Major Warning: Force OP Hacking is BACK!

Discussion in 'Bukkit Discussion' started by TheFluffey, Jan 11, 2013.

Thread Status:
Not open for further replies.
  1. Offline

    TheFluffey

    I swear on my life, and I can confirm, that somehow a player is force-opping on my server. A player has reptitively gained OP on my server.

    My server's insanely popular and insanely secure. However, yesterday a player started posting that it had been hacked. I checked it out to find the player had somehow added himself to the OP list and griefed the spawn. He did not access/change my backend to the server at all, which is protected by 2 step google verification and 128 character passwords. He is somehow forcing op and unbanning himself.

    Don't believe me? NCP and Worldguard both block OP from my in-game. Somehow, the player is bypassing this and obtaining OP. No one else on my server can give OP but me. He has hacked and ruined my spawn 2x, and unbanned himself from a global database that I have setup with banmanagement.

    IT IS NOT ONLY ME. http://mclava.com, a major minecraft site, has been hacked too. Here is the information I have compiled about the hacker:

    To admins: I really need help. This is insanely frustrating and scary. What he is doing is not possible. Trust me when I say I have ran this server with 6 months without issue. I am scared and need advice.

    It can't be my host, either. It happened to mclava.com, and they use a different host than me. Plugin exploit?
     
  2. Offline

    c0mp

    Removed player information. The Bukkit forum is not for naming-and-shaming.
     
  3. Offline

    TheFluffey

    Any information? This is literally impossible. Look at the log.
     
  4. Offline

    evilmidget38

  5. Offline

    TheFluffey

    BanManager
    CustomServerMessages
    EnjinMinecraftPlugin
    Essentials
    EssentialsChat
    EssentialsGroupManager
    ItemDespawner
    MinecraftRKitPlugin (Note I have rcon disabled, this is just for spacebukkit)
    Multiverse-Core-2.5
    NoCheatPlus (Op in-game disabled)
    PwnFilter
    Skript
    spacebukkit
    SurvivalGames
    Vault
    Votifier
    WorldEdit
    WorldGuard
     
  6. Offline

    c0mp

    I don't personally have any information, no.
     
  7. Offline

    LaxWasHere

    We need

    /worldguard report -p (post the link here)
    server.log (the whole damn thing)
    server.properties
     
  8. Offline

    TheFluffey

    Can't provide log, they removed it as it contains the player name./
    I will compile in pastebins and provide however.
     
  9. Offline

    mbaxter ʇıʞʞnq ɐ sɐɥ ı

    Not possible. Locked.

    Working with him to figure out what's being taken over, but this isn't Bukkit or minecraft

    As an update, this issue has been traced back to external to Bukkit, minecraft or any plugins.

    EDIT by Moderator: merged posts, please use the edit button instead of double posting.
     
    Last edited by a moderator: Jul 8, 2016
    slipcor and evilmidget38 like this.
Thread Status:
Not open for further replies.

Share This Page