Posts: 2,422
Threads: 61
Joined: Jan 2017
Reputation:
1,635
For those who do not know, there was a huge leak in regards to the Source Engine. The Source code for Team Fortress 2 and Counter -Strike: Global Offense has leaked, and with has revealed tons of RCE Exploits. To put in simple terms, this is dangerous as it could allow Malicious Code to run.
It is HIGHLY advised that you do not play either games till a statement / update is released from Valve. I have no knowledge if this will effect Garry's Mod or not, but it should be known to those who play both or either Team Fortress 2, Counter-Strike: GO, or even Garry's Mod.
If you have any questions regarding the server rules or anything else, send me a forum PM.
Resigned TTT & Deathrun Admin.
Posts: 2,704
Threads: 157
Joined: Mar 2017
Reputation:
2,563
People still play tf2? Lmao
Posts: 2,353
Threads: 155
Joined: Jan 2017
Reputation:
2,268
TF2, HL:2 and Gmod are very, very similar, especially on the network side. Plug up those firewalls!
Posts: 1,938
Threads: 106
Joined: Jan 2019
Reputation:
2,261
04-22-2020, 04:02 PM
(This post was last modified: 04-22-2020, 04:06 PM by Nicol Bolas.)
(04-22-2020, 03:59 PM)RussEfarmer Wrote: TF2, HL:2 and Gmod are very, very similar, especially on the network side. Plug up those firewalls!
From meepen (ex moat dev):
“Hey guys! If you didn't hear, some source code was leaked over last night. This source code includes HL2, CS:GO, CS:S, Portal, Portal 2, DoD:S and some Half-Life games
What does this mean for Garry's Mod? Is it still safe to play on Garry's Mod servers? The source code that was leaked was entirely owned by Valve, not Facepunch. As such only the base of the engine (TF2 and CS:S) were leaked. However just because they were leaked does not mean too much for Garry's Mod, as the source code for CS:S was leaked in 2007, and Garry's Mod has ran on the updated version of that engine for the entire time.
Just because source code was leaked for a game doesn't mean that all kinds of ways to get viruses open up, it just means people will find vulnerabilities easier without as much work or skill. With that said, the chance of someone finding a wormable exploit (like the cough virus long ago) is increased. This does not mean it will be used for nefarious purposes; especially this quickly. To find a wormable exploit means one thing, creating the worm is another.”
Posts: 432
Threads: 18
Joined: Jan 2017
Reputation:
768
04-22-2020, 04:27 PM
(This post was last modified: 04-22-2020, 04:30 PM by Tedgp908.)
(04-22-2020, 04:02 PM)Nicol Bolas Wrote: (04-22-2020, 03:59 PM)RussEfarmer Wrote: TF2, HL:2 and Gmod are very, very similar, especially on the network side. Plug up those firewalls!
From meepen (ex moat dev):
“Hey guys! If you didn't hear, some source code was leaked over last night. This source code includes HL2, CS:GO, CS:S, Portal, Portal 2, DoD:S and some Half-Life games
What does this mean for Garry's Mod? Is it still safe to play on Garry's Mod servers? The source code that was leaked was entirely owned by Valve, not Facepunch. As such only the base of the engine (TF2 and CS:S) were leaked. However just because they were leaked does not mean too much for Garry's Mod, as the source code for CS:S was leaked in 2007, and Garry's Mod has ran on the updated version of that engine for the entire time.
Just because source code was leaked for a game doesn't mean that all kinds of ways to get viruses open up, it just means people will find vulnerabilities easier without as much work or skill. With that said, the chance of someone finding a wormable exploit (like the cough virus long ago) is increased. This does not mean it will be used for nefarious purposes; especially this quickly. To find a wormable exploit means one thing, creating the worm is another.” This is 90% correct. Just because source code is leaked doesn't inherently mean anything running the Source engine is vulnerable. There is no difference in writing code for a closed source/open source project. Especially with how large Valve is and how common the Source Engine, they will go to extreme lengths to ensure the security of the engine. Everyone here on a daily basis uses some elements of open source code every day without the threat of it being compromised.
I disagree with this guy's claim that you can now find a vulnerability without much work or skill; to find a vulnerability in something like this you need to understand what is going on in the code. Which cannot be done without significant skill.
Posts: 1,980
Threads: 150
Joined: May 2018
(04-22-2020, 04:27 PM)Tedgp908 > Wrote: (04-22-2020, 04:02 PM)Nicol Bolas Wrote: (04-22-2020, 03:59 PM)RussEfarmer Wrote: TF2, HL:2 and Gmod are very, very similar, especially on the network side. Plug up those firewalls!
From meepen (ex moat dev):
“Hey guys! If you didn't hear, some source code was leaked over last night. This source code includes HL2, CS:GO, CS:S, Portal, Portal 2, DoD:S and some Half-Life games
What does this mean for Garry's Mod? Is it still safe to play on Garry's Mod servers? The source code that was leaked was entirely owned by Valve, not Facepunch. As such only the base of the engine (TF2 and CS:S) were leaked. However just because they were leaked does not mean too much for Garry's Mod, as the source code for CS:S was leaked in 2007, and Garry's Mod has ran on the updated version of that engine for the entire time.
Just because source code was leaked for a game doesn't mean that all kinds of ways to get viruses open up, it just means people will find vulnerabilities easier without as much work or skill. With that said, the chance of someone finding a wormable exploit (like the cough virus long ago) is increased. This does not mean it will be used for nefarious purposes; especially this quickly. To find a wormable exploit means one thing, creating the worm is another.” This is 90% correct. Just because source code is leaked doesn't inherently mean anything running the Source engine is vulnerable. There is no difference in writing code for a closed source/open source project. Especially with how large Valve is and how common the Source Engine, they will go to extreme lengths to ensure the security of the engine. Everyone here on a daily basis uses some elements of open source code every day without the threat of it being compromised.
I disagree with this guy's claim that you can now find a vulnerability without much work or skill; to find a vulnerability in something like this you need to understand what is going on in the code. Which cannot be done without significant skill.
Ted for server administrator
Posts: 1,949
Threads: 76
Joined: Apr 2018
Reputation:
2,125
Posts: 1,053
Threads: 106
Joined: Apr 2017
Reputation:
1,451
Just gonna drop csgo and tf2's official twitter who have both said basically the same thing
CSGO
TF2
Posts: 239
Threads: 22
Joined: Dec 2018
Reputation:
51
I guess people who didn't know about this have probably got their pcs damaged so good luck for those people who were unable to know about this from reddit.
COON AND FRIENDS TEAM UP WITH FREEDOM PALS!
"Inspiration comes from within yourself. One has to be positive. When you're positive, good things happen."
- Deep Roy
|