Jump to content

Spectator Hack Ban - Confirmed Working


ImportBot

Recommended Posts

Originally Posted by BriDawg*:

 

Hello all, I edit plugins and make insane limits for CMW. This was 100% confirmed today that this is working as we had someone logged in as a spectator who was immediately banned for a kill. This is to be added as a limit in Insane Limits plugin....

 

LumPenPacks' version with modifications:


Limit Evaluation

On Kill

 

First check

Expression

Code:

killer.Role == 1
Second check

Code

Code:

plugin.EABanPlayerWithMessage(EABanType.EA_GUID, EABanDuration.Permanent, killer.Name, 0, "Using Hacks - Bye (" + killer.Name + ")");
plugin.Log("Logs/SpectatorHacks.log", kill.Time.ToString() + " - " + killer.Name + " with GUID: " + killer.EAGuid + " was banned.");
plugin.PRoConChat(killer.Name + " with GUID: " + killer.EAGuid + " was banned.");
return false;

 

OP's original version:


 

Limit Evaluation: On Kill

First check: code

Code:

if(player.Role == 1)

return true;

 

return false;

 

second check disabled

 

limit action: EABan

EA Ban Type: EA_GUID

EA Ban Duration: Permanent

Our ban message: Permanent Ban for Use of Spectator Hack


 

You're servers will not be protected from the new spectator hack. I only release this because who knows how long it will take EA/DICE to figure out how to make FairFight catch it. Good night!

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by dyn*:

 

Have seen two individuals so far take advantage of this but this morning is the first time soemone was caught using the limit above. The first one was 'able to use admin say / yell commands and move people at will' and 'kill while not being visible in player list'. I wasn't in game to witness the 'admin say / yell' and the logs do NOT indicate this behavior. I'm guessing it was autobalance that was moving people and it was just a knife message on screen... can't confirm though. The spectator was most definitely able to kill individuals, however.

 

Sabz from DICE did reply to one of the threads so it would appear they know it exists. Without the limit above cheaters would be able to empty the server and they do not appear to be getting banned by fair fight either.

 

See the reports of users seeing this in game:

 

http://battlelog.battlefield.com/bf4...0494087957206/

 

http://battlelog.battlefield.com/bf4...87020073475/2/

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

Have seen two individuals so far take advantage of this but this morning is the first time soemone was caught using the limit above. The first one was 'able to use admin say / yell commands and move people at will' and 'kill while not being visible in player list'. I wasn't in game to witness the 'admin say / yell' and the logs do NOT indicate this behavior. I'm guessing it was autobalance that was moving people and it was just a knife message on screen... can't confirm though. The spectator was most definitely able to kill individuals, however.

 

Sabz from DICE did reply to one of the threads so it would appear they know it exists. Without the limit above cheaters would be able to empty the server and they do not appear to be getting banned by fair fight either.

 

See the reports of users seeing this in game:

 

http://battlelog.battlefield.com/bf4...0494087957206/

 

http://battlelog.battlefield.com/bf4...87020073475/2/

The admin say messages are simply their hack changing what the message looks like in chat, it doesn't have any special properties or functions, its just a regular chat message that has color changes on it. I've never seen anyone able to issue yells.

 

Also: 'Okay, today i saw one of these Cheaters, problem is, that guy was banned by FairFight few hours ago but still could use that spectator cheat few minutes ago.'

Fairfight doesn't block spectator joins? What?

 

Players in spectator are just invisible players it seems, probably the reason many hacks can tell who is spectating them and where. If they were able to just get their player operating normally while in spectator that would be insane.

Also, who is your friendly in spectator? Wouldn't everyone be your enemy? So it just becomes a free turkey shoot? This is really interesting.

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by LumPenPacK*:

 

Hello all, I edit plugins and make insane limits for CMW. This was 100% confirmed today that this is working as we had someone logged in as a spectator who was immediately banned for a kill. This is to be added as a limit in Insane Limits plugin....

Thanks for this limit.

 

Here's a version that will also log the bans with date time.

 

Limit Evaluation

On Kill

 

First check

Expression

Code:

player.Role == 1
Second check

Code

Code:

plugin.EABanPlayerWithMessage(EABanType.EA_GUID, EABanDuration.Permanent, player.Name, 0, "Using Hacks - Bye (" + player.Name + ")");
plugin.Log("Logs/SpectatorHacks.log", kill.Time.ToString() + " - " + player.Name + " with GUID: " + player.EAGuid + " was banned.");
plugin.PRoConChat(player.Name + " with GUID: " + player.EAGuid + " was banned.");
return false;
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by dyn*:

 

Ah! Didn't know that they were able to change the color of their text. That makes more sense. The yells / moves are likely unrelated.

 

My understanding of the cheaters being able to know where a spectator is, is the result of their hack knowing where everyone is. And spectators, I believe, report their position similar to a 'normal' player. So.. if two players are at the exact same coordinates (imagine a wall hack drawing boxes and knowing the location of all players), and they're at the coordinates of the cheater, then a spectator MUST be following the cheater.

