" align="center" width="95%" cellpadding="0" cellspacing="0"><tr><td>Code Sample </td></tr><tr><td id="CODE">11/11/2007 2:59:23 PM,PowerPanel.Sniffer.Cheaters,"10.0.30.34","xx",2304,xxx,"xxx","CHEATERCAUGHT","testhmmv = this;Processinitcommands;" Share this post Link to post Share on other sites
whisper 0 Posted November 12, 2007 I'm crashing out. Here is the final update for today.Admins can now define what the program looks for. If you want to just flat out stop users who send anything to the server you could do something like below and it will detect the info from that client and firewall them off from you. Init checks all the places where people could pass on commands. Publicvariables or whatever. If the commands below are found in there they get firewalled. Pretty simple. <Entry Name="BadCommands">disableinput;setdamage;createvehicle;processinitcommands;create unit;setpos</Entry> <Entry Name="BadInit">disableinput;setdamage;createvehicle;processinitcommands;createunit ;setpos</Entry> Does that mean that if a mission makes a client use any of the listed commands (like processinitcommands or createvehicle), the command is blocked and the mission stops working? Or the user gets blocked out. Laugh. Map makers need to work on making everything server side. You just need to change the setup to make it fit your needs. It's not perfect but will help. Oh yeah, this is there to help people find who is really cheating. It is not really intended to stop the cheating. Though it has some stuff that will help out on that matter. This is genius! Definitely need a linux version though Share this post Link to post Share on other sites
sickboy 13 Posted November 12, 2007 Awesomeness Nutty! You are a hero! I won't need such tools for the servers I play on, but im sure there are a lot of ppl out there that do ) Share this post Link to post Share on other sites
Nutty_101 0 Posted November 12, 2007 Awesomeness Nutty! You are a hero!I won't need such tools for the servers I play on, but im sure there are a lot of ppl out there that do ) heh, no hero at all. Laugh. Nothing special about this junk. Never know it might be handy for chat logs or who knows. Grin Share this post Link to post Share on other sites
deady 0 Posted November 12, 2007 Is this all available for use now? Share this post Link to post Share on other sites
jtec 0 Posted November 12, 2007 Good work as always Nutty, good way of keeping those KFC muppets at bay! Balls to all cheaters eh Share this post Link to post Share on other sites
Nutty_101 0 Posted November 12, 2007 Is this all available for use now? Getting there, testing it to see how it is on cpu load and hunting for bugs. Share this post Link to post Share on other sites
ArMoGaDoN 0 Posted November 12, 2007 Some maps use the publicVariable and other command internally. No way around it in some cases. Once the full version of this is done, Nutty, please could a 'lite' version be put together that merely sniffs and reports, but without actual blocking? Â Perhaps just record the last 10K worth of data regarding those abuseable commands, looping around to the beginning of the file rather than infinitely growing the file. Â A date/timestamp would be needed for that also. That would still help immensely if the data/IP could cross-ref to the player ID/name? Share this post Link to post Share on other sites
Nutty_101 0 Posted November 12, 2007 WarWolf @ Nov. 12 2007,20:12)]Some maps use the publicVariable and other command internally. No way around it in some cases.Once the full version of this is done, Nutty, please could a 'lite' version be put together that merely sniffs and reports, but without actual blocking? Perhaps just record the last 10K worth of data regarding those abuseable commands, looping around to the beginning of the file rather than infinitely growing the file. A date/timestamp would be needed for that also. That would still help immensely if the data/IP could cross-ref to the player ID/name? It does not have to block anything. You define what it needs to do. I cannot think of any way to make it work with the vast range of maps out there. Just don't put anything in the action and it will only log. Looping file size i never really thought of but i think i could do something like that if requested. Share this post Link to post Share on other sites
benreeper 0 Posted November 13, 2007 How do cheaters execute these commands? --Ben Share this post Link to post Share on other sites
deady 0 Posted November 13, 2007 By exploiting the game's openness, lets not have any "how tos" here, though. Share this post Link to post Share on other sites
oyman 0 Posted November 13, 2007 How do cheaters execute these commands?--Ben You have to delete your system32 folder, atleast thats what someone told me. I did it but it didnt work, probably cause the person didnt give me the other steps yet. Share this post Link to post Share on other sites
ArMoGaDoN 0 Posted November 13, 2007 lol@oyman @Nutty, if you can do loop of rpt file then perhaps the filelength better user-settable, say 0=do not loop, to suit the server and maps it runs - some will spam the file mercilessly... Great news that blocking is optional already - please keep us informed about when we can expect to use this project in anger! Share this post Link to post Share on other sites
Nutty_101 0 Posted November 13, 2007 WarWolf @ Nov. 13 2007,07:47)]lol@oyman@Nutty, if you can do loop of rpt file then perhaps the filelength better user-settable, say 0=do not loop, to suit the server and maps it runs - some will spam the file mercilessly... Great news that blocking is optional already - please keep us informed about when we can expect to use this project in anger! I might get it out this week. It's not perfect and needs more cleaning but it does work. Also as for the logs, are you wanting to have another program work with it? If so the system is open where you can put a key into the config for this plugin and tell it to send info to another plugin as well. So if you know how to make a com enabled dll or any dot net it will work. MFC is not to far off as well for the plugins. Share this post Link to post Share on other sites
