A user attempted to break into the admin panel. How can the be stopped?

[jason9]

Some user came on my server and tried to break into my admin settings. The system notified me and I shut down the server. The user got away before I could ban them for life. How can that be prevented?

[Ad Bot]

[Lugnut]

Post the server's console.log.

[Greek2me]

Just ignore it. He can't get in as long as you have a good admin password. (or leave the password blank)

[Tetris]

Just ignore it. He can't get in as long as you have a good admin password. (or leave the password blank)

this. anyone can try all they want at guessing the admin password but will eventually be auto-kicked for trying too much.

your admin controls are safe.

[Tetris]

Just ignore it. He can't get in as long as you have a good admin password. (or leave the password blank)

this. anyone can try all they want at guessing the admin password but will eventually be auto-kicked for trying too much.

your admin controls are safe.

[Pah1023]

this. anyone can try all they want at guessing the admin password but will eventually be auto-kicked for trying too much.

your admin controls are safe.

lol double post.

If he keeps coming back and keeps trying, go to clear bricks, and select his name / id from the list and ban him.

If he just did it once, he might of been tricked into doing /sad kitties or something like that, which tries to guess the admin / super admin password.

[jason9]

Thanks for all your help.
I banned the user but apparently not for life.
It was in my ban log.

jason9   47779   loafofbread11   96469   174.12x.xx.xxx    Hacking attempt.   14   253348

I took out part of the IP address. I dont want to get into trouble here.
But the user should be shown as a threat to all.

[Zeblote]

Well first of all it isn't even possible to "break into the admin panel". Of course I could open the admin gui on a server, but that won't be useful at all as the server will simply drop the commands it sends. Best to just leave the admin password blank (admin passwords are stupid anyways) and use RTB to manually admin people. You overreacted and banned him or nothing. Good job.

There also isn't any problem posting an IP address. It's not like it can be used to obtain his personal inormation.

[RarwMuffinz]

There also isn't any problem posting an IP address. It's not like it can be used to obtain his personal inormation.

Well except for geolocation by ip address, but its not like your ip address is private info anyways.

[honytawk]

Well except for geolocation by ip address, but its not like your ip address is private info anyways.

That usually just locates his ISP or the closest router he is connected to, which is somewhere down the street.
Never enough to pinpoint his exact house.

[Zeblote]

Well except for geolocation by ip address

The most you'll get correct is the city.

[jason9]

oh, well, Joplin Missouri. That is irrelevant though. Oh, and to the overreaction part, its hacking. That's as simple as it gets. No overreaction, its hacking.
In this case 1234 is a lousy hacking attempt at best.
Frankly, Ive gotten quite over this. I was new to the game. (newer) and frankly have no time now for debating how I over reacted.
The bottom line is that there are a lot of smart ass kids on the entire internet today and it frightens me for our countries future.
Thank you to everyone who was helpful.

[otto-san]

This wasn't a hacking attempt.

The game has an admin password system, and non-admin players that attempt to access the admin menu will be prompted for one. If they guess incorrectly, it'll show that they made an admin attempt in the host's console.

If they fail to enter the correct password enough times, the server will automatically kick them. There's no way for them to hack themselves admin, because this information is not available to the client. Don't worry about it. It's just a dumb kid trying to guess your admin password.