Jump to content
DayZ Forums
Sign in to follow this  
Followers 0
MarKeR (DayZ)

Dedicatedserverinterface.sqf?

By MarKeR (DayZ), in Mod Servers & Private Hives

Recommended Posts

MarKeR (DayZ)    57

MarKeR (DayZ)
Posted

Hey guys..

Posted in the general server forum by accident yesterday, should have been in here..

Can someone clarify if the script below is part of a hack, only two instances of it over two days of log files..

Thanks


17.06.2012 10:38:04: xxx (81.206.93.000:57501) 8cb5c92ee3ae4b9351b965a979000000 - #40 private ["_dummy"]; _dummy = [_this,"players"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf";

thanks

Share this post

Link to post
Share on other sites

mirc00    7

mirc00
Posted

Did you see this only for this player, or are there other players with the exact same message too? Because it looks like the player is injecting the script exactly on the same position like the original one.

Basically, if you just copy&paste from the public hacks, you would see something like this:

"execVM "\MyScripts\ammobox.sqf";"

But maybe the player was clever enough to change the path and rename it like it looks like the legit one.

"execVM "\ca\ui\scripts\dedicatedServerInterface.sqf";"

So, if you don't find other players with the same script message in the logs, it's most likely a hacker.

Share this post

Link to post
Share on other sites

MarKeR (DayZ)    57

MarKeR (DayZ)
Posted

Found one other instance from one other player over two.days of log files..

Doing a Google search on that item returns some pretty interesting results.

But want to be 100% certain..

Thanks

Share this post

Link to post
Share on other sites

fighter139    191

fighter139
Posted

See where it says _this, players? If the same message comes next except with _this, onload, its probably legit. Tested this with community members opening the dedicated server control panel. It then left entries in the scripts.log.

Share this post

Link to post
Share on other sites

MarKeR (DayZ)    57

MarKeR (DayZ)
Posted

Thanks fighter...

My question is, the ded server control panel, is that the area for admins to login, in game?

Thanks

Share this post

Link to post
Share on other sites

cm. (DayZ)    28

cm. (DayZ)
Posted

I just auto-kick people who try to access it, that includes admins. Solves a lot of problems...

Share this post

Link to post
Share on other sites

DarkEnergy    4

DarkEnergy
Posted

I just auto-kick people who try to access it' date=' that includes admins. Solves a lot of problems...

[/quote']

Would love to know how you did that.

A couple of days ago we had a assault heli flying around in the server after server shutdown we find this in the logs.

private ["_dummy"]; _dummy = [_this,"onload"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf

these lines is present in our file.

[_this,"players"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf";

private ["_dummy"]; _dummy = [_this,"onload"]

with a tag of 5 meaning it should kick the player.

seems the server security depends on their scripts.txt.

can you share your scripts.txt file with us. ?

Or is there a source i can check time to time to update my file.

Share this post

Link to post
Share on other sites

vlees    0

vlees
Posted

Remove that line from your scripts.txt

It does nothing but kick and log legitimate players that open the dedicated server control panel (where they need a password to log in).

Yes, this exact line is the place where most cheaters inject their own code (as someone said, google it and you find interesting stuff). BUT, this means that if you hacked your game with custom scripts, this line is NOT in your game -> you don't get kicked and logged.

So just remove it and be done with it.

And as far as I know it is not possible to kick and log for NOT having this line in your scripts, which is the thing you actually want to do.

Share this post

Link to post
Share on other sites

{sas}stalker    108

{sas}stalker
Posted

Remove that line from your scripts.txt

It does nothing but kick and log legitimate players that open the dedicated server control panel (where they need a password to log in).

Yes' date=' this exact line is the place where most cheaters inject their own code (as someone said, google it and you find interesting stuff). BUT, this means that if you hacked your game with custom scripts, this line is NOT in your game -> you don't get kicked and logged.

So just remove it and be done with it.

And as far as I know it is not possible to kick and log for NOT having this line in your scripts, which is the thing you actually want to do.

[/quote']

sorry I might be being stupid but can you try that again in simpler terms, I honestly dont understand what your saying. Do we remove

[_this,"players"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf";

from the scripts.txt file ? and if so what will that do ?

Share this post

Link to post
Share on other sites

icomrade    201

icomrade
Posted

The server control panel is used by hackers to run scripts, using a hex editor.

Share this post

Link to post
Share on other sites

urbanfox    116

urbanfox
Posted

Remove that line from your scripts.txt

It does nothing but kick and log legitimate players that open the dedicated server control panel (where they need a password to log in).

Yes' date=' this exact line is the place where most cheaters inject their own code (as someone said, google it and you find interesting stuff). BUT, this means that if you hacked your game with custom scripts, this line is NOT in your game -> you don't get kicked and logged.

So just remove it and be done with it.

And as far as I know it is not possible to kick and log for NOT having this line in your scripts, which is the thing you actually want to do.

[/quote']

sorry I might be being stupid but can you try that again in simpler terms, I honestly dont understand what your saying. Do we remove

[_this,"players"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf";

from the scripts.txt file ? and if so what will that do ?

I wouldn't remove it. It's how A LOT of hacking starts.

Share this post

Link to post
Share on other sites

vlees    0

vlees
Posted

Yes, lots of hackers use it. By replacing the command Shift+P executes to run their own script (Google it). This results in dedicatedServerInterface.sqf NOT being executed when you press Shift+P but the custom script executes instead.

This means that [_this,"players"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf"; in the scripts.txt will not get triggered (SINCE IT'S NOT THE EF-ING SCRIPT THEY ARE CALLING!) and instead it runs something like /asd/lolhacks.sqf (or ANY other string).

Therefore if you hack your game with the currently very popular method you will be able to just press Shift+P and [_this,"players"] execVM "\ca\ui\scripts\dedicatedServerInterface.sqf"; will not prevent that. People that did not hack/cheat get flagged as soon they press Shift+P though. I have no idea how you can not get this.

Can anyone who does not know shit about computers or BattlEye please GTFO NOW

Share this post

Link to post
Share on other sites

Reo    26

Reo
Posted

Bump.

Found this too now, is it legite to ban some1 due to interface.sqf message?

Share this post

Link to post
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
Sign in to follow this  
Followers 0
Go To Topic Listing Mod Servers & Private Hives
×