Zapiboss Posted April 22, 2016 Share Posted April 22, 2016 (edited) Hello, Today, a hacker named "rag" joined my server while i wasn't there but my friend was here. My friend wanted to meet him so he set a rendez-vous point and the hacker said he was in west point, our base was at north farm (you can check where it is from pzmap). The spawn points were set as default so we knew where he could have spawned but he didn't take 10 minutes from west point to our base (that is impossible, even if you run all the way) without knowing it first and waited my friend there and killed him with a shotgun once my friend returned to the base (he discovered first the burnt house and then got killed). It was at the moment my friend got killed that he told me the story so i quickly banned him and closed the server. I did that because i didn't wanted him to do more damage to the server and i closed the server because i set a save every 3 minutes so i hoped that he burnt the house before the save but i was too late. I regret at that time that, instead of banning him, i should have joined the server as a player and tried to see by my own eyes and caught him cheating. When i checked the logs later, i saw that the "sony" guy who tried to join got kicked because of the lua/script checksums but is also the friend of the "rag" hacker. This is "rag" : http://steamcommunity.com/id/tasfasg1254125125/ and this is "sony" : http://steamcommunity.com/id/PlayerSonyxxx/ And so, that's why i'm reporting him for hacking (Teleporting at least) in PZ. (Spawn points : default Server in public list and unknown players may join VAC activated Steam clients only) Here's some extracts from my log : user log - [22-04-16 23:03:18] 76561198096434118 "rag" ip=201.68.117.199 (from TCP port test). [22-04-16 23:03:34] added connection index=2 76561198272942190. [22-04-16 23:10:35] 76561198272942190 "sony" ip=191.7.214.170 (from TCP port test). [22-04-16 23:16:48] added connection index=0 76561198096434118. item log - [22-04-16 23:22:29] 76561198096434118 "rag" container -0 10803,9129,0 [Base.AlcoholRippedSheets]. [22-04-16 23:22:31] 76561198096434118 "rag" container -0 10803,9129,0 [Base.ShotgunShells]. [22-04-16 23:22:35] 76561198096434118 "rag" container -0 10803,9129,0 [Base.Hinge]. [22-04-16 23:22:41] 76561198096434118 "rag" container -0 10803,9129,0 [Base.BigHikingBag]. chat log - (attached) admin log - [22-04-16 23:04:50] user sony kicked because Lua/script checksums do not match. [22-04-16 23:11:15] user sony kicked because Lua/script checksums do not match. [22-04-16 23:21:17] user sony kicked because Lua/script checksums do not match. [22-04-16 23:22:56][IMPORTANT] admin banned user rag. [22-04-16 23:22:56][IMPORTANT] admin banned steamid 76561198096434118(rag). pvp log - (attached) Because of him, we wasted two weeks of labour and now, how can we even trust random players joining our servers ? For your information, they were some random players that joined our servers and either helped us building our base, either they tried to kill us (but be killed instead). But if there is hackers that can bypass VAC, nowhere is safe. (private only) Thanks for reading my complaint and i hope something can be done against this player. 22-04-16_20-31_chat.txt 22-04-16_23-22_pvp.txt Edited April 26, 2016 by Zapiboss DresdenBBQ 1 Link to comment Share on other sites More sharing options...
Kirrus Posted April 22, 2016 Share Posted April 22, 2016 Unfortionately, due to Project Zomboid not being designed for multiplayer from the start, there's a lot of vulnerabilities hackers exploit. We cannot recommend an open server. Link to comment Share on other sites More sharing options...
Zapiboss Posted April 22, 2016 Author Share Posted April 22, 2016 (edited) Thanks for replying quickly. I see. We just wanted some events related to players (and we got some interesting events with players before that) instead of just choppers and some firing shots, guess we were too naive about not having thought about hackers. Will the vulnerabilities be fixed later, may i hope ? EDIT : Also, will something will be done about the player ? Or nothing can be done ? Edited April 22, 2016 by Zapiboss Adding questions Link to comment Share on other sites More sharing options...
EnigmaGrey Posted April 22, 2016 Share Posted April 22, 2016 We'll probably add him to the ban list on Spiffospace and Redboid. But there's not much TIS can do to prevent this sort of thign in the current implementation of the game. Generally, the best thing you could do is do a whitelist and manually control player access to the server. Link to comment Share on other sites More sharing options...
Zapiboss Posted April 22, 2016 Author Share Posted April 22, 2016 (edited) I don't think i'll use a whitelist but thank you for the advice. Instead, i'll check about the safehouse feature. Do you think that hackers can even destroy safehouses ? I'll also add that the hacker may even see the other players (ESP thing) Edited April 22, 2016 by Zapiboss Link to comment Share on other sites More sharing options...
