PlusEMU - Habboon Edit - PRODUCTION-201601012205-226667486

[SoulZ]

dude he has a own retro.
Can you tell me why he dont use it ?

He uses Comet, that's why. Which is a Java emulator that was previously leaked by "Johno". If you don't trust his mirror website then don't own a hotel or download from there, simples. Johno owns xHosts.uk, so you say you can't trust him?! When he gets peoples logins and 1000's of requests per day and real money flowing around sooo yeah. Johno is 110% Trustworthy.

 

[cabeludo007]

When are you guys going to realize this was never the emulator that was used on Habboon... This is not even close to being as stable as Habboon hotel this emu has so much bugs.

I'm not sure but...
It's the same emulator, same bugs, but some settings differences in habboon's vps and others vps.

 

[Spot Ify]

I find it odd that every time you make a database query, you connect to the database. Wouldn't this cause huge latency issues since every query will need to open a connection to the database? I don't also see where you ever disconnect from the database. Wouldn't you essentially flood the database by never closing the connections? Why isn't there a database manager which instantiates one connection to the database? I see this in every emulator out there. I remember a time at work when somebody did the exact same thing and I ended up fixing it by just instantiating it just once. The queries ended up being 300% faster at the end.

I was just reading this post so thats why I'm replying to a old reply..
But it's not true what you are saying The mysql.data .net adapter handles that for you by pooling.
That is also the reason why you have a min-poolsize and a max-poolsize The min poolsize is the minium connections that are open and the max poolsize is the maximum connections that are open.

The .net adapter holds this connections open untill a timeout so you can query it fast and so you don't have to reconnect all the time. But its nice that you think about something like that because if the mysql.net adapter didnt do that then it would pretty pretty slow.

 

[Romuald Buisson]

Hello I have a problem, the ads_background don't work. I put the link in & he don't save the link in memory. Any idea of my problem ? Thank you

 

[boardza]

I don't know how to setup this.

 

[Meik2010]

PlusEmu Build Version: PRODUCTION-201601012205-226667486

ads_background is 100% work and saved

is from retroripper.com

check your Database

You must be registered to see links

 

[Romuald Buisson]

PlusEmu Build Version: PRODUCTION-201601012205-226667486

ads_background is 100% work and saved

is from retroripper.com

check your Database

You must be registered to see links

Can you send me the link of your retro ?
Thx

 

[Meik2010]

PlusEmu version: 3.4.3.0

Horse Saddle saved in bots_petdata.sql dont loaded, reload the Room is Horse Saddle deleted -.-

fixed codes dont work from retroripper.com

here is my Beta Test Hotel -->

You must be registered to see links

 

[Chapo]

Warning!

There is a way to log in on all accounts without password, also there's a way to flood unlimited times in a room. This all is possible with Tanji.

Goodluck with fixing/find out how.

 

[Spot Ify]

Warning!

There is a way to log in on all accounts without password, also there's a way to flood unlimited times in a room. This all is possible with Tanji.

Goodluck with fixing/find out how.

Don't belive that you can login to all users without a password because of the limit 1 but its true that you can login to accounts some accounts because the set of the auth_ticket after login.

You can fix that simply by replacing the SSOTICKET EVENT:

   public class SSOTicketEvent : IPacketEvent
    {
        public void Parse(GameClient Session, ClientPacket Packet)
        {
            string ticket;
            if (Session?.RC4Client == null || Session.GetHabbo() != null || string.IsNullOrEmpty((ticket = Packet.PopString())))
                return;

            Session.TryAuthenticate(ticket);
        }
    }

I don't see anything special by the mute time so I doubt the legitime of this post (It could also be clientside so it looked like he bypassed the flood times)

If your hotel got hacked with this method and you are sure of that just pm me then we look togheter I like mysteries

 

[Chapo]

Don't belive that you can login to all users without a password because of the limit 1 but its true that you can login to accounts some accounts because the set of the auth_ticket after login.

You can fix that simply by replacing the SSOTICKET EVENT:

   public class SSOTicketEvent : IPacketEvent
    {
        public void Parse(GameClient Session, ClientPacket Packet)
        {
            string ticket;
            if (Session?.RC4Client == null || Session.GetHabbo() != null || string.IsNullOrEmpty((ticket = Packet.PopString())))
                return;

            Session.TryAuthenticate(ticket);
        }
    }

I don't see anything special by the mute time so I doubt the legitime of this post (It could also be clientside so it looked like he bypassed the flood times)

If your hotel got hacked with this method and you are sure of that just pm me then we look togheter I like mysteries

Nice, but still easy to bypass. I recommend to create a check which check if the connection IP and user IP are the same if not destroy/disconnect the connection.

I also recommend to create a table for the user tickets just like Butterfly emu.

 

[Spot Ify]

Nice, but still easy to bypass. I recommend to create a check which check if the connection IP and user IP are the same if not destroy/disconnect the connection.

