when hackers strike

[ky14]

as we all know hackers can ruin a game fairly easy but turning on aimbot instant kill or blowing up the whole map i think when a player enters a game that there files to there game that there game files should be scanned yes this may sound weird but i think its a solution to the hacks ect. (my friend is working on a program that checks the aos filles and deletes the extras)

[Jdrew]

How? We can't modify the source code, this was a feature in alpha of 1.0 though

[Sonarpulse]

The only truly effect anti-cheat is server-side verification of what the players actually do. There is no way to prevent people from modifying the code that supposed to hash each file, for example.

[Handles]

seeing as iceball is open scource then does that mean that the scanner thing would work with that????/

[GreaseMonkey]

ky14, I think you were around when this happened...

Code: Select all

Feb 06 17:25:28 <MinitClassic>  * bobechow (IP 121.150.15.147, ID 14) entered the game!
Feb 06 17:25:33 <MinitClassic>  <Space_Inspader> I'm [LDR]Lion
Feb 06 17:25:36 <MinitClassic>  <Space_Inspader> Or BigCAt
Feb 06 17:25:38 <MinitClassic>  <Space_Inspader> Also
Feb 06 17:25:41 <MinitClassic>  <Remilia Scarlet> gcat
Feb 06 17:25:42 <MinitClassic>  * cooldude0426 (IP *, ID 27) entered the game!
Feb 06 17:25:42 <MinitClassic>  <Space_Inspader> Where is my kitty
Feb 06 17:25:44 [ hack alert showed up here, I went to check it out ]
Feb 06 17:25:53 <MinitClassic>  <Space_Inspader> It is missing its belongings
Feb 06 17:25:55 <MinitClassic>  <ky14> who in here has never heard of pewdiepie
Feb 06 17:25:59 [ thought he was suspicious, I had to check for something here ]
Feb 06 17:26:05 <MinitClassic>  <Space_Inspader> Happy wheels
Feb 06 17:26:07 <MinitClassic>  * bobechow permabanned: aimbot + norec
Feb 06 17:26:07 <MinitClassic>  * bobechow (IP 121.150.15.147) disconnected
Feb 06 17:26:11 <MinitClassic>  <[LDR]Pulchy> loool
Feb 06 17:26:18 <MinitClassic>  <Remilia Scarlet> i fucking love that hack detector
Feb 06 17:26:22 <MinitClassic>  <[LDR]Pulchy> yes
Feb 06 17:26:30 <MinitClassic>  <Remilia Scarlet> banned in 60 seconds
Feb 06 17:26:33 <MinitClassic>  <a small kitten> wat
Feb 06 17:26:39 <MinitClassic>  <[LDR]Pulchy> the rapid hack should autoperma ban tho
Feb 06 17:26:39 <MinitClassic>  <Space_Inspader> I blew up in less than 60 seconds
Feb 06 17:26:44 <MinitClassic>  <Remilia Scarlet> 25:38 -> 26:07
Feb 06 17:26:45 <MinitClassic>  <[LDR]Pulchy> instead of 7 days zz
Feb 06 17:26:47 <&a_girl>       !pm scarlet :D
Feb 06 17:26:47 <MinitClassic>  a_girl: PM sent to Remilia Scarlet
Feb 06 17:26:51 <MinitClassic>  <Remilia Scarlet> fuck, banned in 30 seconds

IPs censored to protect the innocent, and the innocent only.

Yes, with an admin on the ground, sometimes it's that easy to detect + ban people.

Anyhow...

The way I see Iceball working with respect to antihack is less to do with hack detection and more to do with hack evasion by modifying the code on the server a bit. As the entire game logic is written in Lua and the game protocol is mostly determined Lua-side, we can actually change the protocol without having to get the client to update their software. Having said that, being able to detect a specific hack might come in handy. Anyone know any really scary pictures / really loud sounds?

For AoS, however, we ultimately have to stick with serverside detection of stuff. I am aware of at least one hack which is nigh impossible to detect serverside except in one specific case, due to the protocol used there.

But of course, some hacks can be blocked out altogether. Infinite anything can be stopped - hell, inf nades / blocks is really easy to guard against. In AoS, inf ammo is a bit harder to guard against due to the fact that the client only says when you start/stop firing, and when you hit a person or break a block. But the pyspades devs managed to pull it off. (I recall fixing a bug in the antihack, but after that, it was pretty much sorted.)

Heck, even Ben pulled it off in the vanilla server in either 0.58 or 0.60. (There was a slight oversight though, where you could still shoot blocks, and where any blocks you placed over the limit were still relayed to the other clients, resulting in "ghost" blocks. But that's fixable.)

[ky14]

How? We can't modify the source code, this was a feature in alpha of 1.0 though

how do i put this ummm ah we take the original files and put them in game and exclued the extras

[Jdrew]

How? We can't modify the source code, this was a feature in alpha of 1.0 though

how do i put this ummm ah we take the original files and put them in game and exclued the extras

Yes but we can;t do that as there is no file checker I am aware of

[Ninja_pig_pro]

We might be able to code one if Grease still has the 0.60 source code and we can use it to fix it.

[UnrealIncident]

I'm working on something like this for VoxelAuth. Currently it just does some basic checks and will report possible hacks to the server. This will only stop skids but that's 99.99% of the hackers anyways.

[Rydogger]

I think it would be a great idea to make a server browser that has a file checker. You force people to download the server browser and shut down the server page (obviously cached, in case the site goes down). IIRC most hacks are .dll files, so any out of the ordinary .dll stops the person from connecting to the server, and tells them they will not be able to play the game without removing the file from the Ace of Spades folder.

[UnrealIncident]

I think it would be a great idea to make a server browser that has a file checker. You force people to download the server browser and shut down the server page (obviously cached, in case the site goes down). IIRC most hacks are .dll files, so any out of the ordinary .dll stops the person from connecting to the server, and tells them they will not be able to play the game without removing the file from the Ace of Spades folder.

Not really possible. Most hacks are injected so they aren't located in the AoS folder anyways. Also detecting "out of the ordinary" DLLs isn't to easy either. Most Anti-Viruses have a DLL in every process open for what ever reason. The only plausible is to do signature scans and integrity checks. Also with VoxelAuth we're going to let the server admins threat hack detections how they want to.

[ky14]

How? We can't modify the source code, this was a feature in alpha of 1.0 though

how do i put this ummm ah we take the original files and put them in game and exclued the extras

Yes but we can;t do that as there is no file checker I am aware of

yes i know but my fiend is working on a program for aos that take the original files and put them in game and exclued the extras he offerd it to some survers and it works 78% of the time so its a work in progress

[Space Inspader]

ky14, I think you were around when this happened...

Code: Select all

Feb 06 17:25:28 <MinitClassic>  * bobechow (IP 121.150.15.147, ID 14) entered the game!
Feb 06 17:25:33 <MinitClassic>  <Space_Inspader> I'm [LDR]Lion
Feb 06 17:25:36 <MinitClassic>  <Space_Inspader> Or BigCAt
Feb 06 17:25:38 <MinitClassic>  <Space_Inspader> Also
Feb 06 17:25:41 <MinitClassic>  <Remilia Scarlet> gcat
Feb 06 17:25:42 <MinitClassic>  * cooldude0426 (IP *, ID 27) entered the game!
Feb 06 17:25:42 <MinitClassic>  <Space_Inspader> Where is my kitty
Feb 06 17:25:44 [ hack alert showed up here, I went to check it out ]
Feb 06 17:25:53 <MinitClassic>  <Space_Inspader> It is missing its belongings
Feb 06 17:25:55 <MinitClassic>  <ky14> who in here has never heard of pewdiepie
Feb 06 17:25:59 [ thought he was suspicious, I had to check for something here ]
Feb 06 17:26:05 <MinitClassic>  <Space_Inspader> Happy wheels
Feb 06 17:26:07 <MinitClassic>  * bobechow permabanned: aimbot + norec
Feb 06 17:26:07 <MinitClassic>  * bobechow (IP 121.150.15.147) disconnected
Feb 06 17:26:11 <MinitClassic>  <[LDR]Pulchy> loool
Feb 06 17:26:18 <MinitClassic>  <Remilia Scarlet> i fucking love that hack detector
Feb 06 17:26:22 <MinitClassic>  <[LDR]Pulchy> yes
Feb 06 17:26:30 <MinitClassic>  <Remilia Scarlet> banned in 60 seconds
Feb 06 17:26:33 <MinitClassic>  <a small kitten> wat
Feb 06 17:26:39 <MinitClassic>  <[LDR]Pulchy> the rapid hack should autoperma ban tho
Feb 06 17:26:39 <MinitClassic>  <Space_Inspader> I blew up in less than 60 seconds
Feb 06 17:26:44 <MinitClassic>  <Remilia Scarlet> 25:38 -> 26:07
Feb 06 17:26:45 <MinitClassic>  <[LDR]Pulchy> instead of 7 days zz
Feb 06 17:26:47 <&a_girl>       !pm scarlet :D
Feb 06 17:26:47 <MinitClassic>  a_girl: PM sent to Remilia Scarlet
Feb 06 17:26:51 <MinitClassic>  <Remilia Scarlet> fuck, banned in 30 seconds

I am [LRD]LION. Haha, I was just shouting nonsense. I love me.

[HoboHob]

yes i know but my fiend is working on a program for aos that take the original files and put them in game and exclued the extras he offerd it to some survers and it works 78% of the time so its a work in progress

As UnrealIncident said, hacks are injected DLL's. Just downloading the game every time you start it up won't stop any hackers.

[GreaseMonkey]

Ugh, so much misconception in this thread.

We might be able to code one if Grease still has the 0.60 source code and we can use it to fix it.

For the last time, ACE OF SPADES IS NOT OPEN-SOURCE. I do NOT have the source code. I have a couple of fixed up + modified disassemblies, a few tools, and a bunch of glue scripts written in Python. The main reason why I moved onto Iceball is because screwing with the AoS code is legally dubious.

If you really, really desperately want to mod 0.60, I have my toolchain (minus the GCC + binutils + yasm stuff) here: http://dl.dropbox.com/u/32094129/aos060 ... 0-p11s.zip

As UnrealIncident said, hacks are injected DLL's. Just downloading the game every time you start it up won't stop any hackers.

Like this one, for instance oh wait it's a fucking .exe. (It's the version of ovl075 that allows you to see players through walls, and it only)
This is more of a nitpick, though. The second point is correct.