Bzflag app data cache and/or server being used as spam server?

NOTE: this is an informal bug post place ONLY. Real bugs should be posted on GitHub
Post Reply
User avatar
yarro
Private First Class
Private First Class
Posts: 73
Joined: Sat Oct 23, 2004 3:51 pm
Location: NH, USA

Bzflag app data cache and/or server being used as spam server?

Post by yarro » Mon Aug 21, 2017 2:49 pm

I noticed that my computer was acting suspiciously and in trying to use system restore the bzflag folder (I think it is the persistant profile as I had uninstalled bzflag) system restore would not roll back due to that folder, repeatedly.

Other coincidences was a bitly hack trying to have me sign up my email address to re-serve mail (they where pretending it was a job but the link was likely a bitly infection vector).

Add to that a suspicious question a user in game asked about my handle being the name I use or if I had another appropo nothing at all (perhaps the hack needs your authenticated user profile to use the client server architecture of the game).

Other related odd stuff are established connections on my machine when I connect to the isp and before I am running services.

Add it up and you may have a malicious modification of my appuser local data in the bzflag folder.
As it is persistent unistalling it would not fix it but you would need to delete the folder.

You might want to keep a look out for users asking about user data in game as well, if you want to id the culprits.

Just a heads up to the developers and anyone interested in the issue, I have a copy of the folder I can send if you want it.

User avatar
allejo
Breaker of Builds
Breaker of Builds
Posts: 659
Joined: Sun Feb 17, 2008 10:01 pm
Location: /dev/null
Contact:

Re: Bzflag app data cache and/or server being used as spam server?

Post by allejo » Mon Aug 21, 2017 5:18 pm

Did the BZFlag folder have non-BZFlag stuff in it? What did you sign up for that needed your email? Who asked your handle and what server?
Here's my personal website and my open source projects are available on GitHub; I work on a lot of cool things.

Image

User avatar
yarro
Private First Class
Private First Class
Posts: 73
Joined: Sat Oct 23, 2004 3:51 pm
Location: NH, USA

Re: Bzflag app data cache and/or server being used as spam server?

Post by yarro » Mon Aug 21, 2017 9:20 pm

Apocalypse XVII was the server but It was last week so a lot of logs to review, and they are't mine so I'd have to ask.
I can zip the folder and send it but don't know if any of the files are unrelated.
BZFS0221_1-Servers was a file that was not in a new install of bzflag but perhaps I fired up a server by accident and it left this behind?
The email was unsolicited so it was someone who acquired my address. some type of phishing.
The odd thing was the app data folder was blocking system restore so I have to wonder why that would be and why my system had become unstable, would seem the app data might be involved due to the restore issue, I know that backup resotre can be an attack vector as well.
My never know, though.

User avatar
blast
General
General
Posts: 4600
Joined: Fri Mar 21, 2003 3:49 pm
Location: playing.cxx
Contact:

Re: Bzflag app data cache and/or server being used as spam server?

Post by blast » Mon Aug 21, 2017 10:02 pm

BZFS0221_1-Servers is the cached list of servers for 2.4.x (which uses the protocol string BZFS0221). To be fair, System Restore was at least pretty garbage in XP days (maybe better now?) and I don't think I've ever had it work. It either didn't fix the problem, or it just broke the system completely (though, again, this was with XP).
"In addition to knowing the secrets of the Universe, I can assure you that I am also quite potty trained." -Koenma (Yu Yu Hakusho)

Image

User avatar
yarro
Private First Class
Private First Class
Posts: 73
Joined: Sat Oct 23, 2004 3:51 pm
Location: NH, USA

Re: Bzflag app data cache and/or server being used as spam server?

Post by yarro » Mon Aug 21, 2017 11:11 pm

OK, well on 7 It seems a lot better.
Indicates something going on with the app data but perhaps my computer failed on shutdown and left an unstable state.

just seemed odd so I made a post.

User avatar
JeffM
Staff Sergeant
Staff Sergeant
Posts: 5120
Joined: Fri Dec 13, 2002 4:11 am
Location: [Redacted]
Contact:

Re: Bzflag app data cache and/or server being used as spam server?

Post by JeffM » Tue Aug 22, 2017 4:45 am

That folder contains data downloaded by bzflag during online play, it will not be part of the install.

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest