Jump to content
Mana

Server Crashing Commands And Remote Dos Exploit + Prevention

By Mana, in Team Fortress 2 Servers

Recommended Posts

Mana    3,867

Mana
Posted

Due to no fix from Valve yet and multiple requests from people that I make the cvars I found public so they could protect themselves I am making this thread. There is also a DOS style attack going around that can be prevented via plugin listed at the bottom.

I will start with these commands:

rr_reloadresponsesystems

sv_soundemitter_flush

sv_soundemitter_filecheck

More will be added later.

The above cvars can empty out a server if entered enough times or even cause a crash. Naturally sv_ cvars should only work on the server... but these work on the client. So here we are :(.

Prevention:

Those using Sourcemod can use this plugin:

blockcommands.zip

#include <sourcemod>

#define PLUGIN_VERSION "1.0"

public Plugin:myinfo =
{
name		= "Command Blocker",
description = "Adds the cheat flag to the commands specified below",
version	 = PLUGIN_VERSION,
author	  = "Mana"
}

public OnPluginStart()
{
new flags;
flags  = GetCommandFlags("rr_reloadresponsesystems");
SetCommandFlags("rr_reloadresponsesystems", flags|FCVAR_CHEAT);

flags  = GetCommandFlags("sv_soundemitter_flush");
SetCommandFlags("sv_soundemitter_flush", flags|FCVAR_CHEAT);

flags  = GetCommandFlags("sv_soundemitter_filecheck");
SetCommandFlags("sv_soundemitter_filecheck", flags|FCVAR_CHEAT);
}

VSP Plugin for OrangeBox engine for those with out Sourcemod (Made by Nephyrin):

http://www.nephyrin.net/NephCVUH_1.0.zip

ncp rr_reloadresponsesystems

ncp sv_soundemitter_flush

ncp sv_soundemitter_filecheck

DOS Style exploit:

This exploit simply sends zero sized UDP packets at a given interval (50 packets every 200 ms) which causes the server to send out empty packets back to clients making the game unplayable. Drunken F00l has made a plugin to fix this exploit:

http://www.sourceop.com/modules.php?name=D...etit&lid=31

  • Upvote 8

Share this post

Link to post
Share on other sites

Nket    16

Nket
Posted

Exploits are a fun and wholesome experience for the whole family

Share this post

Link to post
Share on other sites

Rivanor    1

Rivanor
Posted

Is this related to the Lotus server crashes? At first glance, these look like client-side DoS exploits, not server crashes.

(it seems like the lotus server is crashing hard because it always resets to a default map after the crash)

Share this post

Link to post
Share on other sites

Mana    3,867

Mana
Posted
Is this related to the Lotus server crashes? At first glance, these look like client-side DoS exploits, not server crashes.

(it seems like the lotus server is crashing hard because it always resets to a default map after the crash)

These are server crashing console commands (if abused correctly). They shouldn't work on a client. (Especially the sv_ ones) but they do. They initiate the functions on the server and if spammed enough will cause a crash. Course there are more than I listed. But the ones listed above are protected on our servers.

Share this post

Link to post
Share on other sites

- Mike -    2,728

- Mike -
Posted (edited)

Totes legit

Post 666, Satan be with you.

Edited by - Mike -
  • Upvote 1

Share this post

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Go To Topic Listing

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...