EvenBalance's "Repository" Software

[Scarface]

i thought it was a legitimate question. why are you uncomfortable with streaming logs?

[SirRobHiFi]

Nothing against anyone...but I'm not comfortable with this.  I personally won't be using it anytime soon.

What is there in your PB logs you don't feel comfortable with me seeing?

 

:roll:

I'm completely lost now. Open one of your PB logs and read through it, what's in there you wouldn't feel comfortable with streamed to pbbans?

[Johnny|sF]

him being caught on his own server ;)

[Guest MA-Chick{EFK}]

him being caught on his own server ;)

who's him? Thought the question was directed to me....

 

It's my choice to use or not, correct? The title of the thread is related to who would like to beta test. My answer was that I was not comfortable with it, and at this time would not be interested i participating. I would prefer to do my own research on it. How, from this, Johnny got that I not only have changed gender somewhere along the line (humor people, humor), but have now cheated, is complete bs.

 

I haven't said I will NOT use it. I said, at this time, I'm not comfortable with it yet.

[Dwarden]

1) one of use of repository is database of IP / GUID / NickName

 

in this time of dynamic IPs, various proxies and port tunnels and so on it's slowly lowering on my importance "to have it" list, with introducion of IPv6 this become just NickName / GUID db

 

that is what i see as real good one, problem is usually streaming server admin not get access to full database, just can search etc.

 

2) another in line can be semi-global ban list for various violations and md5tool checks ...

 

this bring another issue, we already know cheaters moved theirs stuff outside game folders and md5tool scans catching just some n00b cheaters which fails at PB main scans so or so

 

also this bring up so called mistakes and false with #9002 and #80023 violations use (see AMBL from Punk s Busted ).

 

it's good thing but ... for serious use too big chance to failture rate ...

 

there 3 issues above are more likely to raise another bug (ie #120004 GameHook problem from PrettySadBusiness banning people from theirs auto repository system, it took 1-2 days till EBI fixed it and another day till such GH is removed from auto repository) ...

 

i'm sure u get what i mean with errors

 

-

 

for that guy commenting password stuff,

firstly it was meant for Unreal engine games (AA, RS, SCPT) and BF games.... also i see it can be same problem for JO

second in line, there is chance it was fixed in past as nearly every of bugs and issues i mentioned to EBI ...

third same goes about optimizations in comm ...

[Dwarden]

They DO NOT record rcon passwords or even anything accidently typed into the console. Look at one of your pb logs for yourself.  

wrong

 

[05.31.2004 01:10:55] PB_RCON pb_sv_rcon 100 password from Dwarden

[05.31.2004 01:11:17] PB_RCON password blabla from Dwarden

 

... this was taken from server log and from remote log ...

[Johnny|sF]

that is strange,

 

when you do cvarlogging and a player has set "/set rconpassword blabla"

you will only see "user cvar rconpassword" and no value.

 

think this is a security issue which pb needs to solve.

[Dwarden]

to be fair,

 

most usefull stuff about rep and database of GUID/NAME/IP

 

is chance to easier detect leaked keys ...

 

but again there is chance of failture rate because of dynamic IPs + changes of IP ranges between various ISP (i have seen that and discussed with developers of one very popular IP tracking tool) ...

 

so what was OK for 1 year in geoIP db, can be problem next year and vice versa ...

 

so the flag 100% leaked key is not possible to use always ...

[SirRobHiFi]

 

They DO NOT record rcon passwords or even anything accidently typed into the console. Look at one of your pb logs for yourself.  

wrong

 

[05.31.2004 01:10:55] PB_RCON pb_sv_rcon 100 password from Dwarden

[05.31.2004 01:11:17] PB_RCON password blabla from Dwarden

 

... this was taken from server log and from remote log ...

 

 

We are talking about the pb logs only.... in the pb folder... under svlogs. Why are you talking about the server log and the remote log?

[stymie]

I am confused... you claim that the BF series of games contain your RCON Password. This I believe is false information.

