How to stop this CHEAT - HACKED DEDI SERVER

[Speed]

Hi Speed, thanks for showing an interest in this thread!

 

 

 

If your script can detect planes spawning in the air, both AI and human controlled, then that might be a good way of stopping this cheat. I would've done the same using the mission triggers, but both the human controlled and AI planes are obviously not listed in the server side mission file.

 

Let me know if I can be of help porting your code to FC2.

 

With the near future release of FC 3, I wasn't planning on trying to port anything over. I've got a tremendous amount of stuff on my plate already, so honestly, I wouldn't have the time. I don't even have FC2 or BS1 installed. However, if there is someone in the FC2 community that has lots of Lua experience and has the time and interest in making a FC2/BS1 cheat monitor, I would be willing to provide assistance and provide the relevant code to start with.

[Speed]

Yep, you're overlooking stuff, and I'm not talking. I'll leave it at that :)

Good. Don't. While I was typing the last post, I thought of perhaps an alternative, very simple way to do a nuke hack. Donno if it work though. If a certain assumption I made about Config/Weapons is wrong, then it would work just fine.

 

 

Because of the way this hack is accomplished, you wouldn't be able to prevent it from happening. That's why - on the other hand, the devs should be able to stop this cold. Not that software security is easy, and it isn't always perfect, but this one should be fixable.

Yea, but if you make it so after the guy initiates his hack he gets booted from the game or dies immediately... the douch bag gives up and your problem is solved too. Many of the likely ways I can think of that the devs might combat it could also be circumvented. About the only way to stop it completely would be to well, I'd rather not say.

 

But if the guy isn't very good at this, then even a basic approach would probably stop him.... hence, I'll wait till FC3 comes out, and if there are still problems, I'll think about trying to tackle the problem then. In the meantime, if someone would like to canibalize large segments of Slmod to create a cheat monitor/detector for FC2, then they can be my guest. I'll even tell them what I think they need to do. I'm pretty sure I know what to do, what I don't have is the time to test it, retest it, etc. till it works.

[Moa]

Actually you can auto-kick people in FC2 pretty easily if they don't have a callsign or UCID (that is, people with cracked versions of the game).

 

Turns out these hackers appear to have legitimate versions (that is, they have a UCID - many thanks for the info Case). It is just as easy to then ban by UCID, which is what the 104th have done. For the hackers to get connected again they would either have to go to a cracked game (and get auto-kicked for no UCID) or buy a new license (which I guarantee they will tire of well before the server admins do, provided we keep sharing data to make such bans easy)

 

In FC2 you can find out when new objects appear in game using the export functionality (on the server, even if global exports are disabled - but this requires a customized export script to run the check code). You can then detect when a large number of objects are created in-game and then choose to log/kick. There might be a small performance penalty when you compare the old list of objects to the new list of objects each time, but it shouldn't be too bad.

 

Not volunteering to do this though - besides my pathological hate of Lua (I do it only because sometimes there is no alternative) I also have too much to do at the moment.

[Cali]

So, maybe try this, since we know around what time he hacks the server......maybe fly in the 104th for the next few days and see what happens.

[Case]

Turns out these hackers appear to have legitimate versions (that is, they have a UCID - many thanks for the info Case). It is just as easy to then ban by UCID, which is what the 104th have done. For the hackers to get connected again they would either have to go to a cracked game (and get auto-kicked for no UCID) or buy a new license (which I guarantee they will tire of well before the server admins do, provided we keep sharing data to make such bans easy)

 

Though I have no hard evidence, I am of the impression that some people can change their UCID. Whether this is due to multiple copies, or a hack, I do not know. As such, UCID banning is not foolproof. Similarly, I have hard evidence that legitimate players will sometimes connect with an empty UCID, while the next time they have their normal UCID. Then there are even different people that share the same UCID.

 

So all in all, UCID banning is not the answer to this problem, and I am getting more and more convinced that if this cheat persists, UCID whitelisting may be the only option.

[bird-1]

Hehe, everybody wants to know how to cheat will learn a lot from this thread.

 

In FC2, there is not any perfect way to prevent cheat 100 percent, what we can do is hoping FC3 will be better on this.

[Bee_Sting]

did this happen in FC1? what does all these servers have in common? i know that some of the servers allows the su27 and the su33 to use the r-77,which may have open the door to this hack. i suggest the servers go back to not having this r-77 thing and see what happens! just a thought!

[Rhinox]

Though I have no hard evidence, I am of the impression that some people can change their UCID.

Of course they can.

Edited January 12, 2012 by 159th_Viper
Rule 1.8

[124SqZeljava]

You will defete it. S!

Edited January 12, 2012 by =124Sq=Zeljava

[leafer]

Wow. This is interesting. Any chance of identifying who this person is?

[Sanch0]

Wow. This is interesting. Any chance of identifying who this person is?

Yes, collected data can show who it is.

[104th_Crunch]

did this happen in FC1? what does all these servers have in common? i know that some of the servers allows the su27 and the su33 to use the r-77,which may have open the door to this hack. i suggest the servers go back to not having this r-77 thing and see what happens! just a thought!

 

Other forms of cheating existed in FC1. That is why ED introduced Integrity Checking. Allowing R-77s has nothing to do with this. It just means that the weapons files are not integrity checked is all. Other Russian servers have more strict checking and are still having this cheat done on their server.

 

I am sure ED are listening and hope thing can improve quick. Lock it all down!

[Slayer]

Over a year ago during a BS1/FC2 game some hack joined and used a nuke that totally blew the base away like in the original posters pic.

 

This has been going on for a long long time. Even back to FC1 when it was really popular for a while the hacks were rampant and the forums were ablaze in flame wars and finger pointing. Eventually the cheaters and hackers got bored of it and moved on to other games and only the die hards remained. Now it seems they are coming back as new titles are released.

 

It's sad to log on to multiplayer and see every single server locked except 1 or 2...you cant just come home from work and jump in a game quick and fly for an hour anymore you gotta register on everyones forum and join their teamspeak blah blah blah.

 

Garbage.... these loosers need to be dealt with quickly and with a heavy hand this time before MP is totally ruined.

[4c Hajduk Veljko]

This is indeed very serious attack on dedicated servers providers. We are spending our money, countless man hours in creating an maintaining maps and servers for everybody to enjoy. We need help, serious help.

[124SqZeljava]

Help is packed with FC 3, stay tuned and don`t worry;)

[141st_Eko1]

I hope.

[Pilotasso]

I got no idea when FC3 will finally come out, lets hold our breaths :huh:

[Sanch0]

Don't hold your breath, developing FC 1.3 will take months :smilewink:

[59th_LeFty]

 

Sorry for the OFF :D

[Pilotasso]

Just noticed the number of servers available online has drastically changed. None of the Servers I frequent even show up. :(

[Teknetinium]

............

Edited January 14, 2012 by Teknetinium

[Svend_Dellepude]

Is it possible that this guy is able to edit the miz file that is downloaded locally when you join a server? ie. Make some mod for himself, patch the game locally, edit the miz file, unpatch the mod and then join the server that host the mission and somehow use the local changes?

[Devilman]

from flanker 2.5 you would 'add ' your own plane and waypoints to the host, perhaps this person has found a way to do same thing and make them ai.

[Insanatrix]

Can you use the built in integrity check to check the .miz file?

[Slayer]

After reading through this thread I'm pretty sure I know how that person is doing it. It's probably so simple...Should be really easy for ED to fix. I'll say no more because if I'm right it would spread like a wildfire.