You are an unregistered user, you can register here
Navigation

Information

Site

Donations
If you wish to make a donation you can by clicking the image below.


 
Go Back   The Unreal Admins Page > Forums > Hosted Forums > UTAN > Feature Requests

 
Thread Tools Display Modes
  #1  
Unread 12th February, 2005, 09:22 AM
Azura's Avatar
Azura Azura is offline
Holy Shit!!
 
Join Date: Apr 2003
Posts: 4,029
Default Prefetch hook bans under a different category

The following thread has raised a question or two :
http://www.unrealadmin.org/forums/sh...newpost&t=9742

I realize that this will require messing with the system but I for one would like to see the hook prefetch bans listed under their own category instead of being listed along with classic uscript aimbots. As for the wallhack category, I was wondering if the radar executable actually works with UT2004. Is that the case ?
__________________
How to feck up a perfectly good game:
UT (1999) = UnbelievableGameSoCoolIMustHelpBringNewPlayers Tournament
UT (2008) = Unreal ThrustMyPrivatePartsInYourFaceBish

And that's probably why UTIII was a relative flop. New game, same sh*thead players ^^.
  #2  
Unread 12th February, 2005, 09:53 AM
Limited's Avatar
Limited Limited is offline
Administrator/UTAN Admin
 
Join Date: Jul 2003
Location: /home/limited/
Posts: 1,240
Default

Quote:
Originally Posted by Azura
The following thread has raised a question or two :
http://www.unrealadmin.org/forums/sh...newpost&t=9742

I realize that this will require messing with the system but I for one would like to see the hook prefetch bans listed under their own category instead of being listed along with classic uscript aimbots. As for the wallhack category, I was wondering if the radar executable actually works with UT2004. Is that the case ?
The newer versions of the radar do work with UT2004 along with a host of other games, however due to the nature of the prefetch, we cannot tell the version of the hack was used.

Your request for the "Prefetch" category has been approved, it will appear in UTAN 2.0.
__________________
All views in the above post are that of the poster and not that of UTAN, unless otherwise stated
When you kill 6 people in Unreal Tournament it's a "Monster Kill", in Quake3 it's "Excellent", and in Counter-Strike it's "Kick Banned"
  #3  
Unread 12th February, 2005, 01:39 PM
Brando67 Brando67 is offline
Holy Shit!!
 
Join Date: Nov 2002
Location: Canada.
Posts: 558
Thumbs up

Cool.
  #4  
Unread 12th February, 2005, 04:34 PM
LeeBe's Avatar
LeeBe LeeBe is offline
Holy Shit!!
 
Join Date: Feb 2003
Location: Uk.gif
Posts: 1,340
Default

Quote:
Originally Posted by Limited
Your request for the "Prefetch" category has been approved, it will appear in UTAN 2.0.
now that is a good compromise - nice one.
  #5  
Unread 12th February, 2005, 06:21 PM
nixxy's Avatar
nixxy nixxy is offline
Dominating
 
Join Date: Oct 2004
Location: Germany
Posts: 157
Default

rgr
__________________


World Gamers Forums
"It has been rumored that we have fired scud missiles into Kuwait. I am here now to tell you, we do not have any scud missiles
and I don't know why they were fired into Kuwait. "
  #6  
Unread 12th February, 2005, 08:09 PM
Sardukar Sardukar is offline
Godlike
 
Join Date: Feb 2003
Location: UK
Posts: 420
Default

Anything new on the scalable "punishment" for those identified with a prefetch file?

I still do not think it is right to globally ban someone just because they happened to be on a UTAN administrator's server when they had the prefetch file, and to only locally ban someone when it is a server belonging to a regular UTAN member.

I am also wondering what type of bans, exactly, will Epic's UTAN integration in their latest UT2004 patch cover? If Epic's banning system duplicated the bans for the prefetch files (for example), then I think the "global ban if you have that on a UTAN administrator's server" definitely need revising.

I've brought this up before but I'm not sure it reached the right people or received the attention I think it needs.

What does everyone else think?
__________________
irc.quakenet.org - find me in; #unrealadmin #anti-cheat #ugn.pug
  #7  
Unread 27th February, 2005, 08:10 PM
5625Maniac's Avatar
5625Maniac 5625Maniac is offline
Dominating
 
Join Date: Oct 2004
Posts: 105
Default

The pre-fetch scanning does have it's flaws and should be fixed up.

The obvious one is the false positives because it's just looking for the name, and not acutally scanning or detecting any signatures to actually detect or veryify is the real thing (like a virus scanner would do to scan virus reguardless of the file name).

It's not just the pre-fetch, there was already a case of a false positive because of a vehicle called Helios and user was innocently banned as a result which was eventually reversed. This wouldn't of happen if the proper detection scheme is implemented.

