Anti-hacking

[RageIlluminati]

OK, lets talk about anti-hack methods...
First we should know how the hackers use hacks in HB...

simplest way is to use edited clients.. you just change IP in edited client and you are in...

server owner can't hide hes IP, so there is one way to change WorldServer name, and pack your client with good packer.. that can't be unpacked... then for hacker is no use of knowing IP, he need to know WS name and if he don't know it.. he can't use edited client...
I don't know how hard is to find out WS name with some network traffic sniffer or alternative program... but this solution should avoid users to use edited clients...

Second known metod for using hacks are memory patchers... like this binarydata program...
after starting HBclient.. start patcher that changes values in memory.. and you have like edited client in memory... it's good method because you don't have to know IP or WS name..

I have heard that few private servers have anti-hack for these patchers.. if you torn on patcher your client crashes immediate.. or you are disconnected from servers.. Can anybody figure it out how are these anti-hacks done.. how coould I or other server owners make something like that? this binarydatas hack is quite paininass... because Simentech is BullShit company.. they have no antihack implemented in server files...

[MagicMan]

Even if they have packed client that cannot be unpacked you can still find the ip with any decent firewall that logs all traffic too and from your com..ie i have sygate firewll and i can track any ip i connect too... which is kinda cool so you know where you are going and if someone is trying to get into you....as for changing wlser name..good idea..just need wlserver to read client ID maybe then you could stop haxors...maybe ..maybe not..

[RageIlluminati]

well.. I don't really worry about edited client users.. I have thaat under control I think.. but whats really worries me.. are these memory patchers...

Is there any solution to avoid it with china files.. where I don't have HG source or some other possibility to code inside HG or server side some detection?

[charlie]

1. Changing worldserver name wont stop us, firstly you can dump the file's hex into a text file with olly and get the worldserver name (even if the file is packed because once its in memory it doesnt mater what you pack it with)

2. they would have just changed a antihack feature in the game eg rename the search and destory function for tsearch instead of looking for the name tsearch it would hunt for outpost

anyway if you change these 2 things it will stop all the hackers i dont make private server hacks only for international which never changes version anymore so i dont make new hacks so do those 2 steps server owners and you'll stop 99.99% of hackers.. except me B)

[charlie]

and yes thats right the person who made all your servers shit just said how to stop him.. contridicting no?

[RageIlluminati]

2. they would have just changed a antihack feature in the game eg rename the search and destory function for tsearch instead of looking for the name tsearch it would hunt for outpost

so do those 2 steps server owners and you'll stop 99.99% of hackers.. except me B)

mhm.. ok I have changed my WS name...

but I didn't get this second point...

change antihack feature? rename search? destroy function??

[Cleroth]

I'll just sit and watch ROFL

[snoopy81]

There is no absolute Anti-hack method.
Provided they use time enough, Charlie or some other arround can get through.
But it's really easy to stop Client exchange.
But it's easy to prevent current memory patchers to function.
But it's easy to program the server to detect or prevent many TSearch known hacks.
But it's easy to prevent parasitic servers.
But it's relativelly easy to detect/prevent Speedhackers.
But it's possible to program Anti Sniffer types hacks.
But it's difficult to detect macroters.
But finally, most protection systems can be broken, but just make that extremelly difficult, and your server will be 95% safe.

I don't think there are enought skilled people arround to spend a lot of time to hack a well protected server, if they don't play on !

But, you use China leeched files, so I guess you're neither coder nor hacker. Most things you can do, is rely on Siementec routines, and hackers were not their concern !

[Cleroth]

I would volounteer post fixes for this. The problem is, if I post fixes for them, they'll know how it works. And therefore they may hack it

[Cyrus96]

I found client what is compailed with 3.51 client source, this means, every memory value on there is changed location, so binnarydatas hax dont work for it, it just crushes, and it can be backed with AsProtect. Ordinadry 3.51 client cant pack with AsProtect cuz its allready protected. But this client has multy client function, and i couldent changed max stats, so there is 200 max stats what isnt good. Btw HBB used same client, and ppl who played there, knows there wasent client hax0rs.

[Private]

Lately my last attempt at making a client difficult to hack with basically incorporates charlie's ideas... but along with changing the WLS name there are other things that can be changed as well.

Basically I've been going for redundancy.

[tyteman]

charlie there are ways around what you've mentioned.. they're obvious if you think about it... (OMG TYTEMAN IS BACK.. not )

[charlie]

OMG IM JUST TRYING TO HELP do you want me to make more clients which are more advanced? give me a break i try help the private server cummunity and you try it back in my face

[DarkWorld]

charlie there are ways around what you've mentioned.. they're obvious if you think about it... (OMG TYTEMAN IS BACK.. not )

Charlie would not tell you all how to fix it would he he has to keep some back doors open

But there is ways you just need to think about it

[juggalo2]

OMG IM JUST TRYING TO HELP do you want me to make more clients which are more advanced? give me a break i try help the private server cummunity and you try it back in my face

charlie kick his ass lol