A Sidenote to Dedimania (Xaseco)

Discuss everything about Xymph's Aseco flavoured server control scripts for TM Forever / classic TMN and for TM² Canyon.

Moderators: Xymph, TM-Patrol

Post Reply
Kripke
smooth traffic navigator
smooth traffic navigator
Posts: 296
Joined: 16 Oct 2009 18:36
Owned TM-games: tmu
Manialink(s): kripke

A Sidenote to Dedimania (Xaseco)

Post by Kripke » 07 Feb 2015 00:16

I have someone, who "cheated" on dedimania, but the cheater never played on this server. I'm shocked, that Alinoa cheated on the jff Speed server, but she never drove it?

http://kreipe.patrick.coolserverhosting ... aHacks.mp4

I was on a TeamSpeak server with some member and the real hacker, which show us the problem, that logins will be banned for no reason. He told us too, the he banned the accounts from the developpers, and they seems not to care about this issue. It's hardcore sad, that poeple wasting my time with this, but it seems necessary to show you this.

In this video, you see that alinoa is hacking on a server, included her login, but she never drove.
http://dedimania.net/tmstats/?do=stat&R ... ow=RECORDS

The Hacker on TS was "meh" and played anonymous. He told us, that he reported it on dedimania.net for a long time.

A login like "ralflehmann" or the nations account from tmserver.org "n0-0ne" is banned already, but they did not cheated?

So, what is the answer?
Thanks a lot for your attention
Do you need Coppers? Click here
Image
Image
________________
PC-specs: Intel Core i7-3770k CPU @ 3.50GHz | 32GB Ram | Windows7 prof. ed. 64 Bit | Nvidia GTX 680

Clown
highway camper
highway camper
Posts: 1
Joined: 07 Feb 2015 00:20
Owned TM-games: TMUF

Re: A Sidenote to Dedimania (Xaseco)

Post by Clown » 07 Feb 2015 00:26

Well, i'm One of those Guys who was on the TS Server.

We talked with the Hacker, and his Only Goal was to Show some Mistakes in XASECO and Dedimania, that Slig and xymph put Gamers on the Dedi Blacklist, who "cheated." Our Friend "ralflehmann" was Hacked from this Guy too. Today he showed us in The Video, which Kripke postet, how he Done that. I have the Track in Full Lenght, if You want to See it, i can Upload it Too.

He was Ignored from the Dev Team. He hacked the Accounts fom xymph and slig too, and they only erased The Records, and nothing Happened...

Please, erase "ralflehmann" (you can find the Link from the Banned Users here: BLACKLIST!!!), he is the Last Name on the List...

Or: Clean the Whole List! Nobody know's who Cheated and who not. The Blacklist is just filled up with Random Guys, i would like to See the Method, how the Players are "chosen" for the Blacklist? Anybody can Say it?

Please try to Fix that Mistakes, Thank you!

Xymph
Pit Crew
Pit Crew
Posts: 5708
Joined: 19 Aug 2007 12:58
Owned TM-games: TMN, TMU, TMF, TM²
Contact:

Re: A Sidenote to Dedimania (Xaseco)

Post by Xymph » 07 Feb 2015 09:46

Just a quick note: Nadeo, Slig and I are aware of the problem, just because we're not posting much doesn't mean we're not doing anything.
sotn0r posted about it yesterday too.

I saw and deleted the 'alinoa' entry already. The video shows just the hacked time, not how the login was impersonated in the first place. That's what we need to address.

Kripke, do you have more information that can helps us find the post by 'meh' on dedimania.net? Or how the impersonation is done? Feel free to contact me directly with confidential info.

Clown, please write normal English, it's very annoying that You start Every other Word with a capital. :roll:
I reverted the ban on 'ralflehmann' and restored the recs, already started to suspect it was just an innocent bystander.