I can most likely make a blank text file called "FalsePostiveHeliosTest" something and that can most likely get detected as a cheat which is isn't.
  #8  
Unread 27th February, 2005, 09:44 PM
Shambler Shambler is offline
Holy Shit!!
 
Join Date: Jul 2004
Posts: 875
Default

The prefetch bans generally go under filenames such as "Helios-Hook" or "Helios-Radar" etc., they are confirmed cheats and the chances of other legitimate programs going under the same name is practically none.

If it's simply a file name with the word "Helios" in it but that isn't already known as a cheat then it's most likely going to be thought of as suspicious but not bannable.
That's my understanding of how this works.
  #9  
Unread 27th February, 2005, 10:01 PM
BLTicklemonster BLTicklemonster is offline
Holy Shit!!
 
Join Date: May 2004
Posts: 1,004
Default

IF one were to insist on testing hooks, it has been my experie- er, my brother told me, yeah that's it... that if you just rename the executable to fartwad.exe or whatever, it still works, but it prefetches under that name, and will not show up.

Just right click on the file, and rename.

OF COURSE, if you were stupid enough to use the renamed hook online in an uncontrolled environment, then of course it would be caught right off, and you'd be busted no matter what you called it. So be warned, if you insist on testing it, do it offline on your own machine with protection that is on your machine, or set up a lan server, or use a server that has not had the "tell mommy what is going on" changes made to the ut.ini file.

I got some ideas I intend to test, so I thought I'd share this with any like minded individuals. Nothing like having a prefetch catch to ruin your day, especially when you don't even mess with 2k4 protection in the first place. .


Or is that too much info in a public place? If so, by all means delete this reply, kind admin type.
  #10  
Unread 27th February, 2005, 10:06 PM
ShiningSquirrel ShiningSquirrel is offline
Holy Shit!!
 
Join Date: Mar 2004
Posts: 740
Default

Quote:
Originally Posted by Shambler
The prefetch bans generally go under filenames such as "Helios-Hook" or "Helios-Radar" etc., they are confirmed cheats and the chances of other legitimate programs going under the same name is practically none.

If it's simply a file name with the word "Helios" in it but that isn't already known as a cheat then it's most likely going to be thought of as suspicious but not bannable.
That's my understanding of how this works.
And to go a step further, if a player is "stupid" enough, and I chose that word carefully, to purposly name a harmelss file with the exect same name as a known cheat, they deserve to be banned for being an a**H***.
  #11  
Unread 28th February, 2005, 12:33 AM
Limited's Avatar
Limited Limited is offline
Administrator/UTAN Admin
 
Join Date: Jul 2003
Location: /home/limited/
Posts: 1,240
Default

Quote:
Originally Posted by 5625Maniac
The pre-fetch scanning does have it's flaws and should be fixed up.

The obvious one is the false positives because it's just looking for the name, and not acutally scanning or detecting any signatures to actually detect or veryify is the real thing (like a virus scanner would do to scan virus reguardless of the file name).

It's not just the pre-fetch, there was already a case of a false positive because of a vehicle called Helios and user was innocently banned as a result which was eventually reversed. This wouldn't of happen if the proper detection scheme is implemented.

I can most likely make a blank text file called "FalsePostiveHeliosTest" something and that can most likely get detected as a cheat which is isn't.
Youve got UnrealED, start coding.
__________________
All views in the above post are that of the poster and not that of UTAN, unless otherwise stated
When you kill 6 people in Unreal Tournament it's a "Monster Kill", in Quake3 it's "Excellent", and in Counter-Strike it's "Kick Banned"
  #12  
Unread 28th February, 2005, 02:55 AM
5625Maniac's Avatar
5625Maniac 5625Maniac is offline
Dominating
 
Join Date: Oct 2004
Posts: 105
Default

Quote:
Originally Posted by Limited
Youve got UnrealED, start coding.
Who's providing the $$$?
-------------------------------------------------------------------
Honestly, name file test is an easy example of breaking the code because it isn't verifying anything. I do believe there is a better way for this.

Think about the truth table. Create an equation about what the detection is currently doing. A false positive will be in the result and it wouldn't be correct in the programmer's perspective.

Last edited by 5625Maniac : 28th February, 2005 at 03:05 AM.
  #13  
Unread 28th February, 2005, 04:28 AM
ShiningSquirrel ShiningSquirrel is offline
Holy Shit!!
 
Join Date: Mar 2004
Posts: 740
Default

Quote:
Originally Posted by 5625Maniac
Who's providing the $$$?
You would get paid the same way all the rest of the coders get paid.
Heck if you can do a good job on it, you may even get paid twice as much!