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

Ah! Didn't know that they were able to change the color of their text. That makes more sense. The yells / moves are likely unrelated.

 

My understanding of the cheaters being able to know where a spectator is, is the result of their hack knowing where everyone is. And spectators, I believe, report their position similar to a 'normal' player. So.. if two players are at the exact same coordinates (imagine a wall hack drawing boxes and knowing the location of all players), and they're at the coordinates of the cheater, then a spectator MUST be following the cheater.

It would be so simple to just not send any spectator related information to players...they only know what the server sends them.
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by IAF-SDS*:

 

There's already a spectator exploit that allows a banned person to come back as a spectator and cause trouble. That should be reason enough to restrict the spectator slots for only admins, which would also deal with preventing access to this spectator killing hack.

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by LjMjollnir*:

 

i only open up a private spectator slot when i believe someone is hacking on the server.. but yeah its funny you see this guy going 30/0 and people complaining so i jump on spectator.. all of a sudden he's getting killed

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by PapaCharlie9*:

 

I edited the OP to make both versions easier to find.

 

Are legit spectators allowed to type chat? If so, it would be easy to detect them typing in-game admin commands, like @kick or !kill. If that's what they are doing to cheat.

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by dyn*:

 

Are legit spectators allowed to type chat? If so, it would be easy to detect them typing in-game admin commands, like @kick or !kill. If that's what they are doing to cheat.

Spectators are allowed to type.

 

For this cheat they somehow spawn in and are able to freely roam the map.... literally the only thing you see is a floating gun 'running' around. lol! There is a video of it out there but can't find it now.

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

There's already a spectator exploit that allows a banned person to come back as a spectator and cause trouble. That should be reason enough to restrict the spectator slots for only admins, which would also deal with preventing access to this spectator killing hack.

Have they finally fixed it so you can have more than 15 players in the spectator slot list?
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by IAF-SDS*:

 

I don't think so because none of the release notes show them changing it beyond the 15 allowed in the spectator slot list (but I haven't tested it for a couple months now).

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by dyn*:

 

Also just snagged another player using the spectator hack this morning. It doesn't look like the server / client update Monday prevents the spectator hack though hopefully now they're logging it with FF and will ban them.

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

Also just snagged another player using the spectator hack this morning. It doesn't look like the server / client update Monday prevents the spectator hack though hopefully now they're logging it with FF and will ban them.

Not a single spectator hack ban on our servers so far...

 

Also no reports from players in the server of it happening, so it looks like they are just avoiding our servers?

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by Hutchew*:

 

2 on ours using the IL limit, prior to adkats inclusion. None since. There have been reports of guns running around by themselves a few times, but no kills or bans.

 

Thanks for the heads up, CMW.

 

 

Hutchew

* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

2 on ours using the IL limit, prior to adkats inclusion. None since. There have been reports of guns running around by themselves a few times, but no kills or bans.

 

Thanks for the heads up, CMW.

 

 

Hutchew

Did you keep your version on IL running during this time? If not, please do, if it detects something that AdKats isn't, let me know.
* Restored post. It could be that the author is no longer active.
Link to comment
  • 2 weeks later...

Originally Posted by CEBEP78*:

 

Thanks for this limit.

 

Here's a version that will also log the bans with date time.

 

Limit Evaluation

On Kill

 

First check

Expression

Code:

player.Role == 1
Second check

Code

Code:

plugin.EABanPlayerWithMessage(EABanType.EA_GUID, EABanDuration.Permanent, player.Name, 0, "Using Hacks - Bye (" + player.Name + ")");
plugin.Log("Logs/SpectatorHacks.log", kill.Time.ToString() + " - " + player.Name + " with GUID: " + player.EAGuid + " was banned.");
plugin.PRoConChat(player.Name + " with GUID: " + player.EAGuid + " was banned.");
return false;
Hello, say please, I got it right or no, if I itself (administrator) banned on a server ( through admin tools Rconnet ), that I will not be able to call at spectator?
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

Hello, say please, I got it right or no, if I itself (administrator) banned on a server ( through admin tools Rconnet ), that I will not be able to call at spectator?

Assuming you are asking if spectators are still allowed in the server after they are added to the ban list. I think that bug was fixed, but i'm not certain.
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by LumPenPacK*:

 

Hello, say please, I got it right or no, if I itself (administrator) banned on a server ( through admin tools Rconnet ), that I will not be able to call at spectator?

You don't need to use this limit any more. This exploit has been fixed with the last server patch.
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ColColonCleaner*:

 

You don't need to use this limit any more. This exploit has been fixed with the last server patch.

He's not asking about the spectator hack, he's asking whether spectators can still join the server when they are in the banlist. Is that bug still there? I don't know whether it was fixed.
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by LumPenPacK*:

 

He's not asking about the spectator hack, he's asking whether spectators can still join the server when they are in the banlist. Is that bug still there? I don't know whether it was fixed.

Uhh, to be honest I didn't understand his request (while drinking beer in a bar). I have no idea if this join bug has been fixed.
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by CEBEP78*:

 

Uhh, to be honest I didn't understand his request (while drinking beer in a bar). I have no idea if this join bug has been fixed.