People that are whining about how bad this is, are not helping. What could help is exact information about how the hack works, and ideas how to prevent it. Thanks.
Developer of XASECO for TMF/TMN ESWC & XASECO2 for TM²: see XAseco.org
Find your way around the Mania community from the TMN ESWC hub, TMF hub, TM² hub, and SM hub

Kripke
smooth traffic navigator
smooth traffic navigator
Posts: 296
Joined: 16 Oct 2009 18:36
Owned TM-games: tmu
Manialink(s): kripke

Re: A Sidenote to Dedimania (Xaseco)

Post by Kripke » 07 Feb 2015 10:12

Xymph wrote:Just a quick note: Nadeo, Slig and I are aware of the problem, just because we're not posting much doesn't mean we're not doing anything.

I saw and deleted the 'alinoa' entry already. The video shows just the hacked time, not how the login was impersonated in the first place. That's what we need to address.

Kripke, do you have more information that can helps us find the post by 'meh' on dedimania.net? Or how the impersonation is done? Feel free to contact me directly with confidential info.
Well, I'm not the hoster of these server or know the real name from the hack or even the hacker itself. The nickname/login 'meh' was only given as TeamSpeak nickname. For 2 days, he drove with the login "ÿ". He drove always the first place, but the local/dedi itself was not recorded. Pls don't ask me how, but it was still impressive. Well, and it was not possible to add him as friend, check this with 'freigeben' or to report.

As far as I know, you should contact Sotn0r, he hosts these server from JFF (because JFF host server from him). I think he will give you the logs from Xaseco from these server where this happens.

This video shows her 'faked' login at the end, if I click on the scoreboard on her nickname? or do you mean something else?^^

I just know, that this guy was a 'victim' from 2011, which was banned from dedimania because of this kind of reason (but if it's true is an other thing). He told us in TeamSpeak, that this leak (or however we name this) exist since 2011 and posted this issue in your dedimaniaforum (and he couldn't give us the link too). Maybe you can check your forum-post from 2011 where this happens, if he really posted something like that.

Have a nice day :thumbsup:
Do you need Coppers? Click here
Image
Image
________________
PC-specs: Intel Core i7-3770k CPU @ 3.50GHz | 32GB Ram | Windows7 prof. ed. 64 Bit | Nvidia GTX 680

los.coy
highway camper
highway camper
Posts: 2
Joined: 24 Jul 2012 09:54
Owned TM-games: TMS, TMUF, TM2
Manialink(s): lc

Re: A Sidenote to Dedimania (Xaseco)

Post by los.coy » 07 Feb 2015 11:26

I'm not sure whether you already noticed, but in Kripke's Video Alinoa's location is in "World/Germany/Fuhrerbunker", which (most certainly) is not one of the preset folders you can choose from...

Couldn't it be that this particular exploit isn't related to XAseco or Dedimania, and instead the entry to the rabbit hole is somewhere on Nadeo's side?
Once he knows the loginnames and passwords of the respective serverowners he can give admins to any account and then just use a "normal" cheat-tool to set the dedis?

Just my two cents.

Xymph
Pit Crew
Pit Crew
Posts: 5708
Joined: 19 Aug 2007 12:58
Owned TM-games: TMN, TMU, TMF, TM²
Contact:

Re: A Sidenote to Dedimania (Xaseco)

Post by Xymph » 07 Feb 2015 13:11

los.coy wrote:I'm not sure whether you already noticed, but in Kripke's Video Alinoa's location is in "World/Germany/Fuhrerbunker", which (most certainly) is not one of the preset folders you can choose from...
Yes I noticed, the zone is hacked too.
los.coy wrote:Couldn't it be that this particular exploit isn't related to XAseco or Dedimania, and instead the entry to the rabbit hole is somewhere on Nadeo's side?
That is indeed what I suspect is happening, but I'd still like to hear from anyone with detailed info.

Keep in mind the following chain of game information (like login, zone, etc):

TMF client -> TMF server -> server controller -> Dedimania

If the hack to fake that info happens at the beginning of the chain, there's not a lot we can do at the last two steps. :|
los.coy wrote:Once he knows the loginnames and passwords of the respective serverowners he can give admins to any account and then just use a "normal" cheat-tool to set the dedis?
The passwords aren't even needed I think, with a faked masteradmin login a server that doesn't use IP restrictions is wide open to abuse.

The cheated Dedimania records are unrelated, any non-admin login can do that, but they did attract my attention to the problem earlier this week.

