tubesock Posted April 2, 2002 Share Posted April 2, 2002 There is an exploit for the Dedicated server that dates back to Quake 3 Point Release 1.29g (and was later fixed in 1.3x)... The servers can be taken down at will. People at ID software are/were aware of it at the time and fixed it. These servers can be very stable, if this exploit was fixed. If anyone needs more info (that "anyone" being someone who can help fix the problem), drop me a line and I will give you everything I have related to it. Thanks, tubesock http://www.quake****.com Link to comment Share on other sites More sharing options...
MatrixCPA Posted April 2, 2002 Share Posted April 2, 2002 ttt Link to comment Share on other sites More sharing options...
madrebel Posted April 2, 2002 Share Posted April 2, 2002 Originally posted by tubesock There is an exploit for the Dedicated server that dates back to Quake 3 Point Release 1.29g (and was later fixed in 1.3x)... The servers can be taken down at will. People at ID software are/were aware of it at the time and fixed it. These servers can be very stable, if this exploit was fixed. If anyone needs more info (that "anyone" being someone who can help fix the problem), drop me a line and I will give you everything I have related to it. Thanks, tubesock http://www.quake****.com can you prove the stability problem is caused by this exploit? My serers are just segfaulting from time to time Link to comment Share on other sites More sharing options...
tubesock Posted April 2, 2002 Author Share Posted April 2, 2002 I can't rule out other bugs, obviously, but this is an exploit that affected the 1.29 point release of Q3A. Same exact program that crashed q3 servers crashes jk2 servers. -Tube http://www.planetqs.com Link to comment Share on other sites More sharing options...
emorog Posted April 11, 2002 Share Posted April 11, 2002 what program? do you know how it works? or where can i find it? thanks, Link to comment Share on other sites More sharing options...
Hell Raiser Posted April 11, 2002 Share Posted April 11, 2002 It does indeed work as I managed to find the program, and I tried it on one server. I opened JK2, and got a server list. I had picked a server with rather high ping, and had it highlighted. I opened the proggie, typed in the IP of the server, and pressed the "crash" button. After that, I couldn't connect to that server via JK2, or the proggie. I fear that the "crash all" button would just as easily take down all the servers. (I sure as hell ain't testin that one....) And no, I'm not givin the program out to anybody unless they're from Raven and can prove it. [/parinoia] Link to comment Share on other sites More sharing options...
MatrixCPA Posted April 11, 2002 Share Posted April 11, 2002 Personally, I'd rather not see the tools used to accomplish this or the details of the vulnerability spread around any more than they already are. The proportion of people who would actually be in a position to create a fix are far fewer than those who'd just love to crash servers in their spare time. I'm not implying that you are one such person, but I'm sure you understand my position. Link to comment Share on other sites More sharing options...
Hell Raiser Posted April 11, 2002 Share Posted April 11, 2002 Originally posted by MatrixCPA Personally, I'd rather not see the tools used to accomplish this or the details of the vulnerability spread around any more than they already are. The proportion of people who would actually be in a position to create a fix are far fewer than those who'd just love to crash servers in their spare time. Ditto. I managed to find the program using my wits and a bit of luck. It really doesn't need to be spread around a whole lot any time soon. It's just too easy to use. Link to comment Share on other sites More sharing options...
[TE]DarthBob Posted April 11, 2002 Share Posted April 11, 2002 Is there anything I can look at in the log after my server crashes to see if mine is being exploited by this? It just started happening to mine, after running stable for the last 2 weeks. Link to comment Share on other sites More sharing options...
tubesock Posted April 11, 2002 Author Share Posted April 11, 2002 -------------------------------------- :: Quake 3 Arena 1.29f/g Vulnerability -------------------------------------- ----------- :: Summary ----------- There exists a very large hole in Quake 3 Arena, version 1.29f and 1.29g (the latest, 1.29g which got released just under a week ago). The hole is not fixable in any way by the user, and most of the servers that are up (thousands of them) are vulnerable. To have this hole fixed, a PR (point release) will have to be given to the public by iD Software. However, we have discovered a new one which segment faults the servers cleanly (it gives back the memory it had taken before, which is a lot since Quake 3 is a memory hog). If the server is logging, it will segment fault before it has a chance to append it to the log file. *snip* That's all I will paste from it... -Tube Link to comment Share on other sites More sharing options...
MatrixCPA Posted April 11, 2002 Share Posted April 11, 2002 Originally posted by [TE]DarthBob Is there anything I can look at in the log after my server crashes to see if mine is being exploited by this? It just started happening to mine, after running stable for the last 2 weeks. The answer is no. The only way you'll have any chance to tell is if you are either watching the server console when it happens or if you run the server inside screen and you don't have an auto-restart script. I recommend you just have a restart script running so that your server is back up quickly. If they can't acutally get the servers to be down for any length of time, it's not as much "fun" for them. Link to comment Share on other sites More sharing options...
DarthV Posted April 11, 2002 Share Posted April 11, 2002 Originally posted by MatrixCPA Personally, I'd rather not see the tools used to accomplish this or the details of the vulnerability spread around any more than they already are. The proportion of people who would actually be in a position to create a fix are far fewer than those who'd just love to crash servers in their spare time. I'm not implying that you are one such person, but I'm sure you understand my position. That sounds like Microsoft's security through obscurity practices. Hiding the problem will just let companies off the hook. The more people know about the problem, the better chance that Raven will get a fix out sooner. Or so I would assume. Link to comment Share on other sites More sharing options...
MatrixCPA Posted April 11, 2002 Share Posted April 11, 2002 Raven is well aware of the problem. The point here is not to HIDE the vulnerability. If that were the goal, we wouldn't be posting about it all over the place. However, handing out the app that utilizes this vulnerabilty isn't going to do anything except increase the number of people crashing servers. Now, if you believe that by crashing servers more often that will "encourage" Raven to fix the problem sooner...I can't say if that would be true or not. In the end, any server admin worth their salt has auto-restart capability and the only practical effect of downing servers is to disrupt the players' experience. If you sincerely believe that you have the ability and opportunity to fix the problem, that's one thing. If you're just curious, I understand that too. Just take into account that we're not trying to "solve" the problem by "hiding" the methods--we're just mitigating it until the problem is solved by the people with the ability and opportunity to fix it. Right now, that's the folks at Raven. Link to comment Share on other sites More sharing options...
RavensSoul Posted April 12, 2002 Share Posted April 12, 2002 Good point Matrix. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.