EnigmaGrey Posted April 22, 2016 Share Posted April 22, 2016 This is confirmed by Redboid. We already banned him there a short while before this post for teleporting and dropping items, under a different username. Thanks, Zapiboss. Zapiboss 1 Link to comment Share on other sites More sharing options...
Zapiboss Posted April 22, 2016 Author Share Posted April 22, 2016 No, thank you for doing a great job. I didn't know you were that active ! You can close the thread if you want. Link to comment Share on other sites More sharing options...
Madruga Posted April 23, 2016 Share Posted April 23, 2016 Zapiboss! I read your post yesterday and today some random guy joined my server and did the exact same thing. I came here to double check your story and it turns out to be the same Steam ID (rag)! Link to comment Share on other sites More sharing options...
Zapiboss Posted April 23, 2016 Author Share Posted April 23, 2016 Oh, he keeps doing that then... The only issue is to blacklist his IP address from your servers or play in private only :/ Link to comment Share on other sites More sharing options...
EnigmaGrey Posted April 23, 2016 Share Posted April 23, 2016 /banid someguyssteamid Alternatively, make a firewall rule blocking their specific IP, but SteamID tends to be more consistent. Link to comment Share on other sites More sharing options...
Madruga Posted April 23, 2016 Share Posted April 23, 2016 Yeah, I just banned his steam id. Will try to block his IP too, thanks guys. Link to comment Share on other sites More sharing options...
EnigmaGrey Posted April 26, 2016 Share Posted April 26, 2016 Howdy fellas: 76561198137343859 Hacking in walls, teleporting. Link to comment Share on other sites More sharing options...
DresdenBBQ Posted April 26, 2016 Share Posted April 26, 2016 I remember on PVE Spiffo Space I had a base with 8 other guys and when i logged on some ass had hacked in brick walls all around my crates, luckily i had the sledgehammer on me but still it was pretty annoying. Link to comment Share on other sites More sharing options...
Madruga Posted May 1, 2016 Share Posted May 1, 2016 76561198301080682 Also hacking/destroying walls. Link to comment Share on other sites More sharing options...
TheDreaded1 Posted May 2, 2016 Share Posted May 2, 2016 May want to start a 'suspected of hacking' sticky.. Link to comment Share on other sites More sharing options...
EnigmaGrey Posted May 2, 2016 Share Posted May 2, 2016 7 hours ago, TheDreaded1 said: May want to start a 'suspected of hacking' sticky.. I actually made one then hid it because it seemed like a dick move to reveal people's info . . . So tempting to give in the darkside though. Link to comment Share on other sites More sharing options...
Zapiboss Posted May 2, 2016 Author Share Posted May 2, 2016 If people cheats online on our servers, i think we deserve to know who they are. It's not like you are giving their true names and where they live. You are just giving their steam profiles, right ? Link to comment Share on other sites More sharing options...
TheDreaded1 Posted May 2, 2016 Share Posted May 2, 2016 1 hour ago, EnigmaGrey said: I actually made one then hid it because it seemed like a dick move to reveal people's info . . . So tempting to give in the darkside though. I think most people woukd only use it for reference or to add to it if they suspect a hacker. It does leave a 'vindictive' door open, so I'd only add who you currently have banned on redboid, and require a stringent vetting process to add Link to comment Share on other sites More sharing options...
Jab Posted May 3, 2016 Share Posted May 3, 2016 I wouldn't support releasing steam IDS on the forums because it is the equivalent of I.P. Addresses. I'm not sure how the forum overall feels about this, however, I've been on several in the past that frowns on posting IP's or ID's associated with players. It's possible to create a global banning solution of your own, I just feel posting it here would really attract the wrong kind of attention. Link to comment Share on other sites More sharing options...
Madruga Posted May 3, 2016 Share Posted May 3, 2016 This is indeed a sensitive matter. I've been hosting a server for a little more than a month now and PZ has a lot of breaches when it comes to Multiplayer. I'm not complaining or anything and I've read on the forums that this is due to the game's initial conception, but it really, reaaaaally sucks when someone with literally 4 hours of playing PZ enters your server and spoils all the fun you're having... So, looking from this perspective, you're only seeking some kind of prevention... Link to comment Share on other sites More sharing options...
Azzmunch Posted May 13, 2016 Share Posted May 13, 2016 Turn fire damage and fire spread off for starters. Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now