(OCN)Vortech

A falsified submission would be unfortunate but like I said in reply to you in another thread that is why admins should be submitting to the CBL (http://code.google.com/p/dayz-community-banlist/). There is a rep system behind it that allows them to compare submissions and better identify cheaters then we could on a singular basis. Another thing I said in reply to you in another thread is that any admin compiling bans based on the information here is foolish and doing their players a disservice IMO. If anything comes out of this tonight I hope it will result in directing more people to the CBL.

Being an adult or having common sense? It's about being responsible and contributing information for your fellow administrators. There is no difference posting information such as username, IP, or GUID here then there is over on the CBL which is maintained by the developers. You seem to have some sort of agenda all of a sudden so sorry for questioning your actions. Which by the way are very suspect as you seemed to make it you job to report every post with an IP or GUID in it. Nothing personal but that seems like something a cheat would do to cover his or her tracks and make administrators lives more difficult. If you want to protect users from forum eyes and still do some good then educate yourself on the options and link OPs to the CBL so that they can contribute and we all benefit. - Ok so cheat with my nickname, the very fact my IP, and GUID would be easily searchable here would disprove it. What you're doing gives them further anonymity and makes an admins job harder to do. - That is why the CBL exists, there is a reputation system behind it. Any admin coming here to compile a ban list and not utilizing the CBL is foolish IMO, and I feel sorry for player that visit their servers. - Trolls gonna troll, IPs are useless as most people have dynmaic IPs but in the rare case they have a static IP and they get targeted then they'll have a bit of work. Very rare occasion and I've yet to read about this happening to anyone here. In regards to local rules & regs, when you play the game you agree to whatever policy BIS put forward, it is their responsibility to enforce whatever rules & regs they want. We live in their world, you are not the police, you are not even a moderator. Your opinion is just as valid as anyone else but you're not in a position to force it on others.

OP submit your findings to the CBL (http://code.google.com/p/dayz-community-banlist/issues/entry) Username, GUID, and IP welcomed! Just as public, even more official then a forum post, and same devs! ;) This is the first I've heard of this and completely contradicting the current best practices..? Very confusing.

Thanks, ttp as title was changed to attract more attention. I'm really hoping to get some feedback on this.

There is no tutorial but some of us try to explain the executions.. If you want examples look at our CBL submissions (http://code.google.com/p/dayz-community-banlist/issues/list?can=1&q=reporter%3Aoverclocked) if you seek explenations search for topics and posts I've made on this forum. Also make sure to submit your cheaters to the CBL http://code.google.com/p/dayz-community-banlist/issues/entry so that everyone can benefit. Now for you code snippet there right off the bat we can see HDMI is spawning USBasicWeaponsBox which does not occur in game. So HDMI is cheating, now for those F_40mm_White you want to look at the time stamps. There is a bit of time between each one so I'd imagine he was carrying all those from the WeaponsBox spawn. Some cheaters just don't make any sense but I'd bet he was griefing something on your server.

OP make sure to post these at the CBL http://code.google.com/p/dayz-community-banlist/issues/entry so everyone can benefit. :) No privacy issue unless this forum takes a position on it.

If you hosting solution supports it http://ibattle.org/install-and-configure/setting-up-the-scheduler/

I can't say I agree with "someone would have to have hundreds of those reports before it made a meaningful impact" as now they've replicated the legit execution.. Basically we're saying this is how to spawn things in. Just as with how we submit bans we use caution but that is a little too much IMO. I'd like to know how you're valuing Seagull executions as I wasn't submitting those before because I didn't think they deserved an instant ban. Now that we know a little more about your system I'd like to send them in. However I'm a little concerned you may also require hundreds of reports too.. It'll be a balance I get that, but lets not undermine the whole system giving them a free pass. In any event keep up the good work. The time stamp on those satchel charges probably cleared your name. Glad you got it sorted. Read the post I quoted from jwiechers, it is about a similar situation to yours if you're not one of the bans he's talking about.

That is not crashing a helo, look here (http://dayzmod.com/forum/index.php?/topic/80738-psa-cheaters-now-spoofing-bis-effects/).

What's the question here? Ban Registered Sex Offender and submit him to the CBL http://code.google.com/p/dayz-community-banlist/issues/entry

I hear that, the system is new so they've got to work the kinks out. I don't know if you read over my post but the person who was maintaining appeals was away for roughly one week. They got through all 350+ submissions in under 12hrs so I can imagine a mistake happening. No excuses, I've also messaged someone to take a look into your situation.