Kripke wrote:As far as I know, you should contact Sotn0r, he hosts these server from JFF (because JFF host server from him). I think he will give you the logs from Xaseco from these server where this happens.
He already did. We're also trying to get a discussion with Nadeo going on this, but it's the weekend now...
Kripke wrote:This video shows her 'faked' login at the end, if I click on the scoreboard on her nickname? or do you mean something else?
I mean detailed info on how the login and zone are set to someone else's, not how they look when viewed in a server.
Kripke wrote:I just know, that this guy was a 'victim' from 2011, which was banned from dedimania because of this kind of reason (but if it's true is an other thing). He told us in TeamSpeak, that this leak (or however we name this) exist since 2011 and posted this issue in your dedimania forum (and he couldn't give us the link too). Maybe you can check your forum-post from 2011 where this happens, if he really posted something like that.
That's a needle in a haystack, there are too many posts in 2011 (or any year) to make that viable without keyword(s) to search for.
Developer of XASECO for TMF/TMN ESWC & XASECO2 for TM²: see XAseco.org
Find your way around the Mania community from the TMN ESWC hub, TMF hub, TM² hub, and SM hub

Kripke
smooth traffic navigator
smooth traffic navigator
Posts: 296
Joined: 16 Oct 2009 18:36
Owned TM-games: tmu
Manialink(s): kripke

Re: A Sidenote to Dedimania (Xaseco)

Post by Kripke » 07 Feb 2015 18:27

Xymph wrote:
Kripke wrote:This video shows her 'faked' login at the end, if I click on the scoreboard on her nickname? or do you mean something else?
I mean detailed info on how the login and zone are set to someone else's, not how they look when viewed in a server.
I don't know how, he just did it. If you opened his profil, he cames from mars for 3 days. He changes it like a nickname
Do you need Coppers? Click here
Image
Image
________________
PC-specs: Intel Core i7-3770k CPU @ 3.50GHz | 32GB Ram | Windows7 prof. ed. 64 Bit | Nvidia GTX 680

TheBigG
smooth traffic navigator
smooth traffic navigator
Posts: 233
Joined: 16 Oct 2010 19:45
Owned TM-games: TMN! TMF
Location: Germany

Re: A Sidenote to Dedimania (Xaseco)

Post by TheBigG » 08 Feb 2015 10:06

everything is cleartext you will always be able to spoof things and i would be very suprised if Nadeo would change that.
Its a fight that nadeo have to fight.

Alinoa
Developer
Developer
Posts: 1421
Joined: 18 Apr 2007 16:32

Re: A Sidenote to Dedimania (Xaseco)

Post by Alinoa » 09 Feb 2015 08:48

Xymph and other players provided us with information by email last weekend. Please keep on using this thread for reporting other information. Thanks all for your cooperation :)
To add a server in your favorit list, copy this link in your game’s browser address bar
tmtp://#addfavourite=serverlogin

For direct hosting open to all, write <hide_server>1</hide_server> in the command line and use
tmtp://#join=serverlogin

sl|cay
pedestrian
pedestrian
Posts: 5
Joined: 16 Nov 2011 00:11
Owned TM-games: TMU

New major security issue

Post by sl|cay » 09 Feb 2015 15:58

Hi guys,

there seems to be a new major security issue with the trackmania gameserver.
A few days ago, this happened (I cut the relevant parts, xaseco logs):

