Source and goldsource server browser hijacking (Half-life, Half-life2)

All Discussions > Steam Forums > Steam Discussions > Topic Details

Steel Brow Jun 6, 2024 @ 2:04am

Yesterday I had an incident playing hl1 and after connecting to an unknown server, my server browser was hijacked by hundreds of identically-named bot-populated servers. How is that? I know that this is a known and wide-spread problem in any hl1 and hl2 game, cs1.6 especially. The malicious servers are able to change game files and mess with your settings. They can make your server browser display fake clusters of servers with fake players. They also can make every time you connect to any server, redirect to their server. Also they can make your main game menu display their servers. This is outrageous. How are game files not protected?? I dont envision how these things can be done without like, literally allowing bad actor to execute arbitrary script on behalf of the game. Isnt it a massive risk for the whole pc? People responsible for this negligent design deserve to suffer, may they never have peace.
Anyway, give me the information about this. There is bound to be a simple way to reset the server browser. I want to know which files are affected and need to be replaced. I do not want to reinstall all hl because of many custom content would be lost. I want to know what exact files control the server browser. Do you have any ideas about how to prevent hijacking from happening? Internet search does nothing. Where have been the goldsource programmes talking about this issue and distributing ingenious tools to combat this? Now is your chance to atone for your selfish actions in this internet-searchable thread.

< >

Showing 1-7 of 7 comments

m662 Jun 6, 2024 @ 3:36am

Originally posted by Steel Brow:
Yesterday I had an incident playing hl1 and after connecting to an unknown server, my server browser was hijacked by hundreds of identically-named bot-populated servers. How is that? I know that this is a known and wide-spread problem in any hl1 and hl2 game, cs1.6 especially. The malicious servers are able to change game files and mess with your settings. They can make your server browser display fake clusters of servers with fake players. They also can make every time you connect to any server, redirect to their server. Also they can make your main game menu display their servers. This is outrageous. How are game files not protected?? I dont envision how these things can be done without like, literally allowing bad actor to execute arbitrary script on behalf of the game. Isnt it a massive risk for the whole pc? People responsible for this negligent design deserve to suffer, may they never have peace.
Anyway, give me the information about this. There is bound to be a simple way to reset the server browser. I want to know which files are affected and need to be replaced. I do not want to reinstall all hl because of many custom content would be lost. I want to know what exact files control the server browser. Do you have any ideas about how to prevent hijacking from happening? Internet search does nothing. Where have been the goldsource programmes talking about this issue and distributing ingenious tools to combat this? Now is your chance to atone for your selfish actions in this internet-searchable thread.

You choose to use custom content and you choose to connect to a unknown server. There is your problem. You would have complained if the files were protected because than your custom content would not work.

Your system your responsibility. The negligence is on you.

Steel Brow Jun 6, 2024 @ 6:03am

Originally posted by m662:
Originally posted by Steel Brow:
Yesterday I had an incident playing hl1 and after connecting to an unknown server, my server browser was hijacked by hundreds of identically-named bot-populated servers. How is that? I know that this is a known and wide-spread problem in any hl1 and hl2 game, cs1.6 especially. The malicious servers are able to change game files and mess with your settings. They can make your server browser display fake clusters of servers with fake players. They also can make every time you connect to any server, redirect to their server. Also they can make your main game menu display their servers. This is outrageous. How are game files not protected?? I dont envision how these things can be done without like, literally allowing bad actor to execute arbitrary script on behalf of the game. Isnt it a massive risk for the whole pc? People responsible for this negligent design deserve to suffer, may they never have peace.
Anyway, give me the information about this. There is bound to be a simple way to reset the server browser. I want to know which files are affected and need to be replaced. I do not want to reinstall all hl because of many custom content would be lost. I want to know what exact files control the server browser. Do you have any ideas about how to prevent hijacking from happening? Internet search does nothing. Where have been the goldsource programmes talking about this issue and distributing ingenious tools to combat this? Now is your chance to atone for your selfish actions in this internet-searchable thread.
You choose to use custom content and you choose to connect to a unknown server. There is your problem. You would have complained if the files were protected because than your custom content would not work.

Your system your responsibility. The negligence is on you.

Answer the question, ok? You cant because you have no idea, but you want to lecture me about files nonetheless. Curious. Custom content is maps and the like, it is none of your concern.

Steel Brow Jun 6, 2024 @ 6:05am

This is multiplayer games, and I am by definition exposed to internet through them. There must be security by design. Stop nonsense please.

m662 Jun 6, 2024 @ 6:30am

Originally posted by Steel Brow:
Originally posted by m662:
You choose to use custom content and you choose to connect to a unknown server. There is your problem. You would have complained if the files were protected because than your custom content would not work.

Your system your responsibility. The negligence is on you.
Answer the question, ok? You cant because you have no idea, but you want to lecture me about files nonetheless. Curious. Custom content is maps and the like, it is none of your concern.

Answer the question? I gave you a answer. One you do not like but that is not of my concern now is it?

You expect a expert answer explaining attack vectors, mitigation strategies and system audit steps? Well your not getting it from me. I am not getting paid for it and certainly not feeling up to it with your attitude either to give a way my time for free.

You know it better than others than do not ask help from others.
Have a nice day with your self inflicted issue.

Last edited by m662; Jun 6, 2024 @ 6:30am

Steel Brow Jun 6, 2024 @ 6:35am

Originally posted by m662:
You expect a expert answer explaining attack vectors, mitigation strategies and system audit steps? Well your not getting it from me. I am not getting paid for it and certainly not feeling up to it with your attitude either to give a way my time for free.

Well I hope you go to hell

m662 Jun 6, 2024 @ 6:38am

Originally posted by Steel Brow:
Well I hope you go to hell

Already have a nice spot reserved. But thank you for your wishes nonetheless.

J4MESOX4D Jun 6, 2024 @ 9:35am

Unfortunately these games are plagued by mirror servers. A browser page may have 500 to choose from but only 25 may actually be active and the rest redirect to one of them regardless of the map, mode, population or any other thing in the description. In time, you begin to learn which ones all lead to the same lobby and others that aren't worth connecting to.

This is a Valve issue and they have failed to address it in years. Thankfully these servers don't pose any security threats and just act as a mild inconvenience when trying to find a half-decent lobby or can tamper with some settings. Some are even masquerading as Valve's official servers but those stick out like a sore thumb.

I think we have to accept that these games are not going to be maintained anymore and if we want to play them, we have to suffer things like this. Just look at the current TF2 debacle that has been going on for years and only getting worse.

< >

Showing 1-7 of 7 comments

Per page: 1530 50

All Discussions > Steam Forums > Steam Discussions > Topic Details

Date Posted: Jun 6, 2024 @ 2:04am

Posts: 7

Start a New Discussion

Discussions Rules and Guidelines

Report this post