4 replies to this topic

[Fakeman]

Many hackers on the website as of recent are able to hi-jack lobbies and obtain private info, such as the rcon_password, password and the IP adress. Extra encryption on lobbies is needed. Maybe connecting to steam and only letting people in the lobby obtain info, or have a randomly generated password on each lobby. Either way, this site needs encryption.

[VoidWhisperer]

Many hackers on the website as of recent are able to hi-jack lobbies and obtain private info, such as the rcon_password, password and the IP adress. Extra encryption on lobbies is needed. Maybe connecting to steam and only letting people in the lobby obtain info, or have a randomly generated password on each lobby. Either way, this site needs encryption.

Is there any proof of them 'hijacking' the lobbies? The RCON password is never available to anyone besides the server organizing the lobbies.

[Fakeman]

Is there any proof of them 'hijacking' the lobbies? The RCON password is never available to anyone besides the server organizing the lobbies.

Not evidence really, but many people have witnessed randomly named people who dont even have the same avatar as anyone in the lobby screen joining the game and spamming achievements

[Kenneth]

Chances are that's just someone in the lobby giving out the join password to a friend. Not really "hijacking" and the RCON password is probably still safe. 

[Foxy]

If this is the case, it will become one of the top priority issues. Giving our rcon passwords is a serious issue that we take seriously.

 

What makes you think the rcon password is given out?