Code: Select all

[02/04,21:32:36] << player 72 joined the game [n0-0ne : ѕоҒαメαριαη : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:33:41] player n0-0ne used chat command "/admin "
[02/04,21:33:41] n0-0ne tried to use admin chat command (no permission!):  
[02/04,21:34:41] >> player 72 left the game [n0-0ne : ѕоҒαメαριαη : 00:02:05]
[02/04,21:34:58] >> player 228 left the game [natascha90 : $000《ςし》$w$C00Tasjah : 00:20:48]
[02/04,21:34:58] << player 221 joined the game [natascha90 : ѕоҒαメαριαη : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:35:22] player natascha90 used chat command "/admin "
[02/04,21:35:22] natascha90 tried to use admin chat command (no permission!):  
[02/04,21:35:30] >> player 221 left the game [natascha90 : ѕоҒαメαριαη : 00:00:32]
[02/04,21:35:30] << player 11 joined the game [natascha90 : $000《ςし》$w$C00Tasjah : Netherlands : 112414 : 37.251.19.74]
[02/04,21:35:38] >> player 11 left the game [natascha90 : $000《ςし》$w$C00Tasjah : 00:00:08]
[02/04,21:35:39] << player 50 joined the game [natascha90 : ѕоҒαメαριαη : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:35:43] >> player 50 left the game [natascha90 : ѕоҒαメαριαη : 00:00:04]
[02/04,21:35:43] << player 207 joined the game [natascha90 : $000《ςし》$w$C00Tasjah : Netherlands : 112414 : 37.251.19.74]
[02/04,21:35:57] >> player 207 left the game [natascha90 : $000《ςし》$w$C00Tasjah : 00:00:14]
[02/04,21:35:58] << player 232 joined the game [natascha90 : ѕоҒαメαριαη : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:36:16] >> player 232 left the game [natascha90 : ѕоҒαメαριαη : 00:00:18]
[02/04,21:36:16] << player 225 joined the game [natascha90 : $000《ςし》$w$C00Tasjah : Netherlands : 112414 : 37.251.19.74]
[02/04,21:36:22] >> player 225 left the game [natascha90 : $000《ςし》$w$C00Tasjah : 00:00:06]
[02/04,21:36:22] << player 195 joined the game [natascha90 : ѕоҒαメαριαη : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:36:42] player natascha90 used chat command "/admin server"
[02/04,21:36:49] player natascha90 used chat command "/admin shutdown"
[02/04,21:36:49] natascha90 tried to use admin chat command (no permission!): shutdown 
[02/04,21:37:00] >> player 195 left the game [natascha90 : ѕоҒαメαριαη : 00:00:38]
[02/04,21:37:01] << player 220 joined the game [natascha90 : $000《ςし》$w$C00Tasjah : Netherlands : 112414 : 37.251.19.74]
[02/04,21:37:35] GetPlayerInfo failed for kfc negert -- notified & kicked
[02/04,21:49:27] << player 4 joined the game [lithiumion : aap : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:49:47] player lithiumion used chat command "/admin setcomment REKT BY ADOLF HITLER"
[02/04,21:49:48] MasterAdmin [lithiumion] set new server comment [REKT BY ADOLF HITLER]
[02/04,21:50:11] player lithiumion used chat command "/admin setservername REKT BY ADOLF HITLER"
[02/04,21:50:11] MasterAdmin [lithiumion] set new server name [REKT BY ADOLF HITLER]
[02/04,21:50:18] player lithiumion used chat command "/admin shutdownall"
At the same time, from the gameserver logfiles:

Code: Select all

[2015/02/04 21:32:36] Connection of a new player: n0-0ne(178.162.205.29:2350)
[2015/02/04 21:34:41] Disconnection of n0-0ne(178.162.205.29:2350)
[2015/02/04 21:34:58] Disconnection of natascha90(37.251.19.74:2350)
[2015/02/04 21:34:58] Connection of a new player: natascha90(178.162.205.29:2350)
[2015/02/04 21:35:30] Disconnection of natascha90(178.162.205.29:2350)
[2015/02/04 21:35:30] Connection of a new player: natascha90(37.251.19.74:2350)
[2015/02/04 21:35:38] Disconnection of natascha90(37.251.19.74:2350)
[2015/02/04 21:35:38] Connection of a new player: natascha90(178.162.205.29:2350)
[2015/02/04 21:35:43] Disconnection of natascha90(178.162.205.29:2350)
[2015/02/04 21:35:43] Connection of a new player: natascha90(37.251.19.74:2350)
[2015/02/04 21:35:57] Disconnection of natascha90(37.251.19.74:2350)
[2015/02/04 21:35:57] Connection of a new player: natascha90(178.162.205.29:2350)
[2015/02/04 21:36:16] Disconnection of natascha90(178.162.205.29:2350)
[2015/02/04 21:36:16] Connection of a new player: natascha90(37.251.19.74:2350)
[2015/02/04 21:36:22] Disconnection of natascha90(37.251.19.74:2350)
[2015/02/04 21:36:22] Connection of a new player: natascha90(178.162.205.29:2350)
[2015/02/04 21:37:00] Disconnection of natascha90(178.162.205.29:2350)
[2015/02/04 21:37:00] Connection of a new player: natascha90(37.251.19.74:2350)
[2015/02/04 21:37:29] Connection of a new player: kfc negert(178.162.205.29:2350)
[2015/02/04 21:37:29] Ban : internal checks (0) failed for 'kfc negert'.
[2015/02/04 21:37:29] Disconnection of (178.162.205.29:2350)
[2015/02/04 21:49:27] Connection of a new player: lithiumion(178.162.205.29:2350)
On the next server:

