i was wondering does anyone know were i can find a patch for hlds exploit. im currently suffering from some lame script kiddies crashing my server. i wish i knew there ip anywayz hope someone knows.
btw am i the only server owner here?
kevin007
May 22 2004, 10:11 PM
Not a clue about the exploit, but if you want ips just set up a firewall or an IDS (intrusion detection system) or packet log
Firewall could also negate the crashes, i dont know if this is a vuln service taht the world must be able to access, if not, clamp down with a firewall.
If you don't have a firewall anyway, get one (zonealarm is ok and free == good for beginners, personally I prefer tiny firewall)
Get the idea that a firewall would be a useful protection
mortello
May 22 2004, 10:45 PM
HLDS Exploit Ritchey007 @ 3:55 am pst on 11/20/03 - servers & admins - 8 comments If you haven't been attune to the HLDS mailing list, you've missed out on a lovely little bug. Sv_allowdownload is great for allowing custom maps, wads, and sounds to transfer to the client upon connection. Too bad you can download everything else in the cstrike directory including configs, passwords, and maps(which will crash the server). VALVe knows about the problem and is working on a fix. I have verified this problem.
For now put: sv_allowdownload 0
In your server.cfg file to disallow downloading of content from the server. If you have custom maps this will stop people being able to get them.
We are working on a fix now, it should be out in a couple of days. I bet the exploit is gone by the end of the week. Until then, add/change sv_allowdownload 0 in the server.cfg.
h4x0re
May 23 2004, 12:22 AM
QUOTE (mortello @ May 22 2004, 10:45 PM)
HLDS Exploit Ritchey007 @ 3:55 am pst on 11/20/03 - servers & admins - 8 comments If you haven't been attune to the HLDS mailing list, you've missed out on a lovely little bug. Sv_allowdownload is great for allowing custom maps, wads, and sounds to transfer to the client upon connection. Too bad you can download everything else in the cstrike directory including configs, passwords, and maps(which will crash the server). VALVe knows about the problem and is working on a fix. I have verified this problem.
For now put: sv_allowdownload 0
In your server.cfg file to disallow downloading of content from the server. If you have custom maps this will stop people being able to get them.
We are working on a fix now, it should be out in a couple of days. I bet the exploit is gone by the end of the week. Until then, add/change sv_allowdownload 0 in the server.cfg.
thx mortello, i install serverdoc so ill be aight if it crash, but thx for the advice to disable downloading from the server. hopefully a patch soon
beginner??
i ben doin this h4xor & cs shit for years son
h4x0re
mortello
May 23 2004, 12:51 AM
QUOTE (h4x0re @ May 23 2004, 12:22 AM)
QUOTE (mortello @ May 22 2004, 10:45 PM)
HLDS Exploit Ritchey007 @ 3:55 am pst on 11/20/03 - servers & admins - 8 comments If you haven't been attune to the HLDS mailing list, you've missed out on a lovely little bug. Sv_allowdownload is great for allowing custom maps, wads, and sounds to transfer to the client upon connection. Too bad you can download everything else in the cstrike directory including configs, passwords, and maps(which will crash the server). VALVe knows about the problem and is working on a fix. I have verified this problem.
For now put: sv_allowdownload 0
In your server.cfg file to disallow downloading of content from the server. If you have custom maps this will stop people being able to get them.
We are working on a fix now, it should be out in a couple of days. I bet the exploit is gone by the end of the week. Until then, add/change sv_allowdownload 0 in the server.cfg.
thx mortello, i install serverdoc so ill be aight if it crash, but thx for the advice to disable downloading from the server. hopefully a patch soon
beginner??
i ben doin this h4xor & cs shit for years son
h4x0re
Never played CS, just a little search gave me those results
hope it works
flame
May 23 2004, 08:30 AM
i have tried hacking my own hl server with that exploit ages ago. and it works only on v 1.4 and 1.3 not 1.5 and not the new one.
chris105
May 23 2004, 07:53 PM
Guys come on chill, it doesnt matter if your a beginner or the biggest bad - ass hacker out there, we are all here to learn.
Oh and this is what forms the online community, BAH according to some studies released fighting is all too common on the internet but helps to build a community.
I dont know what the (filtered) im on about so im gonna shut up now
Mod Edit: This post had alot of meaning and alot of people on here should adhere to it. It stays.
For anybody else flaming, There has been one member in the past 2 days deleted for flaming. Zero Tolerance to it.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
anywayz hope someone knows.