 

This is one of my logs from my BFV server before the Patch ... so its version 1.0

 

05.09.2004 04:56:51] PB Log File /home/games/rfg/BFV/bfv/pb/svlogs/00000002.log Opened for BFV (l)

[05.09.2004 04:56:51] 0 Power Players loaded from /home/games/rfg/BFV/bfv/pb/pbpower.dat

[05.09.2004 04:56:51] 0 PB Rcon Filters loaded from /home/games/rfg/BFV/bfv/pb/pbrcon.dat

[05.09.2004 04:56:51] 0 Map lines loaded from /home/games/rfg/BFV/bfv/pb/pbsvmaps.cfg

[05.09.2004 04:56:51] PunkBuster Server (v1.079 | A1333 C1.075) Enabled

[05.09.2004 04:56:51] Game Version [v1.0]

and this is a pb_sv_log from my BFV server after the patch

 

[06.10.2004 15:18:11] PB Log File /home/games/rfg/BFV/bfv/pb/svlogs/00000001.log Opened for BFV (l)

[06.10.2004 15:18:11] 0 Power Players loaded from /home/games/rfg/BFV/bfv/pb/pbpower.dat

[06.10.2004 15:18:11] 0 PB Rcon Filters loaded from /home/games/rfg/BFV/bfv/pb/pbrcon.dat

[06.10.2004 15:18:11] 0 Map lines loaded from /home/games/rfg/BFV/bfv/pb/pbsvmaps.cfg

[06.10.2004 15:18:11] pb_sv_MsgPrefix = ^3rFg ^2PB ^5server

[06.10.2004 15:18:11] pb_sv_MaxDlRate = 4 (1 to 4)

[06.10.2004 15:18:11] pb_sv_MaxConDls = 3 (1 to 6)

[06.10.2004 15:18:11] pb_sv_KickLen = 2 (0 to 60)

[06.10.2004 15:18:11] pb_sv_CvarFreq = 2 (2 to 10)

[06.10.2004 15:18:11] pb_sv_CvarLogging = 1 (0 to 3)

[06.10.2004 15:18:11] pb_sv_CvarWalk = 1 (0 to 4)

[06.10.2004 15:18:11] pb_sv_CvarUserPulse = 20 (10 to 99)

[06.10.2004 15:18:11] pb_sv_CvarChangedPulse = 20 (10 to 99)

[06.10.2004 15:18:11] pb_sv_CQC = 1 (0=No, 1=Yes)

[06.10.2004 15:18:11] pb_sv_LogSync = 0 (0=No, 1=Yes)

[06.10.2004 15:18:11] pb_sv_LogCeiling = 999999 (10 to 999999)

[06.10.2004 15:18:11] pb_sv_SsFloor = 1 (1 to 999999)

[06.10.2004 15:18:11] pb_sv_SsCeiling = 999999 (1 to 999999)

[06.10.2004 15:18:11] pb_sv_SsCmd =  

[06.10.2004 15:18:11] pb_sv_SsWidth = 320 (10 to 4096)

[06.10.2004 15:18:11] pb_sv_SsHeight = 240 (10 to 4096)

[06.10.2004 15:18:11] pb_sv_SsXpct = 50 (-1 to 100)

[06.10.2004 15:18:11] pb_sv_SsYpct = 50 (-1 to 100)

[06.10.2004 15:18:11] pb_sv_SsSrate = 1 (0 to 4)

[06.10.2004 15:18:11] pb_sv_SsDelay = 2 (0 to 60)

[06.10.2004 15:18:11] pb_sv_SsPath =  

[06.10.2004 15:18:11] pb_sv_AutoSsFrom = 300 (30 to 300)

[06.10.2004 15:18:11] pb_sv_AutoSsTo = 1200 (300 to 1500)

[06.10.2004 15:18:11] pb_sv_AutoSs = 0 (0=No, 1=Yes)

[06.10.2004 15:18:11] pb_sv_Sleep = 40 (20 to 100)

