A
Admincraftโ€ข2w ago
..........

Server getting lagged by a player using some type of exploit

A player joins every once in a while(using multiple accounts/ip) and starts to insult others and lags the server with an unknown method to me(log attached, I am assuming it is some type of hack client/exploit) It is not a server side bug because he claims to be doing so and bypasses the ban and comes back From my understanding it is related to forcing the server to generate chunks that are millions of blocks away? What exploit is this and how can I prevent?
Solution:
yes!, its a funny exploit, basically asking the server the bee count requires the server to load it
Jump to solution
62 Replies
..........
..........OPโ€ข2w ago
he did not run any commands (at least from what I see in logs)
Schroedes
Schroedesโ€ข2w ago
can you not ban the user? you should be able to ban the username
..........
..........OPโ€ข2w ago
they bypass it as i have stated above using alts and other ip(probably vpn) also i hope i can fix the exploit if possible as that would permanently solve the issue
Schroedes
Schroedesโ€ข2w ago
wow I have never seen something like that my only solution would be keep banning his alts until he runs out i don't know if there's a way to prevent a user from loading in chunks
..........
..........OPโ€ข2w ago
the issue is it is not from properly loading chunks as they are loading chunks millions of blocks away while they are still at spawn, and there is a border too
Schroedes
Schroedesโ€ข2w ago
right, thats what I'm saying is I don't know theres a way to stop that
..........
..........OPโ€ข2w ago
hmmmm but how are they doing it though if its a known exploit there should be some patch somewhere around
Schroedes
Schroedesโ€ข2w ago
no clue, some kind of client mod i'm sure loading the chunks in
Nuper
Nuperโ€ข2w ago
Im not sure how hes doing it, but you could potentially get a chunk loading plugin and just load a bunch of chunks in and kinda beat him to it
..........
..........OPโ€ข2w ago
its million of blocks away
Schroedes
Schroedesโ€ข2w ago
but the loaded chunks are outside of the boarder as well
..........
..........OPโ€ข2w ago
i cant load an entire 2 mill * 2 mill map lets say and he can probably go further
Schroedes
Schroedesโ€ข2w ago
so there would be no point loading all of those chunks in, it would be a waste of space I hope your server is online mode? And this user just somehow has a lot of alts?
..........
..........OPโ€ข2w ago
he probably has alts from these cheap alts minecraft sites its probably not going to be infinity and i have no clue why he is targeting a really small server but even though its just every once in a while its still really bad for player experiences
Schroedes
Schroedesโ€ข2w ago
but you are using online mode, riiiight?
..........
..........OPโ€ข2w ago
ye
Schroedes
Schroedesโ€ข2w ago
good
..........
..........OPโ€ข2w ago
any chance its this? just found it
Schroedes
Schroedesโ€ข2w ago
could be sounds like what you're experiencing do you use an anticheat?
..........
..........OPโ€ข2w ago
ye
Schroedes
Schroedesโ€ข2w ago
what are you using
..........
..........OPโ€ข2w ago
vulcan
Schroedes
Schroedesโ€ข2w ago
and that doesn't help? weird
..........
..........OPโ€ข2w ago
it says "survivalfly" from NCP is able to maybe block it from the post
Schroedes
Schroedesโ€ข2w ago
A quick google search makes it look like Grim could be useful
..........
..........OPโ€ข2w ago
"Some people have suggested that a possible solution is to use your favorite anticheat like Vulcan or GrimAC alongside NCP with survivalfly checks enabled. This might reduce the impact of the exploit, but itโ€™s not a guarantee." it doesnt really give a solution ๐Ÿ˜ญ
Schroedes
Schroedesโ€ข2w ago
You could try grim alongside vulcan, from a reddit post looks like you would want to "turn off Vulcan movement checks and grim combat checks" but give that a try and see
..........
..........OPโ€ข2w ago
can u send the link of the post ty
Schroedes
Schroedesโ€ข2w ago
Reddit
From the admincraft community on Reddit
Explore this post and more from the admincraft community
๐๐ข๐ช๐ฎ๐š๐ญ๐ž๐ซ๐ง๐ข๐จ๐ง๐ฌ
Not sure if lpx can cover this, buy maybe if it doesn't you can ask more about it in their community
..........
..........OPโ€ข2w ago
Whatโ€™s lpx?
๐๐ข๐ช๐ฎ๐š๐ญ๐ž๐ซ๐ง๐ข๐จ๐ง๐ฌ
Ask first in their discord if this is something they can fix/investigate
Solution
ProGamingDk
ProGamingDkโ€ข2w ago
yes!, its a funny exploit, basically asking the server the bee count requires the server to load it
ProGamingDk
ProGamingDkโ€ข2w ago
it just doesnt check if its actually near the player cant remember if theres a fix for that version
..........
..........OPโ€ข2w ago
Wait thatโ€™s actually so funny XD
ProGamingDk
ProGamingDkโ€ข2w ago
yeah its used to load chunks far away, and a LOT of em like its a chunk load per packet sent and paper lets 400 packets a second iirc through
..........
..........OPโ€ข2w ago
Ic
ProGamingDk
ProGamingDkโ€ข2w ago
by default
..........
..........OPโ€ข2w ago
Ty Iโ€™ll try
Upioti
Upiotiโ€ข2w ago
Because it's a basic ass exploit that wont work on any server w decent devs
Lunaiskey
Lunaiskeyโ€ข2w ago
cus people are petty against servers and owners they dont like so they will abuse whatever they can to fuck with them
Upioti
Upiotiโ€ข2w ago
Or its just some script kiddie who bought a $50 "crash client", wants to test it out and this is the only server where the more than public exploits work
bedwersXD
bedwersXDโ€ข2w ago
try lightning grim too, i have heard good stuff about it (fork of grim + improvements)
Supersmurf82
Supersmurf82โ€ข2w ago
does ur server run behind a proxy or anything
..........
..........OPโ€ข2w ago
ye
Supersmurf82
Supersmurf82โ€ข2w ago
velocity perchance?
..........
..........OPโ€ข2w ago
yep velocity
Supersmurf82
Supersmurf82โ€ข2w ago
Modrinth
Topaz - Minecraft Plugin
A simple FOSS Anti-VPN plugin for Velocity
Supersmurf82
Supersmurf82โ€ข2w ago
works well for me topaz does run behind a networking service, so all u need to do is make an account and setup the free plan for the token to put into config
Supersmurf82
Supersmurf82โ€ข2w ago
proxycheck.io | official website
Proxy & VPN Detection API | proxycheck.io
proxycheck.io is a premium Proxy detection API with a full featured free plan. Try us today!
..........
..........OPโ€ข2w ago
kk ill try
Supersmurf82
Supersmurf82โ€ข2w ago
once u have all this installed and the same guy joins back, and if u have essentialsx on ur backend paper server, just run a simple /banip <user> bans the ip, uuid, and ur good
Groovyy
Groovyyโ€ข2w ago
Is this any better than kaurivpn
Supersmurf82
Supersmurf82โ€ข2w ago
Never even heard of kauri But topaz blocks literally everything from what I've seen, even blocked me at one point bc I didn't have bypass perm
Philipp
Philippโ€ข2w ago
GitHub
Fix bee count payload lag/crash exploit and make it configurable. b...
Just a quick fix. This is generally a questionable feature, nothing about it is documented and it validates nearly nothing. Players can spam custom payload packets targeting locations anywhere in t...
Groovyy
Groovyyโ€ข2w ago
Will check out topaz then
Upioti
Upiotiโ€ข2w ago
try v4guard #1 provider rn

Did you find this page helpful?