Help hacker attack my server

06/03/2016 23:39 bluedrago#1
hello elite
i have one server 40k with source and all
and in this days one boy enter and can create items in player normal..
he can unbanned etc etc.
whats happen??
any can help me
06/04/2016 19:27 mrapc#2
You changed all the Passwords of the Admin Accounts etc.?
in MySQL and SFTP, also you need to fix this API-Tool thing if it isn't fixed already (Should be fixed in the newer files)
This guy changed the gamemode of your files to all god or just gave himself the god-mode.
06/06/2016 08:42 andii#3
Check your CONFIC, is there an entry with "TEST-SERVER" or something like that?
06/06/2016 16:36 Lauling#4
Quote:
Originally Posted by mrapc View Post
You changed all the Passwords of the Admin Accounts etc.?
in MySQL and SFTP, also you need to fix this API-Tool thing if it isn't fixed already (Should be fixed in the newer files)
This guy changed the gamemode of your files to all god or just gave himself the god-mode.
wtf das api tool wurde bereits vor jahren "gefixxt" mit dem richtigen config befehl, welcher auch in den 40k files configs enthalten ist?
06/06/2016 18:18 iFrost.#5
Ja das wurde schon lange gefixxt aber es gibt Tricks wie man reinkommt.
06/07/2016 09:18 mrapc#6
Quote:
Originally Posted by Lauling View Post
wtf das api tool wurde bereits vor jahren "gefixxt" mit dem richtigen config befehl, welcher auch in den 40k files configs enthalten ist?
Quote:
if it isn't fixed already (Should be fixed in the newer files)
mhhh war wohl meine Aussage.
06/07/2016 11:30 .#Plankton#7
Ipfw rules, überarbeiten.
Port sperren fertig.
06/07/2016 11:35 bluedrago#8
now i have vpn conection
in config i have this
NO_PK: 1
VIEW_RANGE: 6000
CHECK_MULTIHACK: 0
LOCALE_SERVICE: mexico
MAX_LEVEL: 105
adminpage_ip: 127.0.0.1
adminpage_password: XXXXXXXXX
FN_log_adminpage: 1
mark_server 1
mark_min_level 1
traffic_profile: 1
empire_whisper: 1
user_limit: 1500
#hackshield_enable: 1
#hackshield_first_check_time: 10
#hackshield_check_cycle_time: 10
ATTR_CHANGE_LIMIT: 1
speedhack_limit_count: 40
speedhack_limit_bonus: 10
spam_block_duration: 10
spam_block_score: 10
spam_block_reload_cycle: 10
spam_block_max_level: 90
protect_normal_player: 1
SERVER_CHECK: 1/1
GOLD_DROP_TIME: 5
LOG_LEVEL: 0
item_floor_time: 45
ITEM_OWNERSHIP_TIME: 50
GLOBAL_CHAT: 1/1
QUEST_TRIGGER_ENABLE: 1/0
SKILL_MASTER_UPGRADE: 17
MAX_HT: 90
MAX_IQ: 90
MAX_ST: 90
MAX_DX: 90
CheckClientVersion: 0
ClientVersion: XXXXXXXX

i have fix guild,messenger,offline exploit
we detect any command in sql
06/08/2016 13:17 Lauling#9
Quote:
Originally Posted by mrapc View Post
mhhh war wohl meine Aussage.
sorry hab ich wohl übersehen