[06.10.2004 15:18:11] pb_sv_PowerMin = 10 (1 to 1000)

[06.10.2004 15:18:11] pb_sv_PowerDef = 1 (0 to 10)

[06.10.2004 15:18:11] pb_sv_PowerKickLen = 5 (0 to 60)

[06.10.2004 15:18:11] pb_sv_httpPort = 0 (0 to 65535)

[06.10.2004 15:18:11] pb_sv_httpAddr = xx.xxx.xxx.xx

[06.10.2004 15:18:11] pb_sv_httpRefresh = 30 (10 to 999)

[06.10.2004 15:18:11] pb_sv_httpKey = *****

[06.10.2004 15:18:11] pb_sv_httpMaps =  

[06.10.2004 15:18:11] pb_sv_scoreKick = -10 (-20 to 0)

[06.10.2004 15:18:11] pb_sv_changePeriod = 10 (1 to 999)

[06.10.2004 15:18:11] pb_sv_changeMax = 5 (1 to 50)

[06.10.2004 15:18:11] pb_sv_dupNameGrace = 20 (0 to 90)

[06.10.2004 15:18:11] pb_sv_autoUpdBan = 1 (0 to 1)

[06.10.2004 15:18:11] pb_sv_extChar = 0 (0 to 1)

[06.10.2004 15:18:11] pb_sv_guidRelax = 0 (0 to 7)

[06.10.2004 15:18:11] pb_sv_LogUser =  

[06.10.2004 15:18:11] pb_sv_LogPw = *****

[06.10.2004 15:18:11] pb_sv_LogAddr =  

[06.10.2004 15:18:11] pb_sv_LogPort = 24389 (1 to 65535)

[06.10.2004 15:18:11] Added Bad Name: "CRAP" Grace=30

[06.10.2004 15:18:11] Added Bad Name: "UNAMED" Grace=30

[06.10.2004 15:18:11] Added Bad Name: "OGC" Grace=30

[06.10.2004 15:18:11] Added Bad Name: "NOSKILL" Grace=30

[06.10.2004 15:18:11] Added Bad Name: "NONAME" Grace=30

[06.10.2004 15:18:11] Added Bad Name: "PLAYER" Grace=30

[06.10.2004 15:18:11] Cvar List (in Memory) has been Emptied

[06.10.2004 15:18:11] Cvar Check Added: aim IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: glow IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ignorewalls IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: pingpredict IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: autoaim IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: autofire IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_aim IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_bot IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_fov IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_glow IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_mode IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_names IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_wall IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_trans IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: ogc_weapons IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: pmove_fixed IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: cl_punkbuster IN 1 1

[06.10.2004 15:18:11] Cvar Check Added: safe IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: radar IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: mode IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: names IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: bunny IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: nofx IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: wall IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: shoot IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: weapons IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: alias IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: guid IN 0 0

[06.10.2004 15:18:11] Cvar Check Added: cl_timenudge IN -50 0

[06.10.2004 15:18:11] Cvar Check Added: r_shownormals IN 0 0

[06.10.2004 15:18:11] PunkBuster Server (v1.089 | A1334 C1.085) Enabled

[06.10.2004 15:18:11] Game Version [v1.02]

As you can see there is NO Rcon Password Information in either of these 2 logs from before or after the patch.

 

So could you please explain to me where you get your informaion from.

 

Peace,

[Johnny|sF]

I already wondered why he got the rconpassword in his pb logs and I didnt.

 

I told you only the pb logs are streamed.

[{VOD}CJ]

I just randomly downloaded about 15 logs from our repository test. There is no mention of RCON passwords in any of the files. These logs are the same as what is in your pb folder. I've parsed 100's of these logs and at no time has there ever been any sensitive data.

 

You all need to feel comfortable with using the repository because when the real pbbans system is online, that is how we will accept log violations. The current format is way too insecure. Any admin could post a fake log violation. With the repository, the logs are encrypted and streamed to us.