Code: Select all

[02/04,21:46:13] << player 5 joined the game [013kevin : aap : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:46:40] player 013kevin used chat command "/admin setservername REKT BY ADOLF HITLER"
[02/04,21:46:40] 013kevin tried to use admin chat command (no permission!): setservername REKT BY ADOLF HITLER
[02/04,21:46:47] player 013kevin used chat command "/admin listmasters"
[02/04,21:47:05] >> player 5 left the game [013kevin : aap : 00:00:52]
[02/04,21:47:26] << player 6 joined the game [lithiumion : aap : Netherlands : 1401200 : 178.162.205.29]
[02/04,21:47:50] player lithiumion used chat command "/admin setservername REKT BY ADOLF HITLER"
[02/04,21:47:50] MasterAdmin [lithiumion] set new server name [REKT BY ADOLF HITLER]
[02/04,21:47:56] player lithiumion used chat command "/admin shutdown"
[02/04,22:00:43] << player 222 joined the game [lithiumion : aap : Netherlands : 1401200 : 178.162.205.29]
[02/04,22:00:48] player jeremykiller clicked command "/admin players live"
[02/04,22:00:51] player jeremykiller clicked command "/admin black lithiumion"
[02/04,22:00:51] MasterAdmin [jeremykiller] blacklists player aap!
[02/04,22:00:51] player jeremykiller clicked command "/admin players live"
[02/04,22:00:52] >> player 222 left the game [lithiumion : aap : 00:00:09]
[02/04,22:05:37] << player 46 joined the game [013kevin : 《ςし》Ҟєѵιη : Netherlands : 1401200 : 178.162.205.29]
[02/04,22:05:44] player jeremykiller clicked command "/admin players live"
[02/04,22:05:46] player jeremykiller clicked command "/admin black 013kevin"
[02/04,22:05:46] MasterAdmin [jeremykiller] blacklists player 《ςし》Ҟєѵιη!
[02/04,22:05:46] player jeremykiller clicked command "/admin players live"
[02/04,22:05:46] >> player 46 left the game [013kevin : 《ςし》Ҟєѵιη : 00:00:09]
From the gameserver logs:

Code: Select all

[2015/02/04 21:46:13] Connection of a new player: 013kevin(178.162.205.29:2350)
[2015/02/04 21:47:05] Disconnection of 013kevin(178.162.205.29:2350)
[2015/02/04 21:47:26] Connection of a new player: lithiumion(178.162.205.29:2350)
[2015/02/04 21:48:02] Disconnection of lithiumion(178.162.205.29:2350)
[2015/02/04 22:00:43] Connection of a new player: lithiumion(178.162.205.29:2350)
[2015/02/04 22:00:51] Disconnection of lithiumion(178.162.205.29:2350)
[2015/02/04 22:05:37] Connection of a new player: 013kevin(178.162.205.29:2350)
[2015/02/04 22:05:46] Disconnection of 013kevin(178.162.205.29:2350)
A day later:

Code: Select all

[02/05,20:07:58] >> player 241 left the game [natascha90 : $000《ςし》$w$C00Tasjah : 02:39:54]
[02/05,20:07:58] << player 164 joined the game [natascha90 :  : Curiosity : 1401200 : 46.166.186.221]
[XASECO Warning] Could not map country: Curiosity
[XASECO Warning] Could not map country: Curiosity
[02/05,20:08:04] >> player 164 left the game [natascha90 :  : 00:00:06]
[02/05,20:08:05] << player 163 joined the game [natascha90 : $000《ςし》$w$C00Tasjah : Netherlands : 112297 : 37.251.19.74]
[02/05,20:08:54] << player 162 joined the game [013kevin :  : Curiosity : 1401200 : 46.166.186.221]
[XASECO Warning] Could not map country: Curiosity
[XASECO Warning] Could not map country: Curiosity
[02/05,20:10:26] >> player 162 left the game [013kevin :  : 00:01:32]
[02/05,20:10:39] << player 160 joined the game [lithiumion :  : Curiosity : 1401200 : 46.166.186.221]
[XASECO Warning] Could not map country: Curiosity
[XASECO Warning] Could not map country: Curiosity
[02/05,20:11:32] player barbizumi clicked command "/admin black lithiumion"
[02/05,20:11:32] Admin [barbizumi] blacklists player !
[02/05,20:11:34] >> player 160 left the game [lithiumion :  : 00:00:55]
[02/05,20:12:11] << player 159 joined the game [lithiumion : $f00《$fffςし$f00》$fff$oСαץ$f00$o΅ : Germany : 43882 : 46.5.16.92]
[02/05,20:15:17] MasterAdmin [lithiumion] banned IP 46.166.186.221!
From the gameserver logs:

Code: Select all

[2015/02/05 20:07:58] Disconnection of natascha90(37.251.19.74:2350)
[2015/02/05 20:07:58] Connection of a new player: natascha90(46.166.186.221:2350)
[2015/02/05 20:08:04] Disconnection of natascha90(46.166.186.221:2350)
[2015/02/05 20:08:04] Connection of a new player: natascha90(37.251.19.74:2350)
[2015/02/05 20:08:54] Connection of a new player: 013kevin(46.166.186.221:2350)
[2015/02/05 20:10:19] Disconnection of 013kevin(46.166.186.221:2350)
[2015/02/05 20:10:38] Connection of a new player: lithiumion(46.166.186.221:2350)
[2015/02/05 20:11:32] Disconnection of lithiumion(46.166.186.221:2350)
[2015/02/05 20:12:11] Connection of a new player: lithiumion(46.5.16.92:2350)
Shortly after, he connected again here although I banned his IP on all our servers (the bannedips.xml are linked):

Code: Select all

[2015/02/06 00:34:50] Connection of a new player: ý(46.166.186.221:2350)
But it isnt showing in the xaseco logs, just weird things start to happen:

Code: Select all

[02/06,00:35:09] player jeremykiller clicked command "/admin players live"
[XASECO Warning] [-32700] GetPlayerList - parse error. not well formed
[i]-- XASECO restart here --[/i]
[02/06,00:36:54] player barbizumi used chat command "/admin blacklist ý"
[02/06,00:36:54]  tried to use admin chat command (no permission!): blacklist ý
[02/06,00:36:59] player jeremykiller used chat command "/admin black ý"
[02/06,00:36:59]  tried to use admin chat command (no permission!): black ý
[02/06,00:37:05] player jeremykiller used chat command "/admin ban ý"
[02/06,00:37:05]  tried to use admin chat command (no permission!): ban ý
[02/06,00:37:06] player barbizumi used chat command "/admin help"
[02/06,00:37:06]  tried to use admin chat command (no permission!): help
[i]-- and more like this --[/i]
[02/06,00:38:15] << player 167 joined the game [lithiumion : $f00《$fffςし$f00》$fff$oСαץ$f00$o΅ : Germany : 43882 : 192.168.178.36]
[02/06,00:38:28] player lithiumion clicked command "/admin players live"
[XASECO Warning] [-32700] GetPlayerList - parse error. not well formed
As you can see, there is someone able to switch his login to everything he wants, giving him the ability to do things only masteradmins can do and more..
I assume he's just modifying the memory cache and switching out his login there, for the moment I dont see any solution at all.

I am also getting mails from other server owners claiming people from our team (lithiumion/me and 013kevin) are renaming their servers and taking coppers from them.
We are giving the coppers back to you of course, just tell us the server login and amount, but please rest assured that we have nothing to do with this and some kid is trying to blame us - I still dont get, why.
You can contact us everytime at info@superlol-tm.net!