Glad you got it sorted, did the CBL tell you it was a false log or a grandfathered ban? There were only about 350 submitted CBL bans out of the lists 1000 or so GUIDs. If you could PM me your GUID if you don't want to share it, I'd like to see the log and the server that submitted. Yep you're still on it (http://code.google.com/p/dayz-community-banlist/source/diff?spec=svne1ed8c58b0f6c04c855c3d9bb250a42d90f0ad11&r=e1ed8c58b0f6c04c855c3d9bb250a42d90f0ad11&format=side&path=/bans/bans.txt) you should be posting here (http://code.google.com/p/dayz-community-banlist/issues/detail?id=95&can=1&q=15a809bb3d2f4efc6f688126f07213d9).

Take a look at this http://dayzmod.com/forum/index.php?/topic/80719-psa-false-remote-execution-on-players-whatisthis-long-weekend-incoming/

Take a look at this http://dayzmod.com/forum/index.php?/topic/80738-psa-cheaters-now-spoofing-bis-effects/

Busy weekend, another fun one here. Hats off to Dwarden for the preemptive changes to remoteexec (http://code.google.com/p/dayz-community-banlist/source/diff?spec=svn4f22f1a178cc5e90ac879703dcda5aa8f7a37275&r=4f22f1a178cc5e90ac879703dcda5aa8f7a37275&format=side&path=/filters/remoteexec.txt) A little after we implemented the controversial change I noticed this in one of our servers logs: Old legitimate execution: 21.08.2012 06:58:55: USERNAME (IP) GUID - #38 "[this] spawn BIS_Effects_AirDestruction" 21.08.2012 06:58:56: USERNAME (IP) GUID - #38 "[this, 0, 10611.7]spawn BIS_Effects_AirDestructionStage2" 21.08.2012 06:58:56: USERNAME (IP) GUID - #38 "[this, 0, 10611.7,false,true]spawn BIS_Effects_Burn" New spoofed execution: 24.08.2012 11:49:32: USERNAME (IP) GUID - #38 "[this] spawn BIS_Effects_AirDestruction" 24.08.2012 11:49:32: USERNAME (IP) GUID - #40 "[this] spawn BIS_Effects_AirDestruction" 24.08.2012 12:33:20: USERNAME (IP) GUID - #38 "[this] spawn BIS_Effects_AirDestruction" 24.08.2012 12:33:20: USERNAME (IP) GUID - #40 "[this] spawn BIS_Effects_AirDestruction" So for anyone not utilizing Dwardens CBL commits for BE filters keep an eye out for this form of BIS_Effects execution.

Exactly, so admins need to use common sense. Exactly that's why it is a spoof, they're attempting to look legit. I'm hopeful this will help admins identify cheaters a little easier. However they must use common sense when researching. :)

I made a thread about the evolution of this here (http://dayzmod.com/forum/index.php?/topic/80738-psa-cheaters-now-spoofing-bis-effects/). My understanding is cheaters use this spoof to hide spawning things in game. In any event they have now spoofed the full execution as it would naturally occur. If you see the improper variations then it's up to you what you'll do, if you see the legit spoof I'd recommend just taking notice rather then risk a wrongful ban. You're the right track asking the community so keep it up. Your players should be grateful to have such a watchful admin.

As an update I was informed that the cheaters can now fully spoof the legit execution in its entirety.

I figured you were under 21, I was sadly mistaken when I saw your age :/ Sorry. I guess I spoke over your head again, sorry I'm making this so difficult. I guess you're not skipping over my replies, I didn't think about you not being able to understand them. I've personally outlined a number of ways to "validate", justify, whatever you want to call them. I've specifically outline and provided examples of how we utilize multiple sources of data before issuing a ban but you are choosing or are incapable of understanding. In your reality all it takes "is a quick change of a GUID" lucky for the DayZ community the CBL exists and your theory has already been dis-proven. Overlcok.net prides itself in providing arguably some of the safest and fastest DayZ servers to North America. We've tested and ultimately utilize proven anti-cheat methods and combine them with our experiences. We cast a large next and have lots of entries to base our bans on. We've submitted over 80 individual GUID's to the CBL and will continue to support it as it makes the DayZ community safer with every GUID it adds. You don't have to agree and I'm sorry you may choose not to join us.

http://dayzmod.com/forum/index.php?/topic/73844-community-banlist/page__st__60#entry774589 Just wanna place this here, I'm not interested in commenting on your redundant comments here. Just wanna make sure people see through them.

