-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
There are a number of exploits that have gone unpatched in srcds for
awhile. I'm unsure why this is, since the fixes for some of them are
trivial (adding the FCVAR_CHEATS flag, adding cvar bounds, etc).
Regardless, I've developed a plugin that deals with most of the ones I
know of, since Valve seems unwilling to handle them.
So, here's the list:
* Executing harmful commands via ent_fire/ent_create if cheats are on
* Around 10 or so commands that can be used to lag the server
(adds the cheats flag to them)
* Loading plugins clientside, allowing you to use cheat commands
* Clients are be able to teleport, regardless of cheats/plugins on
server.
You can get the plugin from
https://forums.alliedmods.net/showthread.php?p=845824#post845824 . If
anyone's aware of exploits I've missed, shoot me an email off the list
and I'll look into fixes for them.
- - Brian Rak
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkowEsoACgkQdYIfzEQqW+n3kACgljmEZgC+7IQq6fFQ6S5EBFJ2
0SYAoJkaiR9EQFGxJ4B5IVWicWFo53xQ
=RXd3
-----END PGP SIGNATURE-----
_______________________________________________
To unsubscribe, edit your list preferences, or view the list archives, please
visit:
http://list.valvesoftware.com/mailman/listinfo/hlds_linux