But just so you know, 2 X 0 still = 0, so don't spend it all in one place.
  #14  
Unread 28th February, 2005, 05:44 AM
5625Maniac's Avatar
5625Maniac 5625Maniac is offline
Dominating
 
Join Date: Oct 2004
Posts: 105
Default

True, but even thou it is free, it's not beyond a reasonable doubt that it can be made correctly.

If not, why not put the skill to make a living in a high paid programming job then?

Last edited by 5625Maniac : 28th February, 2005 at 07:04 AM.
  #15  
Unread 1st March, 2005, 06:35 PM
BLTicklemonster BLTicklemonster is offline
Holy Shit!!
 
Join Date: May 2004
Posts: 1,004
Default

Hmm, good place to put in a plug for all the killer coders on both sides of the spectrum. You hear all the time about how the big software companies say you get what you pay for, in reference to freeware. Well, I dare say that the stuff the ut community is doing is just as good, and no where as buggy as what the big dogs do, so (hijack thread hijack thread hijack thread) HERE'S A "WAY TO GO" TO ALL THE USCRIPTERS (and others) OUT THERE!!1 WAY TO GO!!1
  #16  
Unread 1st March, 2005, 08:26 PM
Techslacker Techslacker is offline
Unstoppable
 
Join Date: Aug 2004
Posts: 248
Default

Quote:
Originally Posted by 5625Maniac
True, but even thou it is free, it's not beyond a reasonable doubt that it can be made correctly.

If not, why not put the skill to make a living in a high paid programming job then?
One, to be made "correctly", one must have the tools or features for that to happen and still do it without a performance penalty. Do you know for a fact that this can be done? If so, how about seeing to it that it gets done?

Two, everyone puts their skill into various things for various reasons. Some people actually do free work like this in hopes to one day get that highly paid programming job you speak of. This essentially becomes their resume. Of course I'm not defending things here knowing what the motivation is for these developers but merely pointing out that one might be careful about blanket statements when criticizing.
  #17  
Unread 2nd March, 2005, 03:52 AM
Limited's Avatar
Limited Limited is offline
Administrator/UTAN Admin
 
Join Date: Jul 2003
Location: /home/limited/
Posts: 1,240
Default

Quote:
Originally Posted by 5625Maniac
I do believe there is a better way for this
Well go on then, UnrealEd is awaiting you.
__________________
All views in the above post are that of the poster and not that of UTAN, unless otherwise stated
When you kill 6 people in Unreal Tournament it's a "Monster Kill", in Quake3 it's "Excellent", and in Counter-Strike it's "Kick Banned"
  #18  
Unread 2nd March, 2005, 05:47 AM
5625Maniac's Avatar
5625Maniac 5625Maniac is offline
Dominating
 
Join Date: Oct 2004
Posts: 105
Default

Quote:
Originally Posted by Limited
Well go on then, UnrealEd is awaiting you.
Isn't that Wombo's job since he created them in the first place?
-------------
Techslacker:

I'm basising it on theory aspect of programming. Also when I mentioned about the truth table, it gives idea which I was talking about.

I never used UnrealEd so not sure what's all behind it. I've programmed in C#, C++, VB, VB.NET, SQL for applications. Now at the U, I'm programming algorithm/data structures at the U in Java (ie. Linked List, Merge Sort, AVL Trees, Hashing, etc...) which is on the theory side.
  #19  
Unread 2nd March, 2005, 09:29 AM
Wormbo's Avatar
Wormbo Wormbo is offline
out of order
 
Join Date: Sep 2003
Posts: 3,383
Default

Quote:
Originally Posted by 5625Maniac
Isn't that Wombo's job since he created them in the first place?
Huh?
__________________
Wormbo's UT/UT2004/UT3 mods | PlanetJailbreak | Unreal Wiki | Liandri Archives
Quote:
<@Mych|Lockdown> ...and the award for the most creative spelling of "Jailbreak" goes to ... "Gandis Jealbrake Server"
  #20  
Unread 2nd March, 2005, 12:24 PM
Limited's Avatar
Limited Limited is offline
Administrator/UTAN Admin
 
Join Date: Jul 2003
Location: /home/limited/
Posts: 1,240
Default

If you want to say you can do it better, go DO it better before commenting on how you think it should be done. It's all good saying that it should be done with file GUID's and checks, but did you stop to think about the capabilities of the engine?
__________________
All views in the above post are that of the poster and not that of UTAN, unless otherwise stated
When you kill 6 people in Unreal Tournament it's a "Monster Kill", in Quake3 it's "Excellent", and in Counter-Strike it's "Kick Banned"
 


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT +1. The time now is 10:57 AM.


 

All pages are copyright The Unreal Admins Page.
You may not copy any pages without our express permission.