bluedrago 28 Posted June 3, 2016 Share Posted June 3, 2016 hi everyone iin this day one hacker attack my server!! he can create items and unnbaned and can delete my table players i change my pass but he enter again. say with program...... -.- any can help me¿¿? i have 40k and source in all Link to comment Share on other sites More sharing options...
VII 4 Posted June 3, 2016 Share Posted June 3, 2016 WTF Let God Be With You i don't Know anything about hack defence Link to comment Share on other sites More sharing options...
kieranFMT2 302 Posted June 3, 2016 Share Posted June 3, 2016 What serverfiles u using? Link to comment Share on other sites More sharing options...
BackPlayer 55 Posted June 3, 2016 Share Posted June 3, 2016 chech your website and look for metin2 expoilts 40k Link to comment Share on other sites More sharing options...
bluedrago 28 Posted June 3, 2016 Author Share Posted June 3, 2016 i use source of novaline clean and all patch Link to comment Share on other sites More sharing options...
kieranFMT2 302 Posted June 3, 2016 Share Posted June 3, 2016 yeah but u must use some sort of sf base give us something xD and the website Link to comment Share on other sites More sharing options...
BackPlayer 55 Posted June 3, 2016 Share Posted June 3, 2016 send us sysser of DB and Channel Link to comment Share on other sites More sharing options...
bluedrago 28 Posted June 3, 2016 Author Share Posted June 3, 2016 files of metin2rage old version but all is change and game and db is base of novaline clean posted here. www.perseo2.com Link to comment Share on other sites More sharing options...
BackPlayer 55 Posted June 3, 2016 Share Posted June 3, 2016 check this fix exploit Link to comment Share on other sites More sharing options...
kieranFMT2 302 Posted June 3, 2016 Share Posted June 3, 2016 homepage is not up please put on Link to comment Share on other sites More sharing options...
BackPlayer 55 Posted June 3, 2016 Share Posted June 3, 2016 check this too FIX EXPLOIT FOR OFFLINE SHOP Link to comment Share on other sites More sharing options...
bluedrago 28 Posted June 3, 2016 Author Share Posted June 3, 2016 yes i have fixed messenge,guild and shop Link to comment Share on other sites More sharing options...
BackPlayer 55 Posted June 3, 2016 Share Posted June 3, 2016 Just now, bluedrago said: yes i have fixed messenger and guild offline shop? show us your sysser of DB and Channels... all may your site has a bug or something Link to comment Share on other sites More sharing options...
bluedrago 28 Posted June 3, 2016 Author Share Posted June 3, 2016 sorry is clean sysers becouse now im installing freebsd 10.3 and mysql 5.7 becouse one friend say me upgrade Link to comment Share on other sites More sharing options...
BackPlayer 55 Posted June 3, 2016 Share Posted June 3, 2016 try to down your website and tell us Link to comment Share on other sites More sharing options...
Nickas 42 Posted June 3, 2016 Share Posted June 3, 2016 try change to mysql user of localhost. example like CONFIG file of usr/game/channel1/2.. auth,game99 or db/conf.txt : Spoiler PLAYER_SQL: localhost localroot pass player COMMON_SQL: localhost localroot pass common you change localroot , pass and go navicat connection > manage users > select localroot@localhost > edit user > user name: localroot , password/confirm password : pass i sorry for bad english. 1 Link to comment Share on other sites More sharing options...
iltizio 217 Posted June 4, 2016 Share Posted June 4, 2016 There are a lot of possibilities: Game Exploit Website exploit Game bug Low Security on your machine. To find from which of this possibilities they use, create a differenti user for each use: user site@<ip_of_your_website> for your website User game@localhost for your game User root@localhost for amministratore (if you use ssh tunnel). Nextly enable MySQL General log that create a table on mysql db with all the query run. Be careful because it is very verbose and Can use a lot of space. http://dev.mysql.com/doc/refman/5.7/en/query-log.html Check the sospicious queries and where they run, so you have find which possibilities they use and nextly you can block they. Firstly check also MySQL alert log. It contain also wrong authentication. If you need extra help, please contact me: http://iltizioservice.ga/index.php/en/contacts2 Link to comment Share on other sites More sharing options...
Premium Istny 79 Posted June 4, 2016 Premium Share Posted June 4, 2016 if changing ssh,mysql passwords don't help, you have probably installed webshell, disable dangereous php command in php.ini after you can delete this shit with this This is the hidden content, please Sign In or Sign Up Link to comment Share on other sites More sharing options...
bluedrago 28 Posted June 4, 2016 Author Share Posted June 4, 2016 hello VPN is installed now only i can enter in mi putty,navicat,winscp etc key changes user web and key "only for web" in users root now have my ip. i´m waiting hacker.... Link to comment Share on other sites More sharing options...
Premium Galet 512 Posted June 4, 2016 Premium Share Posted June 4, 2016 Add ipfw, fw or pf rules to the db port (15000 If my memory is fresh) Link to comment Share on other sites More sharing options...
caes95 1 Posted June 5, 2016 Share Posted June 5, 2016 On 4/6/2016 at 4:37 AM, galet said: Add ipfw, fw or pf rules to the db port (15000 If my memory is fresh) Why ?, he has a VPN installed and do not need to filter packets. Link to comment Share on other sites More sharing options...
Premium Galet 512 Posted June 5, 2016 Premium Share Posted June 5, 2016 22 minutes ago, caes95 said: Why ?, he has a VPN installed and do not need to filter packets. This is a dangerous threat. Everyone is able to connect through the DB prot even with distant servers. Thus he'll be able to alter quests, database and so on... This is a known bug. Even shogun warns us back in the years. On 21/02/2014 at 4:15 PM, Shogun said: Port 15000 should never be publicly open! Only the game cores need to connect to it, not your users. In fact it's a security risk as anybody can create an auth server which connects to your db core and login any account they want on your server. Link to comment Share on other sites More sharing options...
Premium tierrilopes 452 Posted June 5, 2016 Premium Share Posted June 5, 2016 #Removed. Thank you m2dev for getting ruined. Link to comment Share on other sites More sharing options...
AlCapone 67 Posted June 5, 2016 Share Posted June 5, 2016 If you fixed all of exploits posted in forums then the only think is the owner of the host where you buy the dedicat server...if is vzland may the good lord bless and keep you safe xD Link to comment Share on other sites More sharing options...
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now