Hi guys, dunno if uve heard of it yet but check it out...


This started just a few days ago. Someone has found out how to hack these two game types and open data ports on your computers. You don't even have to be running your own server, just be on one that is being hacked. If you notice that your computer is sending a lot of data while your playing these games, it would be wise to shut down your internet connection as quickly as possible.

I was attacked today while on the JK:O game server and SchMo was kicked by the hacker. I didn't even have time to tell Fang to leave before I got attacked and my computer started downloading information. I only lost about 1.5 Meg of information. I even have a firewall, but the information went through the JK game port that is required to play the game. My firewall kept the hacker from opening another port and gave me time to shut down the internet connection.

My friend at work, who runs a JK:JA server, was attacked three days ago. He lost Megs of information before he knew what was happening and shut down the server.

I thought this was just a JK:JA problem until today when I saw it happen. This is really going to hurt the JK gamming for a while.


Second post :

i just heard about this today, but unfortunately was too slow to kick the guy in the server before shcmo was banned and lew was attacked.

i would suggest any admin or knight: /bind (key) amkick ^^^^ hacker
Every hacker seems to have a series of ^^^ in their names. Perhaps it would be wiser to change amkick to amkickban, but i feel that is up to Piston. Also, if you see anyone come in automatically empowered, kick them as well or alert someone who can. I've seen one guy come in emped on Ev1 and the BH server, but the guy who banned schmo didn't even appear when i hit tab.

I hear one of the [NT] guys has a solution that will ban those who try to use the hack, but i think i saw it in action on the THC server, and it only kicked in after THC Hooka was banned. The link i found to the NT program wasn't working, but i'll look around for ways to prevent this.

http://pcgamemods.com/4271/

^^^^ is the symbol u put before a number for a colour, if you put a letter, that letter does not appear, this is how people have blank names, its not a new thing nor is it a hack. As for this hacking via the game, this is probably untrue, the way they're doing it is simply gaining admin access because either A) they were once part of the clan that runs the server and were kicked for doing this sort of shit, B) the clan are a bunch of *****s that post their passwords in public forums (like MoD did once or twice...) or C) the server is running the shite Jedi Academy Mod that is easily exploitable if you know how.
As for this loss of information, you mean they deleted files off your system?
Something this serious is highly unlikely to have been missed by Raven unless they intentionally left it in there (which is again unlikely, since something like this could be seriously damaging to Raven's sales).

What mod are the server(s) running btw?

If its JK2, are they running that Jedi Academy Mod (the who used by clans & server admins the world over cause they're to afraid to have someone who can challenge them on their servers...)?

Jedi Academy Mod has had an empowerment exploit in it for ages, if you hunt around a little, you'll be able to find someone who'll tell you how to do it.

And finally, you sure this isn't just another scare monger trying to get attention?
its been done before, on old european clan that used to play on gamesurf, NL & SAPO got most of the CTF community believing there was a hack out that gave you unlimited force powers and let you use god mode in multiplayer...the fact was they were just shite and needed an excuse to use on the people who were better than them. Another one was the ghosting exploit where spectators could kill players using someones saber, this was an exploit with Vulcanus Admin Mod and the other admin mods (fixed in some of them now though I think), some ppl got others thinking it was someone hacking the server.
Yet another example is with XMod, if you use the forceteam command on someone and force them into spectator, it would basically put them into "Free mode" (kind of like being in FFA mode but in a team game, and you were basically invulnerable), some people used to say that was hack.

Thx for the reply.

Its running a JA/Reloaded mod for jk2. This is what i was told..i referred to here to see if anyone heard about it and or could confirm it. I was told this exploit would allow a player to take full control of the server (ie BOF). But like you said i doubt this is any kind of raw exploit (root). I known about exploits in mods like AM etc but they were only for gameplay advantage.

Btw ive been playin around with luigi's source (reversed getchallenge protocol). I found that 1/3 servers crash because of it. (if maxplayers => 6). It works for academy too but doesnt crash em.

If you wanna check it out heres the link:Download (http://aluigi.altervista.org/fakep/q3fill.zip)


Peace.

guys i have seen this alot before. go to pcgamemods and d/l a program called temple guardian. its an anti hack that automatically bans anyone with ^^ or ... for names. ^^^ is an admin hack and .... is a crash hack. as for opening ports through the game they dont open a port through the game they just use the server. so if you see anyone hackin a server i sugjest you just get off cuz then you wont be vulnerable to the attack.