Yes, what is important me the player of banned permanent (or temporally), could not call at spectator .
* Restored post. It could be that the author is no longer active.
Link to comment

Originally Posted by ty_ger07*:

 

Yes, what is important me the player of banned permanent (or temporally), could not call at spectator .

The easiest way to find out is to ban yourself or a friend and then try to join as a spectator.
* Restored post. It could be that the author is no longer active.
Link to comment

Archived

This topic is now archived and is closed to further replies.



  • Our picks

    • Game Server Hosting:

      We're happy to announce that EZRCON will branch out into the game server provider scene. This is a big step for us so please having patience if something doesn't go right in this area. Now, what makes us different compared to other providers? Well, we're going with the idea of having a scaleable server hosting and providing more control in how you set up your server. For example, in Minecraft, you have the ability to control how many CPU cores you wish your server to have access to, how much RAM you want to use, how much disk space you want to use. This type of control can't be offered in a single service package so you're able to configure a custom package the way you want it.

      You can see all the available games here. Currently, we have the following games available.

      Valheim (From $1.50 USD)


      Rust (From $3.20 USD)


      Minecraft (Basic) (From $4.00 USD)


      Call of Duty 4X (From $7.00 USD)


      OpenTTD (From $4.00 USD)


      Squad (From $9.00 USD)


      Insurgency: Sandstorm (From $6.40 USD)


      Changes to US-East:

      Starting in January 2022, we will be moving to a different provider that has better support, better infrastructure, and better connectivity. We've noticed that the connection/routes to this location are not ideal and it's been hard getting support to correct this. Our contract for our two servers ends in March/April respectively. If you currently have servers in this location you will be migrated over to the new provider. We'll have more details when the time comes closer to January. The new location for this change will be based out of Atlanta, GA. If you have any questions/concerns please open a ticket and we'll do our best to answer them.
      • 5 replies
    • Hello All,

      I wanted to give an update to how EZRCON is doing. As of today we have 56 active customers using the services offered. I'm glad its doing so well and it hasn't been 1 year yet. To those that have services with EZRCON, I hope the service is doing well and if not please let us know so that we can improve it where possible. We've done quite a few changes behind the scenes to improve the performance hopefully. 

      We'll be launching a new location for hosting procon layers in either Los Angeles, USA or Chicago, IL. Still being decided on where the placement should be but these two locations are not set in stone yet. We would like to get feedback on where we should have a new location for hosting the Procon Layers, which you can do by replying to this topic. A poll will be created where people can vote on which location they would like to see.

      We're also looking for some suggestions on what else you would like to see for hosting provider options. So please let us know your thoughts on this matter.
      • 4 replies
    • Added ability to disable the new API check for player country info


      Updated GeoIP database file


      Removed usage sending stats


      Added EZRCON ad banner



      If you are upgrading then you may need to add these two lines to your existing installation in the file procon.cfg. To enable these options just change False to True.

      procon.private.options.UseGeoIpFileOnly False
      procon.private.options.BlockRssFeedNews False



       
      • 2 replies
    • I wanted I let you know that I am starting to build out the foundation for the hosting services that I talked about here. The pricing model I was originally going for wasn't going to be suitable for how I want to build it. So instead I decided to offer each service as it's own product instead of a package deal. In the future, hopefully, I will be able to do this and offer discounts to those that choose it.

      Here is how the pricing is laid out for each service as well as information about each. This is as of 7/12/2020.

      Single MySQL database (up to 30 GB) is $10 USD per month.



      If you go over the 30 GB usage for the database then each additional gigabyte is charged at $0.10 USD each billing cycle. If you're under 30GB you don't need to worry about this.


      Databases are replicated across 3 zones (regions) for redundancy. One (1) on the east coast of the USA, One (1) in Frankfurt, and One (1) in Singapore. Depending on the demand, this would grow to more regions.


      Databases will also be backed up daily and retained for 7 days.




      Procon Layer will be $2 USD per month.


      Each layer will only allow one (1) game server connection. The reason behind this is for performance.


      Each layer will also come with all available plugins installed by default. This is to help facilitate faster deployments and get you up and running quickly.


      Each layer will automatically restart if Procon crashes. 


      Each layer will also automatically restart daily at midnight to make sure it stays in tip-top shape.


      Custom plugins can be installed by submitting a support ticket.




      Battlefield Admin Control Panel (BFACP) will be $5 USD per month


      As I am still working on building version 3 of the software, I will be installing the last version I did. Once I complete version 3 it will automatically be upgraded for you.





      All these services will be managed by me so you don't have to worry about the technical side of things to get up and going.

      If you would like to see how much it would cost for the services, I made a calculator that you can use. It can be found here https://ezrcon.com/calculator.html

       
      • 11 replies
    • I have pushed out a new minor release which updates the geodata pull (flags in the playerlisting). This should be way more accurate now. As always, please let me know if any problems show up.

       
      • 9 replies
×
×
  • Create New...

Important Information

Please review our Terms of Use and Privacy Policy. We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.