I also recommend to create a table for the user tickets just like Butterfly emu.

Its not easy to bypass because it is possible to login to users without a authticket because of this qeury after the login:

                 dbClient.RunQuery("UPDATE `users` SET `online` = '1', `auth_ticket` = '' WHERE `id` = '" + UserId + "' LIMIT 1");

but yeah it is a idea to add a check of the ip is the same but it is not needed
I also don't think you can do much with this bug because it is so random wich user you get.

 

[SageRP]

My clients loading to 59% then im getting disconnected any help ?

 

[Articuz]

My clients loading to 59% then im getting disconnected any help ?

This isn't help thread....here it is: http://forum.ragezone.com/f333/official-plusemu-help-thread-1090581/

 

[Seat Ibiza]

Its not easy to bypass because it is possible to login to users without a authticket because of this qeury after the login:

                 dbClient.RunQuery("UPDATE `users` SET `online` = '1', `auth_ticket` = '' WHERE `id` = '" + UserId + "' LIMIT 1");

but yeah it is a idea to add a check of the ip is the same but it is not needed
I also don't think you can do much with this bug because it is so random wich user you get.

Wouldn't it be possible to delete the SET auth_ticket = '' too, so that it will never become empty and so the security issue is solved?

 

[Robin Uters]

Thanks for the release only I have some problems with the database can you help me with this?

You must be registered to see links

Thanks in advance!

 

[Spot Ify]

Wouldn't it be possible to delete the SET auth_ticket = '' too, so that it will never become empty and so the security issue is solved?

No not really because it is a "bot" protection because it is empty they need to do a new request to get the auth ticket and if you have cloudflare with a browser check is that much harder to do.

But I don't think also that it is really a big exploit because it is pretty random wich account you get.

 

[Damien Jolly]

For a better more secure Authenticate you can leave the contents in "SSOTicketEvent.cs" as they are (the check for the empty string wont be needed, but you can keep it if you choose to).

In UserDataFactory.cs look for the function:

public static UserData GetUserData(string SessionTicket, out byte errorCode)

Change the first query:

dbClient.SetQuery("SELECT `id`,`username`,`rank`,`motto`,`look`,`gender`,`last_online`,`credits`,`activity_points`,`home_room`,`block_newfriends`,`hide_online`,`hide_inroom`,`vip`,`account_created`,`vip_points`,`machine_id`,`volume`,`chat_preference`,`focus_preference`, `pets_muted`,`bots_muted`,`advertising_report_blocked`,`last_change`,`gotw_points`,`ignore_invites`,`time_muted`,`allow_gifts`,`friend_bar_state`,`disable_forced_effects`,`allow_mimic`,`rank_vip` FROM `users` WHERE `auth_ticket` = @sso LIMIT 1");

To this:

dbClient.SetQuery(
    "SELECT users.id,users.username,users.rank,users.motto,users.look,users.gender,users.last_online,users.credits,users.activity_points,users.home_room,users.block_newfriends,users.hide_online,users.hide_inroom,users.vip,users.account_created,users.vip_points,users.machine_id,users.volume,users.chat_preference,users.focus_preference,users.pets_muted,users.bots_muted,users.advertising_report_blocked,users.last_change,users.gotw_points,users.ignore_invites,users.time_muted,users.allow_gifts,users.friend_bar_state,users.disable_forced_effects,users.allow_mimic,users.rank_vip " + 
    "FROM users " +
    "JOIN user_auth_ticket " +
    "ON users.id = user_auth_ticket.user_id " +
    "WHERE user_auth_ticket.auth_ticket = @sso " +
    "LIMIT 1"
);

Then further down look for:

dbClient.RunQuery("UPDATE `users` SET `online` = '1', `auth_ticket` = '' WHERE `id` = '" + UserId + "' LIMIT 1");

and change it to:

dbClient.RunQuery("UPDATE `users` SET `online` = '1' WHERE `id` = '" + UserId + "' LIMIT 1");
dbClient.RunQuery("DELETE FROM `user_auth_ticket` WHERE `user_id` = '" + UserId + "' LIMIT 1");

Inside PlusEnviroment.cs look for this function:

public static void PerformShutDown()

Change:

dbClient.RunQuery("UPDATE `users` SET online = '0', `auth_ticket` = NULL");

To:

dbClient.RunQuery("TRUNCATE `user_auth_ticket`");
dbClient.RunQuery("UPDATE `users` SET online = '0'");

Finally run this database query:

-- ----------------------------
-- Table structure for `user_auth_ticket`
-- ----------------------------
DROP TABLE IF EXISTS `user_auth_ticket`;
CREATE TABLE `user_auth_ticket` (
  `user_id` int(11) NOT NULL,
  `auth_ticket` varchar(60) NOT NULL,
  PRIMARY KEY (`user_id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;

This way you'll only be creating a session ticket when the user connects to the hotel and removing it straight after (not setting the ticket to null or empty), thus making it impossible to "randomly" sign in onto other users accounts, unless you manually set the ticket ofc

All you need to do is change how your SSO tickets get created to insert them into that table and you're good to go.