Help appreciated!

Cheers
Cay

Edit: Link to the thread on our forum

Edit 2: Thx for moving, didnt see this thread before but it seems to be a popular issue then. Feel free to contact me for additional logs/etc, for now I put every admin on our server back to operator as hacking that rank doesnt provide any harmful use

Xymph
Pit Crew
Pit Crew
Posts: 5708
Joined: 19 Aug 2007 12:58
Owned TM-games: TMN, TMU, TMF, TM²
Contact:

Re: A Sidenote to Dedimania (Xaseco)

Post by Xymph » 09 Feb 2015 22:16

Thanks for the info, seems to me you may want to /admin banip 178.162.205.29 as well.

One security feature of XAseco I just remembered hasn't been mentioned before: lock_password
Under the circumstances, all server owners are strongly advised to set it, in combination with the IP address restrictions.

Another alternative is (indeed) to disable all admin features of XAseco in adminops.xml, and use an external tool like RCP or ServerMania to manage your server(s).
TheBigG wrote:everything is cleartext you will always be able to spoof things and i would be very suprised if Nadeo would change that.
Its a fight that nadeo have to fight.
True, but the thing about the IP address restrictions on (master)admin logins is, that the hacker cannot find out which address to spoof from the XAseco command line; that info is only available inside the script and config files.
Developer of XASECO for TMF/TMN ESWC & XASECO2 for TM²: see XAseco.org
Find your way around the Mania community from the TMN ESWC hub, TMF hub, TM² hub, and SM hub

weerwolf1
smooth traffic navigator
smooth traffic navigator
Posts: 236
Joined: 08 May 2008 09:25
Owned TM-games: All but original
Location: The Netherlands

Re: A Sidenote to Dedimania (Xaseco)

Post by weerwolf1 » 10 Feb 2015 08:20

Xymph wrote: True, but the thing about the IP address restrictions on (master)admin logins is, that the hacker cannot find out which address to spoof from the XAseco command line; that info is only available inside the script and config files.
Unless the hacker is also reading forums and by now has his ip address ....
LYNX°°°° - Maniaplanet Gaming Community!
news | clan | community | & more
°°°°

TheBigG
smooth traffic navigator
smooth traffic navigator
Posts: 233
Joined: 16 Oct 2010 19:45
Owned TM-games: TMN! TMF
Location: Germany

Re: A Sidenote to Dedimania (Xaseco)

Post by TheBigG » 10 Feb 2015 08:47

Xymph wrote:
TheBigG wrote:everything is cleartext you will always be able to spoof things and i would be very suprised if Nadeo would change that.
Its a fight that nadeo have to fight.
True, but the thing about the IP address restrictions on (master)admin logins is, that the hacker cannot find out which address to spoof from the XAseco command line; that info is only available inside the script and config files.
Even if you turn all P2P of Trackmania still leaks the IP to other players, so it is enough to be on the same server as the masteradmin.

you could spoof your ip and only play with that setting on your own server :roflol:
edit: after some testing i think that is really a good idea, i have now installed a second tm with settings that i only use on my own server. :1

anyway for dedimania that isn't a solution

vlees
highway camper
highway camper
Posts: 4
Joined: 06 Feb 2015 13:15
Owned TM-games: TMNF

Re: A Sidenote to Dedimania (Xaseco)

Post by vlees » 07 Apr 2015 12:44

Alinoa wrote:Xymph and other players provided us with information by email last weekend. Please keep on using this thread for reporting other information. Thanks all for your cooperation :)
It has been some time.
Any updates on this?

Xymph
Pit Crew
Pit Crew
Posts: 5708
Joined: 19 Aug 2007 12:58
Owned TM-games: TMN, TMU, TMF, TM²
Contact:

Re: A Sidenote to Dedimania (Xaseco)

Post by Xymph » 13 Apr 2015 17:26

To my knowledge there have been no recent developments in this area.
Developer of XASECO for TMF/TMN ESWC & XASECO2 for TM²: see XAseco.org
Find your way around the Mania community from the TMN ESWC hub, TMF hub, TM² hub, and SM hub

Post Reply