Author Topic: A good read  (Read 1252 times)

0 Members and 1 Guest are viewing this topic.

ZOldDude

  • The Unknown Rank!
  • Administrator
  • MasstKer
  • *
  • Posts: 20874
  • Old School TKC
    • View Profile
    • Admin
A good read
« on: August 16, 2012, 10:24:38 am »
http://dayzmod.com/forum/index.php?/topic/55031-hackers-what-you-need-to-know/


First post in the thread from a smart guy...
Quote
Posted 01 August 2012 - 10:15 AM

As we have seen, there is rampant "hacking" in -game at the moment.
Also as we've seen, everyone is a spastic and rants and raves over how rocket should fix the hacking.
I'm just making this so people can get some sort of knowledge about the situation, and generally because i'm sick of every second thread being some douche whining about how BI or DayZ team should fix it.


Background.
Since Arma was developed, it has primarily been made as a Military Simulator. To this end BI has ALWAYS had a "Trusted client" model.
Basically, players can execute any scripts they want, and freely.
The game was designed to be played on such a large scale, and with the Military in mind, they made this decision.
Why? So you could create your own scenarios with a click of a mouse. No need for modding or anything like that, you type up a quick script in Notepad++ and then you spawn everyone with a tank, or in helicopters, or whatever.

In short, Arma 2 was never made to be a MMOFPS w/ zombies.
Ever.
Because of the trusting relationship the engine has with the client, this clearly leads to people abusing it.
It has always been like this, since the first Arma engine.
And it won't change, BI cater first and foremost to their Military contractors and the HARDCORE MilSim fans.

So in the end, if you played Arma 2 at all, you'd know that most servers were passworded and you organised playing with friends or skrims on the web. Because anyone can just walk in and execute a script that say, spawn a nuke.
This is where the Arma 2 engine "fails" in terms of DayZ. (Not to mention being buggy .)

Then comes Battleye.

But first.


For UBCSRavin!
More on the Arma Engine/Hive/"Untrusted"
In every other game I have come across, the client is automatically UNtrusted. Basically, you're a criminal waiting to happen in the eyes of whatever engine you are on.
This restricts just about everything you can do, to an extent.
If we take Battlefield 3 for example, there is no way in hell, without the use of a mod, or other more nefarious means, can you spawn anything that the server doesn't already have on it.
Or even any Valve game.
Each game comes installed with anti-piracy/anti-tamper measures. In Valve's case, its steam and punkbuster.
Because you're already untrusted, any time ANYTHING that doesn't match the server-side "rules" you are instantly banned or kicked, not to mention that the Server Admin on most other games have complete control of their servers.
There is good reasoning behind DayZ teams decision to tighten up the rules in relation to hacking and such. Without them anyone could accuse someone of hacking, get them banned, probably lose their 5 hour progress.
This just can't happen.
Its frustrating, but there simply isn't another way, unless Rocket chooses to centralise ALL the servers, like an MMO, and completely cut out the publics involvement in the running of the servers. Seriously, name another MMO that lets you run your own server.

But you don't have the ability to execute scripts or anything remotely close to that of ArmA 2 on other games.

Its pretty simple, it would get abused, not to mention that coding in the ability to make scenarios (For instance - Thunderdome) on the fly is a huge undertaking.
Scripts are normally executed server-side, Client-side doesn't even get to see these scripts, without the aid of certain tools.

On Arma 2 however, you can execute scripts at will. It has always been BI's mission to deliver an AUTHENTIC MilSim experience with their engine. Some of the contracts they hold are huge, I would assume.
If you have a look at the BI website, it show cases some of their work, most pretty dam impressive.

Unless you are playing Eve, I don't think there is any games of note that actually use a HIVE system.
The HIVE, if you don't know, is basically a huge SQL (assumption) database containing EVERYTHING pertaining to each players Characters.

The general way I the HIVE works is this : (I'd assume there would be more steps, and it would be more complex, but then again, you never know)
- Join Server, "waiting for character to create" is the server you join (Lets say ANZ1 for now) querying the main HIVE for your specific data.
- Do whatever it is you are doing on ANZ1, find a weapon, get some gear, etc, Battleye is active on each DayZ server, trying to find scripts that aren't meant to be there.
- Leave server. ANZ1 communicates all your gear, positioning data etc. to the HIVE.

The problem with this model is that its easy to exploit.
If you can circumvent Battleye, the only server-level security aloud at the moment, you are free to do what you like.
So you can spawn a bunch of vehicles and weapons and the ARMA 2 engine believes that is "legal."
Then when you leave it communicates all this information to the HIVE, which also trusts what the Server has to say. Why wouldn't it though? If you assume everyone is good, there is no reason to look for the bad.

And we need to remember as well, Arma 2 was never made to have a persistent world.
It was designed so you can run scripts, which generally make entire missions, or change the current mission on the fly. Something I'm sure would let the Military contractors stress to their users how battle can change.

SCRIPTS.
Just about everything in Arma 2 is run by scripts. Practically all of DayZ is one script comprised of many, many smaller scripts.
Every time loot spawns. Script.
Every time you spawn. Script.
Zombies spawn. Script.
And so on.
Which leads to the system being easily abused by the less savoury types of gaming.


Understanding how scripting works in relation to anti-cheat.
As you know, scripts can be executed at any time, by any player on any server.
Its ridiculously easy to do.
That is why Battleye is here. It picks up on any "illegal" scripts being executed, the ones that don't match what is meant to be run according to the server.
There is basically a whitelist of scripts that are allowed to run, and anything else results in a kick, or even a global ban.
Battleye is quite efficient at DETECTING scripts that aren't aloud to be run.
The problem at the moment though, isn't Battleye failing (Well, kinda) It's the fact you can use a "hook" to inject into the Client-side Battleye process and typing a few lines of code that effectively make all the scripts you execute invisible to the server log, which means you can't get kicked, banned, etc.
Once they find the memory space getting "hooked" onto, they release an update and a mass ban rolls out.
One happened 3 days or so ago.

That is how anti-cheat and hacking work in relation to each other.
Hackers create a hack, Anti-cheat responds. Mass ban. Rinse and repeat.
You can never completely stop hacking, ever.
There are people who simply dedicate their time as a hobby to writing hacks for games.
These people you don't really need to worry about. They might hack in weapons or vehicles and so on, but their hack stays for their private use, and perhaps a few close friends.
They don't intentionally, ALL THE TIME, go out of their way to ruin other peoples days, like the currently huge amount of Scripts kiddies that got a hold of a certain hack, the friendly hackers you hear about, the ones giving heli rides and gear are generally the people who write their own shit.

SCRIPT KIDDIES.
These are the people you see running rampant. I can 99.99% guarantee these people either downloaded a leaked private hack or bought one from one of the hacking sites that make money from spastics who want an easier game.
These people go mad with power. That's why you see so many people nuking, mass teleporting and so on.
Because they are 12 year olds who have access to their parents credit card.
You'd generally find these people who got killed by a legit sniper and say to themselves "I want that gun, oh, better look for an easy way to get it because i'm aman with ADD and a short attention span."
Basically, they are the spoilt brats of our generation who want instant gratitude.
Unfortunately, the hackers who made these hacks decided to put in instant-kill and teleportation and all these other exploits that ruin everyone's day.


Current scripts ruining your day - UPDATED.
For more information on this look here : The Truth - A guide to surviving Hackers
User Elenkel has gracefully admitted to hacking, and his experiences in relation to what scripts are out there, and how many people are actually hacking are quite eye-opening.
I personally had never even heard of "Thunderdome" until he posted it.
I did choose to omit certain hacks from my original post however, simply because I believe that some people may think it would actually be pretty cool to hack with all the added features.

ESP (in some of the released hacks)
Teleportation. (Of themselves and others)
Ability to see everyone on the map.
Spawning of objects, weaponry or vehicles, including those not in DayZ itself.
God mode.
Nuking.
Give themselves full health with a single button.
Disable grass. - Dunno why they would do that, maybe to see people crawling?
Name Spoofing/Possible GUID spoofing.
Wallhack, kind of. (Tampering with files)

If any admin are reading this, you should read this post : http://dayzmod.com/f..._20#entry481304
Props to Barronism for posting it. It should fix the "wallhack" that people are abusing at the moment, its a very good fix, but i'm sure it will be patched.




What can Admin or even regular players do?
First of all, if you haven't read this thread, please do : http://dayzmod.com/f...u-need-to-know/
A fantastic thread letting you know that admins aren't the ones doing this shit to you.

On our side there aren't many things we can do to stop them. If you can Fraps them hacking and possibly get their names or what not, you can contact Battleye, the DayZ team or even BI with your evidence and they should get a ban, sometimes. I can't say for certain how on top of this type of reporting they are.

The DayZ server hosting rules are pretty strict when it comes to banning people from your server. Therefore it is advised you don't ban anyone without the proper evidence, as you could get blacklisted.
Besides, if you have no evidence the suspect will just come here and whine to the DayZ team for an unban. And if you have no evidence they have to oblige. Its not worth the hassle.


What does Rocket have to do with anti-cheat? (And is this a DayZ problem?)
First of all, aside from the HIVE database bans, Rocket + Team, as far as my knowledge goes (probably wrong :/) have nothing to do directly with the anti-cheat.
At all. That is completely in Battleye's hands, not even BI itself would have anything directly to do with it. And no, they won't change their entire engine to stop scripts from being executed.

A lot of people i've seen on the forum have been saying shit like :

View Postteknotel, on 01 August 2012 - 06:25 AM, said:
This is a DayZ Forum. Hacking is ruining DayZ and is worse for gameplay then any exploiting, bugs or glitches the game currently has. How do you find out who owns a server? I type server names into google and get nothing. That is why people report it here. In the cheating section. You keep spilling your regurgitated points of view 'it's an Arma 2 issue', like it makes any difference. Your behaving like it is a complete impossibility to add more security to the game..... by whatever means, that is also retarded. Third party anti cheat that actually works? etc. I am sure with all the brains of the guys developing this game it is not impossible.... so shut the up and grow a brain.

The kind of "special person" I am trying to reach out to with this post.

Day Z is DEFINATELY the reason we see SO MANY skiddies in the game. ArmA 2 wouldn't be receiving any attention at all in the mainstream if it wasn't for DayZ. So thats where the influx of skiddie scum has come from. They came to play DayZ, it was too hard, or they got bored and they decided to heckle everyone.
But DayZ isn't the CAUSE of the hacking. You need to understand this part. ITS NOT DAYZ'S FAULT THERE ARE SKIDDIES EVERYWHERE.
Its multiple things.
Mainly :

- Arma 2 is a trusting engine.
- DayZ is super popular at the moment.
- Battleye is easy to hook into.


Well, what now?
It will be fixed.
I think i've written that sentence over 100 times on this forum the past two weeks.
Battleye nor BI or the DayZ team announce what they are doing in terms to anti-cheat.
It will just come out of the blue one day and MANY people will get banned.
Patience, a virtue much lost in this generation.

Oh? What is this "Patience" you speak of Raven?
Well young man in year 10, its where you wait. You wait without screaming and crying every 5 seconds like a spoilt toddler not getting his lolly.
IT WILL BE FIXED.
Battleye is a company contracted to work on the anti-cheat for the Arma 2 engine. Its a job.
They will get it done, because thats what they are payed for.
Its a complex job looking for hooks in your own .DLL, because there are so many places they could be injected.



TL;DR :
Shit happens then you die.
Hackers are always a problem in games. There are ALWAYS people out to crack open games and look inside.
Its just unfortunate that the Engine this incredibly popular game is running on happens to trust EVERY SINGLE PERSON.
Of course people are going to abuse that trust. People are dicks.
You should know that just by running around in Cherno.

Edit : I'd appreciate after reading some sort of comment, to keep the topic up on the front page.
It would be amazing if it got stickied, but not much chance of that.

To the DayZ crew, I apologise if I overstep my bounds with any of this information, I attempted to keep it as clean as possible in regards to hacking.

Edited by DarkRaven123, 03 August 2012 - 03:11 AM.
Hacking - What you need to know. - http://dayzmod.com/f...u-need-to-know/
IGN : DarkRaven123    Steam : DarkRaven17   

*While we crash and burn, small, low tech, agrarian societies such as the Hmong in the mountains of Laos will continue on without so much as blinking an eye.*

ZOldDude

  • The Unknown Rank!
  • Administrator
  • MasstKer
  • *
  • Posts: 20874
  • Old School TKC
    • View Profile
    • Admin
Re: A good read
« Reply #1 on: August 16, 2012, 10:44:48 am »
He left out aim/trigger bots both of which are posted on this forum...along with a generic wallh@ck.

*While we crash and burn, small, low tech, agrarian societies such as the Hmong in the mountains of Laos will continue on without so much as blinking an eye.*

Coronel_Niel

  • Insane Joker
  • ****
  • Posts: 846
  • Why can't I pick my own profile picture...
    • View Profile
Re: A good read
« Reply #2 on: August 16, 2012, 11:02:10 am »
EDIT: Made it too easy. Far too easy.

PS. Battleye has been payed to fix this game for a long time and still hasn't solved the problem.
« Last Edit: August 16, 2012, 12:42:57 pm by Coronel_Niel »
"Now we are going to watch my boys do it" - Joopig

ZOldDude

  • The Unknown Rank!
  • Administrator
  • MasstKer
  • *
  • Posts: 20874
  • Old School TKC
    • View Profile
    • Admin
Re: A good read
« Reply #3 on: August 16, 2012, 11:21:38 am »
Quote
Battleye is a company contracted to work on the anti-cheat for the Arma 2 engine. Its a job.
They will get it done, because thats what they are payed for.

Yeah OK...but they fail so easily and no, they don't "get it done".

TBH Bastian does the best he can and knowing what he has to deal with every day he in fact does fantastically well given the limited resources he has employed.

I give credit when it is due...period.
« Last Edit: August 16, 2012, 11:30:00 am by ZOldDude »

*While we crash and burn, small, low tech, agrarian societies such as the Hmong in the mountains of Laos will continue on without so much as blinking an eye.*

MrMedic

  • MasstKer
  • ********
  • Posts: 8900
  • programmer/dev/software engineer
    • View Profile
Re: A good read
« Reply #4 on: August 16, 2012, 04:56:03 pm »
total bollox.
EnCoded Message: i3iy9yl8kr2xf3g2Txs3pr6ye3ya7jg5ty2z

https://www.youtube.com/watch?v=62_7-AYfdkQ
you need a paypal account for the private versions.

Website:
http://bit.ly/medic101

Teamspeak 3: 85.236.101.5:10157

Coronel_Niel

  • Insane Joker
  • ****
  • Posts: 846
  • Why can't I pick my own profile picture...
    • View Profile
Re: A good read
« Reply #5 on: August 17, 2012, 12:46:38 am »
Taken from battleyes support page:

Quote from: Battleye
No one is banned for using non-hack programs (like Fraps, overlays, etc.), picking up or using hacked in-game items, weapons or vehicles, being on a server at the same time as a cheater, or other passive non-cheating activity.

What about running beta patches? I believe that comes under "other passive non-cheating activity".
"Now we are going to watch my boys do it" - Joopig

MrMedic

  • MasstKer
  • ********
  • Posts: 8900
  • programmer/dev/software engineer
    • View Profile
Re: A good read
« Reply #6 on: August 17, 2012, 12:59:34 am »
Taken from battleyes support page:

Quote from: Battleye
No one is banned for using non-mod-app programs (like Fraps, overlays, etc.), picking up or using mod-apped in-game items, weapons or vehicles, being on a server at the same time as a cheater, or other passive non-cheating activity.

What about running beta patches? I believe that comes under "other passive non-cheating activity".


 :smile
EnCoded Message: i3iy9yl8kr2xf3g2Txs3pr6ye3ya7jg5ty2z

https://www.youtube.com/watch?v=62_7-AYfdkQ
you need a paypal account for the private versions.

Website:
http://bit.ly/medic101

Teamspeak 3: 85.236.101.5:10157

foeaxe

  • Cheater Apprentice
  • *
  • Posts: 21
    • View Profile
Re: A good read
« Reply #7 on: August 19, 2012, 06:28:21 pm »
Not to put a downer on this guys little speech. It's nice and all, but hasn't it been the same area of memory that's been exploited since the game came out?