ULX

Author Topic: superadmin checker  (Read 2454 times)

0 Members and 1 Guest are viewing this topic.

Offline IceCupe123

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
superadmin checker
« on: January 30, 2016, 05:26:06 PM »
i need an script that check the superadmin group and remove players from it if they are not allowed to be superadmin
Sample : player1 player2 and player3 are allowed and player4 not so if player4 is superadmin then player4 get instant removed from superadmin and banned.


pls don't ask why i need it and sry for my bad English :D
« Last Edit: January 30, 2016, 05:28:20 PM by IceCupe123 »

Offline Bytewave

  • Respected Community Member
  • Hero Member
  • *****
  • Posts: 718
  • Karma: 116
  • :)
    • My Homepage
Re: superadmin checker
« Reply #1 on: January 30, 2016, 07:35:39 PM »
If people are being added to the superadmin group when they shouldn't be, either you have a security hole you need to patch, or your staff is corrupt.
What exactly is causing people t be in the superadmin group when they shouldn't be? Perhaps you ought to address that first?
bw81@ulysses-forums ~ % whoami
Homepage

Offline JamminR

  • Ulysses Team Member
  • Hero Member
  • *****
  • Posts: 8096
  • Karma: 390
  • Sertafide Ulysses Jenius
    • Team Ulysses [ULib/ULX, other fine releases]
Re: superadmin checker
« Reply #2 on: January 30, 2016, 07:57:58 PM »
I agree with Bytewave.
Though a superadmin group enforcer/extra security whitelist is an interesting idea, if you have code/people adding others to superadmin, there's likely no stop to whoever shouldn't be superadmin from giving a lower group the permissions a superadmin has.
"Though a program be but three lines long, someday it will have to be maintained." -- The Tao of Programming

Offline IceCupe123

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
Re: superadmin checker
« Reply #3 on: January 31, 2016, 05:04:21 AM »
yea i have a backdoor but i cant find it

Offline Megiddo

  • Ulysses Team Member
  • Hero Member
  • *****
  • Posts: 6214
  • Karma: 394
  • Project Lead
Re: superadmin checker
« Reply #4 on: January 31, 2016, 05:15:56 AM »
yea i have a backdoor but i cant find it

Does this not concern you?
Experiencing God's grace one day at a time.

Offline IceCupe123

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
Re: superadmin checker
« Reply #5 on: January 31, 2016, 05:21:49 AM »
it dose

Offline notedhalfling

  • Newbie
  • *
  • Posts: 4
  • Karma: 2
Re: superadmin checker
« Reply #6 on: January 31, 2016, 09:43:55 AM »
Could you post a list of addons you have? It may also be beneficial to install http://forums.ulyssesmod.net/index.php/topic,8477.0.html to see if it catches anything you missed

Offline IceCupe123

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
Re: superadmin checker
« Reply #7 on: January 31, 2016, 12:33:02 PM »
i tried nomolua already but nothing i dont know

Offline MrPresident

  • Ulysses Team Member
  • Hero Member
  • *****
  • Posts: 2728
  • Karma: 430
    • |G4P| Gman4President
Re: superadmin checker
« Reply #8 on: January 31, 2016, 01:37:58 PM »
First thing you should check are any leaked scripts you have downloaded. This is a very common place for people to put in back doors before they leak a script.

We don't condone using leaked scripts, so if you are, you should probably remove them, but all the same those would be the first place I'd look for back doors.


Second, make sure your rcon password is strong. I recently helped someone who had an rcon password of '1764'. He changed it after I explained to him how that was troublesome.. but if someone knows your rcon password, they could be using that to exploit your server. Also, make sure your rcon password is in your command line, NOT your server.cfg file.

Offline IceCupe123

  • Newbie
  • *
  • Posts: 6
  • Karma: 0
Re: superadmin checker
« Reply #9 on: January 31, 2016, 01:56:40 PM »
okay i did hopefully the back door is closed and i dont use an rcon password for more safety