dont use rcon if you can help it. rcon_password "" install amx or am and use the admin_rcon funcs. Much safer.
Chris -----Original Message----- From: D. Batastini [mailto:[EMAIL PROTECTED] Sent: 20 November 2003 15:50 To: [EMAIL PROTECTED] Subject: RE: [hlds_linux] [Full-Disclosure] Half Life dedicated server informationleak and DoS Personally, The only thing I am afraid of is someone gaining RCON to my servers. Is there anyway to set the rcon password in the command line as opposed to server.cfg? I am still aware of the inherent risk of the rcon password in the log files, but the amount of time I actually use rcon, as compared to the total amount of log files... I'd almost be willing to give someone with that much patience rcon. D.Batastini -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Frank Stollar Sent: Thursday, November 20, 2003 10:06 AM To: [EMAIL PROTECTED] Subject: Re: [hlds_linux] [Full-Disclosure] Half Life dedicated server informationleak and DoS Florian Zschocke wrote: <snip> > "Below" meaning farther away from the root dir and "above" meaning > nearer to the root dir. Maybe that is where the misunderstanding > stems from. <\snip> Florian is right with his statement. I tried this exploit by myself on my servers and in the big sens it work, but not all like I expected. In cs1.5 you can download any file below cstrike like server.cfg oder addons/amx/users.ini and so on. In cs1.6 I was not able to download the server.cfg as every time cs creates at startup new files. And also after deleting while cs is running in steam, it will not download them. But other help config files like test.cfg will be downloaded without a hassle. That means, it is not as easy in cs1.6 as in 1.5 to get rcon access. But on the other hand it is no problem to generate a directory called 'logs' and make e.g. 'cmd dlfile logs/L1120000.log'. And if you used your rcon anytime during that timeperiod of the logfile, the rcon is standing there in plain text. I also tried to trick the dlfile to get access above the cstrike directory with a few unix-specific chars, tried to call sh oder ln but all failed. At least this seems to be save now. I switched of sv_allowdownload on all servers and it seems not vulnerable anymore. cheers, Frank _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux *********************************************** This e-mail and its attachments are confidential and are intended for the above named recipient only. If this has come to you in error, please notify the sender immediately and delete this e-mail from your system. You must take no action based on this, nor must you copy or disclose it or any part of its contents to any person or organisation. Statements and opinions contained in this email may not necessarily represent those of Littlewoods. Please note that e-mail communications may be monitored. The registered office of Littlewoods Limited and its subsidiaries is 100 Old Hall Street, Liverpool, L70 1AB. Registered number of Littlewoods Limited is 262152. ************************************************ _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