ArMoGaDoN 0 Posted November 13, 2007 Not thinking that far ahead yet, dunno yet really what kind of info will actually be there nor how 'decipherable' it will be - but a COM-interface sounds like it could be _really_ useful in the future - like FSUIPC is for FS? At the moment a simple ID/name check will be of use after some twit burns the server or map. PLus it could help pinpoint some of the random crashes too - maybe this information will help debug these 'standard' arma/addon incompatibilities too. Would be nice to know why Xam and other mods can cause these crashes - your little utility may help us track these down and enable a fix to be found. A question: will this be able to function with multiple server instances on the same box, or will separate instances need to be run of the utility? Will it work as multiple instances if so? Share this post Link to post Share on other sites
Nutty_101 0 Posted November 13, 2007 WarWolf @ Nov. 13 2007,20:11)]Not thinking that far ahead yet, dunno yet really what kind of info will actually be there nor how 'decipherable' it will be - but a COM-interface sounds like it could be _really_ useful in the future - like FSUIPC is for FS?At the moment a simple ID/name check will be of use after some twit burns the server or map. PLus it could help pinpoint some of the random crashes too - maybe this information will help debug these 'standard' arma/addon incompatibilities too. Would be nice to know why Xam and other mods can cause these crashes - your little utility may help us track these down and enable a fix to be found. A question: will this be able to function with multiple server instances on the same box, or will separate instances need to be run of the utility? Will it work as multiple instances if so? It's already able to monitor all the servers you tell it to. The logging is to one folder unless you define the ip monitor in separate settings. Then you can monitor as many as you want to different folders. You can also make several instances as well. It has it's own internal win service along with commandline and winforms interfaces. Share this post Link to post Share on other sites
Nutty_101 0 Posted November 14, 2007 Here is a quick to release version of the application. If you could let me know on my forums or in a pm if this even works for you I would really appreciate it. There has been local testing along with some off my own servers but nothing major really. PowerPanel - Host application PowerPanel - Sniffer addon You need the files from each post. Extract them into the same folder. Please edit the settings for the sniffer as it will not catch squat by default. The file in >>Config>>Default Configs>>PowerPanel.Sniffer.xml you will need to edit the IP monitor line to match your server's ip/port. Some things if people could give me feedback on that I would like to figure out. Duplicate logging of lines, has happened before but need more testing. Also high cpu usage. Not sure why but please let me know if you see this and maybe provide the last line in the log. Oh yeah, logs are >>Logs>>Powerpanel.Sniffer* Share this post Link to post Share on other sites
Auss 208 Posted November 14, 2007 soon as I copy the files from the plugin into the correct folders and try to start it, it crashes tried it on 2 machines May I suggest that you write a manual on how to correctly install and configure this, I have looked through your website and found the online manual (which doesnt work) I also looked at your PDF covering everthing except the sniffer plugin. If you want admins to use it then please write something that we can understand Share this post Link to post Share on other sites
Nutty_101 0 Posted November 14, 2007 soon as I copy the files from the plugin into the correct folders and try to start it, it crashes tried it on 2 machinesMay I suggest that you write a manual on how to correctly install and configure this, I have looked through your website and found the online manual (which doesnt work) I also looked at your PDF covering everthing except the sniffer plugin. If you want admins to use it then please write something that we can understand humm. Do you have dot net 2.0 installed? It needs that for the plugin interfaces. Share this post Link to post Share on other sites
benreeper 0 Posted November 14, 2007 I'm asking this because I thought/hoped that signatures would make this impossible. --Ben Share this post Link to post Share on other sites
.kju 3244 Posted November 14, 2007 Slightly offtopic sorry: benreeper I guess that verifySignatures cannot stop a modified exe for example. Share this post Link to post Share on other sites
Nutty_101 0 Posted November 14, 2007 Slightly offtopic sorry:benreeper I guess that verifySignatures cannot stop a modified exe for example. Yeah, problem is that no one can ever trust the client's info. Comes down to that, even mouse movement cannot be trusted. Share this post Link to post Share on other sites
eJay 1 Posted November 14, 2007 Please, do this quickly or we are doomed Playing with bunch of hacking idiots: http://img229.imageshack.us/img229....MG] http://img218.imageshack.us/img218....MG] Share this post Link to post Share on other sites
.kju 3244 Posted November 14, 2007 broken pic links Share this post Link to post Share on other sites
Nutty_101 0 Posted November 15, 2007 To anyone playing with this addon here is the next addon to the application. PlayerClass Plugin Share this post Link to post Share on other sites
