Is there a setting that enables server admins/GSPs to disable the ability to remotely upload eventscripts (without FTP even being on), or prevent their execution?
- Andrew -----Original Message----- From: hlds-boun...@list.valvesoftware.com [mailto:hlds-boun...@list.valvesoftware.com] On Behalf Of Mike Stiehm Sent: Wednesday, 3 March 2010 9:28 AM To: 'Half-Life dedicated Win32 server mailing list' Subject: Re: [hlds] Eventscripts - Creating Windows Account This is true for the default setting. However TCAdmin can be set to use a specific user for all game servers created from that point on and you can go back in the windows services control panel and change the user that the service executes under. It's really easy and didn't take me much more than 20 min for 20 servers and I have no issues (well over a year running like this) -----Original Message----- From: hlds-boun...@list.valvesoftware.com [mailto:hlds-boun...@list.valvesoftware.com] On Behalf Of Lane Eckley Sent: Tuesday, March 02, 2010 4:11 PM To: 'Half-Life dedicated Win32 server mailing list' Subject: Re: [hlds] Eventscripts - Creating Windows Account That is a simple solution to the problem. However if you are a GSP or otherwise using TCAdmin like many do, there are some side issues that go along with setting a game server to use a limited access. (Important note on TCAdmin: TCAdmin runs as system and so do all the services it powers - FYI in case you are unaware.) This was mainly a warning going out before anyone got completely hacked and lost access to their machines. -Lane -----Original Message----- From: hlds-boun...@list.valvesoftware.com [mailto:hlds-boun...@list.valvesoftware.com] On Behalf Of Saul Rennison Sent: Tuesday, March 02, 2010 5:03 PM To: Half-Life dedicated Win32 server mailing list Subject: Re: [hlds] Eventscripts - Creating Windows Account If you run the server as a limited user, then it can't touch the registry or create other users... simple :/ Thanks, - Saul. On 2 March 2010 20:51, ics <i...@ics-base.net> wrote: > What do you mean by upload mods? If _anyone_ can upload files to the > server without having access to the machine itself, then there is > nothing mod makers can do if someone can overwrite the files that their > mods have. > > -ics > > 2.3.2010 22:44, Steven Crothers kirjoitti: > > The answer isn't to stop people from being able to upload mods... the > answer > > is for mod makers to make their mods secure. > > > > -----Original Message----- > > From: hlds-boun...@list.valvesoftware.com > > [mailto:hlds-boun...@list.valvesoftware.com] On Behalf Of w4rezz > > Sent: Tuesday, March 02, 2010 3:14 PM > > To: Half-Life dedicated Win32 server mailing list > > Subject: Re: [hlds] Eventscripts - Creating Windows Account > > > > Nothing new, Everybody can upload files to your server, becouse Valve > > dont wanna to use whitelist system, to allow only specific file > > extensions to be downloaded to only specific game directories. > > > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list archives, > > please visit: > > http://list.valvesoftware.com/mailman/listinfo/hlds > > > > > > _______________________________________________ > > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > > http://list.valvesoftware.com/mailman/listinfo/hlds > > > > > _______________________________________________ > To unsubscribe, edit your list preferences, or view the list archives, > please visit: > http://list.valvesoftware.com/mailman/listinfo/hlds > _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds __________ Information from ESET Smart Security, version of virus signature database 4910 (20100302) __________ The message was checked by ESET Smart Security. http://www.eset.com __________ Information from ESET Smart Security, version of virus signature database 4910 (20100302) __________ The message was checked by ESET Smart Security. http://www.eset.com _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds
