#BCS server issue

apparently older versions are suspected to crash.. vishal found commit in official ballistica repository which fixed the specdata issue which is suspected to cause the restarting problem.. so it's going all good

we thought it was only bcs but then stratex said his servers are crashing too

"suspected", hopefully someone confirms this

Else we cooked

for now all good

"servers arent crashing"

ahh dazz a bummer... n here i was thinkin only my servers survivin dis sheet

The guy behind finding this exploit must be a genius

but for some reason i am getting 6k ping

maybe it someone who we know 😭

Btw who is this new Fang guy

im doing too

big hand than smoothy may b

new

ikr

no body knows u ig

i literally retired in 2021

not to underrate , but its something actually simple...

He recently reincarnated

then i never know u

I'm seeing u first time, so I'd definitely ask that

worked only once, it didn't replicate the repeated crashing

its Bombsquad that doesnt have proper protection from this simple atttacks..

ooh lemme introduce meself... am fang; a watermelon :>

Hey guys
If u can figure out the ip
Maybe with arp -a on multiple servers and check for common ip
Then u can ip ban that guy with sudo iptables -A INPUT -s [IP_ADDRESS] -j DROP

Cool, gimme some new mods right this second

this dont seem ddos attack

yep

wait lemme check the traffic i didnt checked yet

blud came too late for a solution

I am in a wedding

Pics/vids send

you sound like... You like bombsquad.. aims gun to head list all mods

umm... currently i just got a kewl tag array ig

No

i just started makin api9 scripts last month

need to check wen the attack happns for now no issues

Did you guys already solve it?

https://github.com/HeyFang/bombsquad-modded-server-scripts
here u can chek it out

tho am wonderin if i should keep it opensource since crezy ppl be findin loopholes

no but recent sus is promising

its prolly the thingy snowie mentioned since am usin latest server version n it seemed immune to da atks

@reef apex btw your "boxing" still have bombs

wen will smoothly wake up

i added em agn

hahaha so it was his

i can disable it... just turn bomb bool to false

so you made a round with default boxing gloves

You guys should go to general.. people trying to find solutions here

yes

mb

Me too u watarmaloon I'm maskmaloon

vishu is trying that empty Playerspec

how to do it.. can you explain

@white arch

?

Nig##, aren't you bored with the same repetitive s###

I left just because of that, I'm hoping someone else makes cool mods for ME to play now.

Not me making new mods

are you getting this

"sus" What?

VerifyClientAddr() found mismatch for client 128.

no but this

Calling getAttr for player attr 'activityplayer' without data set.

arp 💀 is for LAN

@floral wind

It's normal

cough

Looks juicy ngl

oh ok

recently there are so many updates and new mods.. you should have just asked that.. you should visit official server

sending udp packets simultaneously with bs (using bs as proxy...)

No...

arp is for linking
mac with ip

layer 2

n 3

hmm, the empty playerspec worked a bit because it crashed the server... didn't replicate the repeated crashing

I once crashed a server just by spamming buttons 😂😂

Tell / list them

they can send empty playerspec with some delay using a script

i tried actually and

drinkingUwU

Someone is trying to fit into the convo

Press F to pay respects

still not empty, from what i heard, it should be None, like EMPTY

i tried None

but like nothing happens

yee dats da plan... make kewl mods n just pley wid frnds, nomore stupid stuff
altho m gettin bored of codin basic funtionalities >.<

lemme try again

I've been there since the beginning 😀

it worked on bcs # teams

game has v2 accounts, api is rapidly changing, new currency in the game, new chest system.. online mods repository.. asset packages online..

Me and yoyo raised the issue and gathered info

@slow wave which server do you want me to do the empty playerspec attack, tell one of your server

tell me too.. I'll try it

do it in Mahol Epic Teams

what to do

ill give u ip n port in dm

wait

we already testing

no u not with me see who started the post

only yoyo

so change bcs to ycs

• v2 has been there for decades now
• api is changing only UI, else nothing
• new Tokens, I'll say it's ok
• chest system, better than I thought, high rewards, so that's good

• online mods repos, WHAT?????
• asset packages, WHEN WHERE????

Hmm your are right probably

i am asking a friend to do it, i am surprised that he agreed

like v2 accounts.. you can upload/edit plugins

Can you talk normally?

The router will have the ip of clients from internet ig

like what exactly to do.. open terminal type what

nuh uh

was it affected before?

What's your age?

yes

Wait no nvm

no idea, i told him to do it and he is doing it

i was sharing that server's ss only

ask him

If any of u can run the server with gdb then it will tell you exactly where it broke
So next time this happened try that

ion think so

.

i mean

Yeah

It won't

depends on what u mean

@onyx anchor @wispy socket there is one more weird thing happening with our servers i need help with

Best modder joined the chat

yes pls tell

its litreally 2 mentions

?

there is a guy named AamirMac

only fans, wtf?

we banned him like 8-10 times

still that guy not only joins

but spam abuses in the server

I was wrong in my head
Imagine I studied networking as subject for 3 months 😭

bypassing the chat filter

ip ban him

Same ID?

already did it

same id

same pb id

who

id ban him

same ip and device id

Ban device id

who are u talkin about?

Demn

AamirMac

oh

ok

Muting works

i did for like 3 years, but yeah thats basic first things they teach

nope

u use cisco packet tracer?

It will get solved in 2-3 days dw

Why joined so late

We needed ur help

Now giv solution

u are freaky inded

The best modder

Try switch off switch on

😂🤣🤣🤣

Yeah I did
When I had networking as subject

#💬general💬

that's the problem.. we can't try.. it's already doing it on its own

Maybe use netstat with UDP filter

real

abandon bcs n use feng's scripts...

🤏 🐒

🎉 | Fang leveled up!

am bored... @onyx anchor coop?

we lost multiple yesterday :/

its not fun to pley next ones widout completin previous lvls >.<

No

Use watermelon script instead of vanilla

😂

Btw where do u play nowadays haven't played for long with u

add bs-dc bridge

and ill use it

alr my dear boiz gn tc i have school tomorrow

@warm sigil @flint shale @reef apex

@floral wind

werent you in college

@wispy socket

Liar

Gn

i was in school

gn

jk lol am graduated

cyklons... almost daily, we ping da role before pleyin

Oow

Ookk

oyasumi :>

😩😭💔

I don't have another pc or laptop

tcpdump

I called someone let's see if he comes or not

the crashes are going past bombsquad

damn

lol

checked tht as well

no issues

wdym no issues lol

i dont see any kinda of abnormal incoming traffic

🤣😭😂😂

u have to see when event happens

ahh dats not fun at all... ima ask nk n yuzu to do doz annoyin stuff n work on kewl mods myself

yup i didnt check at tht time

But it would give TCP data right?

ye

fine ill make it myself

yee... plz do, ill fr appreciate it

no

i mean

mainly yes

but not only ofc ☠️

tcp is useless for bs

except for cycle https reqs

At the end of the day, someone crashed all the bcs servers and vanished

@flint shale we pleyin atm... join if u would like, cyklons epic ffa

It's bad they didn't reward me for collecting infos , i literally told them about RomaNpc and stuff 😢

Ok

people are trying the specdata thing

@warm sigil is this useful for AamirMac situation?

maybe

we havent discussed about him yet

no idea but hope so

yea

need to find a solution about this romanpc first

i like how the name patterns are same

Aamir Mac

Roman Pc

lol

Guys servers should be back check

hail lord hikaru

Do you know what causes this error message?

@onyx anchor @wispy socket again

again??

just now i got

see msg time

in tht

need to check server status then

now need to reset again

lol this is because the servers are logging in discord every time server restart

considering you have atleast 5 servers

still 1000 times means atleast 200 times per server

@rotund minnow you might get that message too

I didnt want to get it reset again so didnt enable till now. Now I thought since the attack has stopped, I would enable it back. Just to see this getting reset for Bazinga

Do you know what exactly causes this error @reef apex ?

they need ycs

alr am sleepy i will go now

i have to lead the mrng prayer in my school

if it iz happenin coz of some guy joinin the servers then i cant really say until i see it ig

gn tc

gn bro

see video

i sent

theres a video of it above

wait

@reef apex

use the latest scripts... 1.7.37 version seems immune to it

@warm sigil strange how BCS id is just before that

yeh but I wonder what exactly they are exploiting though. These bots should not be allowed to join server

RomaNpc is causing that

the crash*

Empty Playerspec

according to Vishu

which is fixed by eric in recents updates

okay now, let me get my dinner and set up some stuff and let's test shit

their joinin servers is passin some request to api which is not satisfyin the defined headers n conditions... i did encounter few of doz "precondition errors" while dealin wid threadin code but still cant say for certain wot excatly iz causin this

Precondition failed : obj_in

yee i saw dat.. but if its actually frm bombsquad_headless file, there really isnt much we can do bout it ig

ye

@white arch i am taking 1 server process down for a moment

alr

use tht smash itself ok

okk

did you get it or you want it still?

bruh did no one send traceback in text

uh

0x5e02288a27cd

@white arch dont stop the smash tmux session

Found smth?

no i ran the server in gdb

And?

hopefully if it happens again then we will see some useful info

oh

ok

I wonder if that dude comeback again

He clearly stopped because of idk the creator of that tool or what

FATAL ERROR: Unable to bind to requested udp port 61325 (ipv4)
STACK-TRACE-BEGIN:
./bombsquad_headless(+0x1f37cd) [0x651ddd0257cd]
./bombsquad_headless(+0x11efba) [0x651ddcf50fba]
./bombsquad_headless(+0x11ccc2) [0x651ddcf4ecc2]
./bombsquad_headless(+0x1eacf5) [0x651ddd01ccf5]
./bombsquad_headless(+0x1eb084) [0x651ddd01d084]
./bombsquad_headless(+0x1ee04f) [0x651ddd02004f]
/lib/x86_64-linux-gnu/libstdc++.so.6(+0xdc253) [0x7ae4da2dc253]
/lib/x86_64-linux-gnu/libc.so.6(+0x94ac3) [0x7ae4d9e94ac3]
/lib/x86_64-linux-gnu/libc.so.6(+0x126850) [0x7ae4d9f26850]
STACK-TRACE-END
Server subprocess exited with code 1.

What did u do

nothing

idk the python wrapper is making it impossible to debug

Traceback (most recent call last):
  File "/usr/lib/python3.10/threading.py", line 1016, in _bootstrap_inner
Exception in thread Thread-6 (_populateQueue):
Traceback (most recent call last):
  File "/usr/lib/python3.10/threading.py", line 1016, in _bootstrap_inner
    self.run()
  File "/usr/lib/python3.10/threading.py", line 953, in run
    self.run()
  File "/usr/lib/python3.10/threading.py", line 953, in run
    self._target(*self._args, **self._kwargs)
  File "/home/ubuntu/smash/nbstreamreader.py", line 25, in _populateQueue
    self._target(*self._args, **self._kwargs)
    raise UnexpectedEndOfStream
nbstreamreader.UnexpectedEndOfStream
  File "/home/ubuntu/smash/nbstreamreader.py", line 25, in _populateQueue

Unable to bind port

that shouldn't cause error
it should just throw a warning right

No it happens

also it randomly fails to bind

when you ctrl z ./bombsquad_server

I usually kill tmux session

And launch again

And it get fixed

no i didnt backgraound it

then

idk

Did u added the -s?

do i need to specify port when creating new tmux session?

tmux new -s 43210

Yes

Try creating like this.

did it worked?

earlier it used to work without -s

guys who are here
can you set ERROR_LOGGING=True in bombsquad_server file

well anyways whatever it was i didnt see it

hey

he was just on a min ago

Port is not important

U can use anything in the place of port

I use the server name

Like fumi

Smash

Like tht

Yah

Ig it works still for single session

But i run 3-4 sessions in same instance

Actually dont do tht

U will get tht headless session if u use tht method

It stops the session but it won't kill the session if u do in tht way always kill the session and start new one

Use tmux ls

To see running sessions

I will give some session cmds

@warm sigil

@floral wind @wispy socket

upgrading the package didnt work yesterday ig

it was the reboot

ik them

?

That's just name

You set the port range too far

Or idk

Nahh the upper limit is 65535

So we still in the valid range

An unsigned 16 bit integer is used to store it
That's where the limit comes from

so at the end dat bot was just sending some garbage value(invalid profile name or smtg iirc) for which scripts dint hav proper input validation... n eric fixed it in newer versions? or did i miss smtg

ik i just said him

not sure

nah its just to label the session

use screen instead of tmux... its much simpler

the guy stopped, by knowing tht vishnu vishal will not accept his defeat, so he got scared and left

it seems so... precondition failed in object_input (am assumin invalid profile but can be smtg else)... unhandled exception; lack of dat input validation... erics fix accordin to that commit: person sends garbage value -> yeet him

yeah i figured

hmm

Oo

can anyone tell me what is going on now😭

uh everything normal for now?

and if the attacker thinks of attacking, then he will

bro who is this guy

bruh

wot

@earnest sand

so all bs servers are on the mercy of one guy rn? 😭

Version ?

He's using 1.7.19 but 1.7.20 also facing same issue

Apparantly not in api 9

Some other chat group saying this error happening even on Vanilla server

And is due to some type of spam

huh

tbh, not sure what causes the problem

but ik that this empty playerspec is a threat for crashing bcs servers

because... tested, so yeah

even if it's not relevant I want to share it.. people can just change into my id on the server.

dude no....

?

well kinda but not really...

nothing nvm, just wanted to say you didn't have to mention it but okay

Intersting , bs cryptography issue
Eric aware of this ?

no, but the guy mentioned he wants to tell this to eric

api 7

Anyways back to topic

we already spoke abt this issue 2 years ago

no, servers doesn't check the info passed to it by the user, hence fooling the server

now its not happening idk how it is stopped

not really cryptography side

last time also it was stopped after some days

like almost it took 2 - 3 days

Client send token to server ,
Server send this to master server to confirm the identity..master server returns pbid and account I'd then game use that pb id and confirm account I'd

Server get pb-id only from master server.
If some one able to use someone else pb-id then he really have that account credentials

need more security with this

About above error you shared ?

yah a guy who joins and crash the server

deja vu
did u have similar convo in one of the coffee with eric streams?

No, and nothing to discuss on this it slike this form benning and no issue in that

exactly

so stupid exploit...

like there is not certificate during initial exchange

....

i already said this to Eric some weeks ago

but i dont think he got time to do something abt it

@wispy socket

i got this issue

again

today

@reef apex

Is it something with new exploit that's fixe din 1.7.41 ?

Error message might be a bit different

eric alrdy fixed it ig, update ur scripts to latest version

Oh ok thx

ig it is happening coz im still using api 7 , alr time to shift to latest version as fang said

happening in all servers

Update to latest version

it is also happening in vanilla server ig

check

it is happening in vanilla as well

happening when bcs joins

@earnest sand

it's a issue in game engine itself , so obviously it will happen in vanilla as well

Bcs iterates public party list,
And that exploit bot also iterate public party list.
That's the only relation between bcs and server crash.

Exploit is about invalid player spec when joining the server , so that player account won't be visible in party window

@earnest sand

attack stopped

i mean i enabled ufw rule

for my port

Booooooo
Ufw is for noobs

lol ik it is somewhat low thing but it stopped it for now

coz ima upgrade my script

Wdym low thing?

did someone rm my bs owner role

it can't handle if the attack is more

I was jk, ufw is good

It's nothing like that
It's just a wrapper for iptables

ikik but i have tested it earlier as well, it can drop ips , but if it is frm more ips it becomes hard for it

@floral wind