Do that, but you should also block the rcon port at your firewall, which is the tcp protocol for your game port.
Drek [AF] House of Fail wrote: > A side Note: If I set my rcon_password to "" (ie no password) does this > deny all rcon attempts? > > On Wed, Dec 17, 2008 at 3:30 PM, [AF] House of Fail <[email protected]>wrote: > > >> My rcon pw was not an easily bruteforced pw (different case letters, with >> more then 14 chars). I have no log of any attempts, execpt for the actual >> rcon, coming from the IP of the person who claimed he did it. We do use >> custom maps, but they are commonly used maps, (Ie cs_crackhouse). Sv_cheats >> was not on at the time. >> >> On Tue, Dec 16, 2008 at 2:16 PM, Seather <[email protected]> wrote: >> >> >>> also, >>> >>> re: sv cheats comment >>> as i recall it was a command like ent_fire, this may have been fixed >>> by adding another restrictive flag to it, >>> if not, there are many command blocking plugins, >>> http://forums.alliedmods.net/showthread.php?t=73828 >>> >>> a plugin to listen for commands sent to the server >>> http://forums.alliedmods.net/showthread.php?t=75648 >>> >>> many people make use of a quick sv_cheats 1 then sv_cheats 0 method, >>> its feasible cheat program could sneak a command into this small >>> window. >>> >>> if your do custom maps on your server, especially ones created by >>> people you know, >>> they might be setting your rcon password / etc, with a map entity, >>> point_servercommand, >>> grep -ai ,Command, *.bsp >>> >>> On Tue, Dec 16, 2008 at 10:58 AM, Seather <[email protected]> wrote: >>> >>>> i'm guessing that the most common problem involves admins uploading >>>> too many files to their fast download website, (server.cfg) >>>> >>>> On Mon, Dec 15, 2008 at 12:48 PM, [AF] House of Fail < >>>> >>> [email protected]> wrote: >>> >>>>> My rcon password was recently compromised by someone. I spoke with him >>>>> before he got it and he claimed he used a modified version of csdos to >>>>> >>> get >>> >>>>> it. I am reluctant to post it here, but I can email it privately to a >>>>> >>> valve >>> >>>>> employee. >>>>> >>>>> I currently have Sourcemod, Metamod:Source, and Eventscripts installed >>>>> >>> on my >>> >>>>> server (A css server) if it makes any difference. I am certain he got >>>>> >>> in >>> >>>>> because he banned my Steamid (a trivial thing to fix, but with far >>>>> >>> greater >>> >>>>> implications). >>>>> _______________________________________________ >>>>> To unsubscribe, edit your list preferences, or view the list archives, >>>>> >>> please visit: >>> >>>>> http://list.valvesoftware.com/mailman/listinfo/hlds_linux >>>>> >>>>> >>> _______________________________________________ >>> To unsubscribe, edit your list preferences, or view the list archives, >>> please visit: >>> http://list.valvesoftware.com/mailman/listinfo/hlds_linux >>> >>> >> >> -- >> -- [AF] House of Fail >> >> >> > > > _______________________________________________ To unsubscribe, edit your list preferences, or view the list archives, please visit: http://list.valvesoftware.com/mailman/listinfo/hlds_linux