We also need these logs to fatten up the MPI.

 

I understand if some of you are hesitent about doing this. There is very little documentation on the repository.

[Johnny|sF]

the logs the other dude spoke about are osp logs or something of that kind.

 

it logs everything you fill in the server console, every command you enter using rcon. those logs dont get streamed.

[Dwarden]

you missed i speak about PB_RCON usage

 

not RCON itself

 

i speak about commands executed THROUGHT

PB_RCON

or

PB Webtool

 

not commands executed directly to game server engine (ie telnet etc) ...

 

We are talking about the pb logs only.... in the pb folder... under svlogs. Why are you talking about the server log and the remote log?

server log = PB server log (located in PBSVLOGS )

remote log = syslog feature in PB existing for ages, similar or same to that repository system, if improvements were made then i'm only happy ...

[Johnny|sF]

serverlogs:

 

1. pbsvlogs

2. sv_viol.log

3. sv_cheat.log

4. osplogs

5. consolelogs

 

only the first 3 logs are streamed, they do not contain info about your rconpassword or such.

[SirRobHiFi]

Dwarden...

 

Lets simplify this a bit.

 

What is the EXACT name of the log you found those entries in?

 

1: 000001.log (or similar)

 

2: server.log

 

3: remote.log

 

 

 

 

The first one is the type we are talking about, it includes everything in the sv_viol.log and sv_cheat.log along with the connect info of all the players that join your server. It will also contain CVAR values for those players if you have CVAR logging set up to write to this log.

 

PS, please stop shouting. :)

[RodeoBob]

The sv_cheat and sv_viol are not streamed....they are actually already listed in your pb server logs and those are streamed. :)

[Johnny|sF]

time to set cvarlogging to go into both .var files and the main pb log :)

(pb_sv_cvarlogging 3)

[{DioCheeZ}RevBubba]

time to set cvarlogging to go into both .var files and the main pb log  

(pb_sv_cvarlogging 3)

That's the way I installed the cvar checks in the first place. :D

[RodeoBob]

Dwarden, I just noticed that you play AA.....do you play on a leased official server or do you have your own private AA server? Either way, you should try to be more specific in with your concerns.

 

Our intent here is to keep the cheaters out of our servers, and I am not understanding your inputs. You seem to be a little confused on the Repository process. If you are on a leased server, explain to me what logs you can get to as those are basically restricted to the hosting company.

 

I will reiterate.....RCON cmds are not logged into the PB server logs....they are in your qconsole or game logs which are NOT streamed to the Repository.

[RodeoBob]

A change of how to get your servers streaming to the PBBans repository. Each of these commands need to be entered through your console.

 

pb_sv_logaddr 63.171.64.22  

pb_sv_logport 24389  

pb_sv_loguser someuser (create yourself a username)  

pb_sv_logpw somepass (create yourself a password)

pb_sv_writecfg

For the pb_sv_loguser please use something revelant to your clan/group, i.e, VODserver, EFKserver, etc. The pb_sv_logpw can be anything you choose. Here is what it should look like:

 

pb_sv_loguser VODserver

 

NOTE: This does not apply if you are already streaming.

[priestx.twol]

streaming my logs now :D

[RodeoBob]

To where? They are not making it to our repository.....and you would need to send me the username and password you entered so I can setup the pbbans config.

[priestx.twol]

I did send the ip/usrname/pass to you.

 

I'll resend.

[RodeoBob]

Some folks still having problems with setting up their server to stream. Here is a "sample" to follow:

 

pb_sv_logaddr 63.171.64.22

pb_sv_logport 24389

pb_sv_loguser EKTClan

pb_sv_logpw nooblers

pb_sv_writecfg

 

These commands should be entered through the console with RCON capabilities (best to do it using HLSW, All Seeing Eye, or a program similar).

 

It is important to note.....that the top two lines must be exactly like the ones in the sample. Do not put your game server ip and port in.....it won't work.