CBL just updated the bans list 100+ mode added! Thanks to everyone at the CBL for all the hard work, the effects should be felt across all DayZ server very soon. If you say something enough maybe they'll come true ehh? lol you continue to not read the posts and attempt to speak generally, maybe somebody will buy what you're selling kiddo. lmao! we're about the same age btw, you just seem to act like a child for some reason.. Since you're not understanding getting it, I'll give it one last try. What would prevent an entire clan of "butt hurt little 16 year olds" (really?) "submitting a slew of falsified logs".. The very fact that YOU lack the ability to prepare a proper example of a falsified log proves the "butt hurt" likely couldn't either.. You'r grasping at straws still, just take off the tinfoil hat already! Sounds great, the best just keep on getting better! Now for your examples: 4:30:38 "WRITE: ['PASS']" 14:30:52 "WRITE: ['PASS']" 14:30:56 "LOGIN ATTEMPT: "49854214" Fred" 14:30:56 "READ/WRITE: ['PASS',false,'28442454',[147,[4712.23,10214.3,9.12323]],[["ItemFlashlight","ItemKnife","ItemToolbox","ItemMap","ItemHatchet","ItemFlashlightRed","ItemWatch","glock17_EP1","ItemEtool","NVGoggles","ItemCompass","ItemGPS","Binocular_Vector","BAF_AS50_scoped"],["HandGrenade_West","ItemPainkiller","ItemMorphine","FoodCanPasta","ItemWaterbottle","5Rnd_127x99_as50","5Rnd_127x99_as50","5Rnd_127x99_as50","5Rnd_127x99_as50","30Rnd_556x45_Stanag","30Rnd_556x45_Stanag","5Rnd_127x99_as50","ItemBandage","ItemBandage","17Rnd_9x19_glock17","17Rnd_9x19_glock17","17Rnd_9x19_glock17","17Rnd_9x19_glock17","17Rnd_9x19_glock17","17Rnd_9x19_glock17"]],["DZ_Backpack_EP1",[["BAF_L85A2_RIS_CWS"],[1]],[["ItemBandage","FoodCanBakedBeans","ItemSodaCoke","HandGrenade_West","ItemMorphine","ItemPainkiller","30Rnd_556x45_Stanag"],[1,1,1,1,1,1,1]]],[813,953,953],Rocket_DZ,0.94]" 14:30:56 "LOGIN LOADED: B 1-1-A:42 (Fred) REMOTE Type: Rocket_DZ" 14:30:57 Server: Object 76:6 not found (message 94) 14:30:57 "READ/WRITE: ['PASS',[false,false,false,false,false,false,true,12000,[],[0.0971555,0],0,[1124.54,439.544]],[56,35,0,0],["BG36_c_SD_eotech,"amovppnemstpsraswrfldnon",42],[147,[4712.23,10214.3,9.12323]],-16271]" 14:30:57 "LOGIN PUBLISHING: B 1-1-H:1 (Fred) REMOTE Type: Rocket_DZ" 14:30:58 "WRITE: ['PASS']" 14:30:59 "WRITE: ['PASS']" No need to verify *.rpt because no admin should be banning based on *.rpt lol! At best the *.rpt is best used for subsequent data for a player you're already researching. An example would be comparing time stamps against a creatvehicle spam of grenades or pipebombs. What's interesting about yours is that the Rocket_DZ which would be the one exception to ban on sight in the *.rpt I can think of atm. 22.08.2012 00:58:29: Byron LeBro (67.169.224.220:2404) a864f153117c6c10b7e3742a7265685b - #132 "isDedicated" 22.08.2012 01:41:25: Doroock (190.20.164.210:2404) c56893ce1d98b35f0e0fca57d748e7d3 - #0 "[] spawn{player addAction ['Heal', 'C:\Users\Dorellana\Desktop\Scripts\heal.sqf']; player addAction" 22.08.2012 01:41:25: Doroock (190.20.164.210:2404) c56893ce1d98b35f0e0fca57d748e7d3 - #106 "Weapon', 'C:\Users\Dorellana\Desktop\Scripts\addweapon.sqf']; player addAction ['Spawn Medical Item" 22.08.2012 01:41:25: Doroock (190.20.164.210:2404) c56893ce1d98b35f0e0fca57d748e7d3 - #197 "hield', 'C:\Users\Dorellana\Desktop\Scripts\zombieshield.sqf']; player addAction ['Player Shield', " 22.08.2012 01:49:22: Keita (58.94.228.247:2304) 168eb2f2b5a4e53a32a60662182a5490 - #132 "isDedicated" FYI in your scripts.log out of those 5 entries only 3 matter. I can't speak for the CBL team on their process see the above for the details Jens provided. Personally though I'd compare it against known entries/executions, note the time stamps, and issue a ban. If the player is wrongfully banned they can issue an appeal. If they have no other reports then they get the ban removed.. Take note and act accordingly if further reports come in. Rinse repeat, sounds pretty simple. lol, I assumed it was poorly forged due to those directories.. Wow! Out of the 80+ GUID's we've submitted I've never seen such a poor attempt to execute scripts! lmao! He made it too easy :D It's also worth mentioning while a portion of your point is how unsophisticated those entries are hence easily falsified.. They'd just as easily be flagged and have multiple submissions if true. I don't remember ever seeing such poor executions in any of our logs. I think Jens disproved your blind comment, if not I'll go one further. I did say I don't validate.. Considering the number of cheaters we have in the DayZ universe I'm pretty well versed. My validations process is identifying the execution/cheat, comparing it against known executions/cheat based on my experience, if our hurdles are passed we then submit to the CBL for further scrutinization. If somehow I mistook the entry AND the CBL reviewer mistakenly confirms and commits then the player still has the ability to appeal. Our network of server go to great lengths to ensure we identify actual cheaters and we know the CBL does to. The great thing about the CBL is they see it all, so not only do they compare the GUID but they compare the execution/cheat itself. It doesn't get much better then that and you're a fool for being so stubborn. If you don't like it then don't benefit from it. Stop trolling us and agree to disagree, you're never going to make up ground. This is a good thing for the community and you're simply in the wrong.

Keep an eye out for spam in your scripts.log this weekend, we had a visit from a cheater on one of our servers. There were reports of mass deaths and all vehicles be teleported to a remote location in the ocean. All players had the following scripts remotely executed for them resulting in the following logs for ALL players: 24.08.2012 10:27:18: USERNAME (IP) GUID - #121 " _whatIsThis = compile fap_fnExec; call _whatIsThis; " 24.08.2012 10:27:18: USERNAME (IP) GUID - #122 " _whatIsThis = compile fap_fnExec; call _whatIsThis; " 24.08.2012 10:27:18: USERNAME (IP) GUID - #97 "if (isnil ("bInvisibleOn")) then {reyalPyMtcejbo hideObject true;};" In our case the invisibility was later replace with this createVehicle: 24.08.2012 10:31:15: USERNAME (IP) GUID - #20 " if (isServer) then { _dsasadsa = createVehicle ['M1030', [554.713, 3819.73, 0], [], 0, 'CAN_COLLIDE']; _dsasadsa setVariable" Both createvehicle and remoteexec were clear of any entries during this time so there must be functional bypasses working going into the weekend. Prepare for a long one and think twice before you ban for the executions above as they may be falsified.

No need to be rude, CBL backlog was cleared a bit ago. I look forward to hearing from the OP on the outcome and seeing a copy of the logs.

FYI CBL has been cleared so we'll see how those appeals work out. lol I didn't waste my time because it was obvious you had no clue what you were talking about.. I refuse taking time to make a further fool out of you when you're already doing such a great job on your own. Where are these tough questions? You've got a user claiming he was wrongfully banned, some rpt entries that mean nothing, and badly forged script.txt logs..? Take a moment to actually read the mission statement http://code.google.com/p/dayz-community-banlist and you will find the information which you seek. It's obvious now that you are in fact delusional and I don't think anyone can help you any further.. Nothing personal but you can't fix stupid bud. Good luck to you and enjoy your time in DayZ.

It seems you don't understand what the CBL is, I'd recommend you do your research for the sake of your players. You'd be best served searching some of my posts, actually reading the mission statement, and noting the committers & contributors. Also you still haven't explained why you wouldn't contribute, but I'm not judging. You seem clever, I'm sure once you actually educate yourself on the CBL you'll make the right decision.