Moh server crash fix (fps exploit)

[Hal]

Hi guys,

Some of us modding folk at have been sitting on this for a while now, but it is becoming more widley known, and while I was away on holiday, 2 people @ TMT have released patches for it.

I am talking about an incredibly easy method to crash any moh server (aa, sh or bt) I am going to try not to go into detail as to how it is done, but basicly any client who knows how, can enter a string into his console, which will crash the server with an infinite torso state loop when he does one more thing. Now that patches are avalable, it is not hard to work out how it is done, so unless server admins apply one of the patches, expect to have lots of kiddies crashing your server.

This is an example of a server log from my pc, if I start a server on my pc and crash it with this method:



CM_LoadMap( maps/dm/mohdm6.bsp, 1 )


-----------PARSING 'army_beach_sound.scr'------------
Any SetCurrentTiki errors means that tiki wasn't prefetched and tiki-specific sounds for it won't work. To fix prefetch the tiki. Ignore if you don't use that tiki on this level.
CG_Command_ProcessFile: ubersound/army_beach_sound.scr
Parse/Load time: 0.142000 seconds.
-------------PARSING 'army_beach_sound.scr' DONE---------------



-----------PARSING 'army_town_sound.scr'------------
Any SetCurrentTiki errors means that tiki wasn't prefetched and tiki-specific sounds for it won't work. To fix prefetch the tiki. Ignore if you don't use that tiki on this level.
CG_Command_ProcessFile: ubersound/army_town_sound.scr
Parse/Load time: 0.078000 seconds.
-------------PARSING 'army_town_sound.scr' DONE---------------



-----------PARSING 'uberdialog.scr'------------
Any SetCurrentTiki errors means that tiki wasn't prefetched and tiki-specific sounds for it won't work. To fix prefetch the tiki. Ignore if you don't use that tiki on this level.
CG_Command_ProcessFile: ubersound/uberdialog.scr
Parse/Load time: 0.628000 seconds.
-------------PARSING 'uberdialog.scr' DONE---------------



-----------PARSING 'ubersound.scr'------------
Any SetCurrentTiki errors means that tiki wasn't prefetched and tiki-specific sounds for it won't work. To fix prefetch the tiki. Ignore if you don't use that tiki on this level.
CG_Command_ProcessFile: ubersound/ubersound.scr
Parse/Load time: 4.197000 seconds.
-------------PARSING 'ubersound.scr' DONE---------------

stitched 0 LoD cracks
...loaded 5390 faces, 68 meshes, 0 trisurfs, 0 flares
Using ter_maxtris = 16384
Terrain: 1.25 MB tris, 0.88 MB verts, 0.00 MB in 6 patches, 2.13 MB total
R_LevelMarksLoad: maps/dm/mohdm6.dcl not found
SOUNDTRACK: Loading music/mohdm6.mus
MUSIC: changing from [ none | none ] to [ normal | normal ]
Loading Special Effects...
------- Sound End Registration -------
------- Sound End Registration Complete -------
CL_EndRegistration: 0.58 seconds
CL_InitCGame: 28.06 seconds
Going from CS_PRIMED to CS_ACTIVE for :C
CL_GetSnapshot: Not all children could find their parents.
CL_GetSnapshot: entity 0 with parent 0 and model '' at 0.00 0.00 0.00, could not find parent.
:C has entered the battle
//LINE REMOVED
-----------------> I ENTERD CONSOLE STRING HERE <---------------
writing to: C:\PROGRA~1\EAGAME~1\MOHAA\maintt\configs\unnamedsoldier.cfg

^~^~^ Warning: Can't find player animation 'unarmed_stand_idle'.
^~^~^ Warning: Can't find player animation 'unarmed_fall'.
SkeletorCacheFileCallback: Could not open binary file 'newanim/models/player/allied_russian_corporal_fps_fps.skc' or 'models/player/allied_russian_corporal_fps_fps.skc'
^~^~^ TIKI_InitTiki: Couldn't load models/player/allied_russian_corporal_fps_fps.tik
RE_RegisterModel: Registration failed for 'models/player/allied_russian_corporal_fps_fps.tik'
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
Possible infinite loop in torso state 'STAND'
Possible infinite loop in torso state 'RAISE_WEAPON'
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
Possible infinite loop in torso state 'RAISE_RIFLE'
Possible infinite loop in torso state 'STAND'
Possible infinite loop in torso state 'RAISE_WEAPON'
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
Possible infinite loop in torso state 'RAISE_RIFLE'
Possible infinite loop in torso state 'STAND'
Possible infinite loop in torso state 'RAISE_WEAPON'
^~^~^ Warning: Can't find player animation 'rifle_stand_raise'.
Possible infinite loop in torso state 'RAISE_RIFLE'
Possible infinite loop in torso state 'STAND'
Possible infinite loop in torso state 'RAISE_WEAPON'
********************
ERROR: Stopping due to possible infinite torso state loop

********************
----- Server Shutdown -----
==== ShutdownGame ====
---------------------------

There are 2 patches at the moment. One is a simple one that just prevents the server from being crashed. The 2nd is able to detect when a player tries to crash the server, and as well as prevent it crashing, display a message saying whoever was trying to crash the server, and kick them. You don't need a TMT account to download either of them.

Simple one: www.modtheater.com/forum/showthread.php?t=25798&page=1

More complex patch, with detection & kick: www.modtheater.com/forum/thread25890.html

Please pass this infomation on to any other server admins you know.

Facey/Hal/@(...:.:...)@

[facey]

[abstraxion]

I stuck it on our public servers. ty face

[facey]

np