Hopefully this helped.

 

[</Meap>]

If anyone of you plan on using the above thing Damien has so kindly given to us all
go to class.users.php and search for the Create SSO auth_ticket section and replace it all with this

final public function createSSO($k)  
 {    
  global $engine; 
  $sessionKey = 'RevCMS-' . rand(9, 9999999).'/'.substr(sha1(time()).'/'.rand(9,9999999).'/'.rand(9,9999999).'/'.rand(9,9999999),0,33);
   
  if($engine->num_rows("SELECT * FROM user_auth_ticket WHERE user_id = '" . $k . "' LIMIT 1") > 0) {
   $engine->query("UPDATE user_auth_ticket SET auth_ticket = '" . $sessionKey . "' WHERE user_id = '" . $k . "'");
  } else {
   $engine->query("INSERT INTO user_auth_ticket (user_id, auth_ticket) VALUES ('" . $k . "', '" . $sessionKey ."')");
  }
  
  return $sessionKey;
  unset($sessionKey);
 }

Then go to your class.core.php and look for the case "client";
and replace it with this

$users->updateUser($_SESSION['user']['id'], 'ip_last', $_SERVER['REMOTE_ADDR']);
$template->setParams('sso', $users->createSSO($_SESSION['user']['id']));

 

[SebastianaEC]

For a better more secure Authenticate you can leave the contents in "SSOTicketEvent.cs" as they are (the check for the empty string wont be needed, but you can keep it if you choose to).

In UserDataFactory.cs look for the function:

public static UserData GetUserData(string SessionTicket, out byte errorCode)

Change the first query:

dbClient.SetQuery("SELECT `id`,`username`,`rank`,`motto`,`look`,`gender`,`last_online`,`credits`,`activity_points`,`home_room`,`block_newfriends`,`hide_online`,`hide_inroom`,`vip`,`account_created`,`vip_points`,`machine_id`,`volume`,`chat_preference`,`focus_preference`, `pets_muted`,`bots_muted`,`advertising_report_blocked`,`last_change`,`gotw_points`,`ignore_invites`,`time_muted`,`allow_gifts`,`friend_bar_state`,`disable_forced_effects`,`allow_mimic`,`rank_vip` FROM `users` WHERE `auth_ticket` = @sso LIMIT 1");

To this:

dbClient.SetQuery(
    "SELECT users.id,users.username,users.rank,users.motto,users.look,users.gender,users.last_online,users.credits,users.activity_points,users.home_room,users.block_newfriends,users.hide_online,users.hide_inroom,users.vip,users.account_created,users.vip_points,users.machine_id,users.volume,users.chat_preference,users.focus_preference,users.pets_muted,users.bots_muted,users.advertising_report_blocked,users.last_change,users.gotw_points,users.ignore_invites,users.time_muted,users.allow_gifts,users.friend_bar_state,users.disable_forced_effects,users.allow_mimic,users.rank_vip " + 
    "FROM users " +
    "JOIN user_auth_ticket " +
    "ON users.id = user_auth_ticket.user_id " +
    "WHERE user_auth_ticket.auth_ticket = @sso " +
    "LIMIT 1"
);

Then further down look for:

dbClient.RunQuery("UPDATE `users` SET `online` = '1', `auth_ticket` = '' WHERE `id` = '" + UserId + "' LIMIT 1");

and change it to:

dbClient.RunQuery("UPDATE `users` SET `online` = '1' WHERE `id` = '" + UserId + "' LIMIT 1");
dbClient.RunQuery("DELETE FROM `user_auth_ticket` WHERE `user_id` = '" + UserId + "' LIMIT 1");

Inside PlusEnviroment.cs look for this function:

public static void PerformShutDown()

Change:

dbClient.RunQuery("UPDATE `users` SET online = '0', `auth_ticket` = NULL");

To:

dbClient.RunQuery("TRUNCATE `user_auth_ticket`");
dbClient.RunQuery("UPDATE `users` SET online = '0'");

Finally run this database query:

-- ----------------------------
-- Table structure for `user_auth_ticket`
-- ----------------------------
DROP TABLE IF EXISTS `user_auth_ticket`;
CREATE TABLE `user_auth_ticket` (
  `user_id` int(11) NOT NULL,
  `auth_ticket` varchar(60) NOT NULL,
  PRIMARY KEY (`user_id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8;

This way you'll only be creating a session ticket when the user connects to the hotel and removing it straight after (not setting the ticket to null or empty), thus making it impossible to "randomly" sign in onto other users accounts, unless you manually set the ticket ofc

All you need to do is change how your SSO tickets get created to insert them into that table and you're good to go.

Hopefully this helped.

Awesome and outstanding developer, glad to be hes partner and learn from him!