ReconLog V3.16.1.0
Presented By Ritey
 

 
Description

IP logger/player management/replay saver for GhostRecon v1.4 that
runs in the system tray.

This version is a complete change from the previous versions in the
way it logs players and enforces bans. Consider this update a security
update.
 
ScreenShot


Features

 
Online Demo
An online demontration of ReconLog Remote Access can be found HERE.
Login with:-
Username: demo
Password: admin

 
Documentation
A pdf tutorial file for using the Remote Access is available here.
New In This Version:
Current Version: V3.16.1.0  
(29/05/2007)  
 
ALTERED: Force Random Map Selection has been changed to Auto  
kicking of players that attempt to manipulate server  
settings via the server info button. This is logged as a KICK  
entry in the log.  
EG: KICK: {date}{ip} AutoKicked For Server Setting Exploit  
 
FIXED: Bug where null comments may cause previous comments to  
be listed in place.  
__________________________________________________________________  
Version: V3.16.0.1  
(27/05/2007)  
 
FIXED: Bug where adding users to remote access would fail.  
Thanks to FNG_Saker for spotting this.  
__________________________________________________________________  
Version: V3.16.0.0  
(27/05/2007)  
 
ALTERED: Badnames are no longer case sensitive when checked.  
EG: DEFPLYR and deFPlyr will match defPlayr.  
 
ADDED: Comment field to badnames list.  
 
ADDED: "Taiwanese Weapons" Support.  
This gives admin the ability to make the MM1 blow up in the  
face of the player using it. And can also set Support weapons  
to fire single shot only.  
This has been possible because of P.T.Frank's program that  
was passed to me by Sith. Thanks to both of you.  
The settings can be found in the Mods page in Remote Access.  
NOTES:  
#1 This ONLY affects OGR/MP1/MP2 guns  
#2 Restarting of the game is required to implement changes.  
 
ADDED: Ability to force random maps selection.  
 
ADDED: Remote banlist download  
This will enable reconlog to download a text file containing  
ips that can be added to the ban list.  
The URL for the list can be set in the GR Security Page.  
IMPORTANT NOTES:  
===============  
Banlist format...  
The text file can contain single ips or ipranges.  
Each entry MUST be on a seperate line. (And that means the last  
MUST have a linefeed at the end)  
Example:  
123.123.123.123  
122.122.122.122-122.122.255.255  
There must be NO spaces or other character in the lines.  
 
The remote banlist is downloaded each time gr.exe is  
launched.  
 
If a ban is already in the local list then it will be  
ignored.  
 
The remote bans are NOT added to the local database.  
 
To diable the remote banlist then just make sure the  
GR Security setting is blank (ie: no url)  
 
To view whether the download was successful or not  
check the log. Near "SYST GR Sheild Installed"  
 
ADDED: Extended Rights for PlayerList Access.  
If Player list access rights for an admin are set to 'READ'  
then the rights can be further modified to enable specific  
actions to be allowed. This means that admins can be allowed/  
denied individual access to Ping/Kick/Ban/24HourBan/Message/  
MessageAll/StartMission/EndMission.  
These settings can obviously be found under the user settings.  
__________________________________________________________________  
Version: V3.14.0.2  
(24/04/2007)  
 
FIXED: Bug, add new user failed to to SQL error.  
Thanks to Sith for pointing this out.  
__________________________________________________________________  
Version: V3.14.0.1  
(09/04/2007)  
 
FIXED: Bug, where updating gr secrity config would remove  
FTP settings.  
 
__________________________________________________________________  
Version: V3.14.0.0  
(09/04/2007)  
 
ADDED: Ability to upload replays to a given FTP server.  
The settings for the ftp server can be found the RL Remote  
access.  
To upload a replay the user must first find it, then click on it  
then choose the Upload Button.  
To be able to upload replays the user must have [ALL] access  
rights to the replays section.  
__________________________________________________________________  
 
Version: V3.13.0.0  
(03/04/2007)  
 
FIXED: Bug that would allow zero length ban names to be added.  
 
ADDED: 24 Hour Ban button added to the player list. This will  
create a ban that will expire 24 hours after it has been  
entered. The player will also get receive the reason why  
he was banned in the form of a chat message, just before  
he is kicked.  
 
ADDED: Ban/White lists now have an option expires date/time.  
This can be edited in the list.  
 
UPDATED: Reconlog Tuturial Link to www.ReplayCommittee.com  
__________________________________________________________________  
Current Version: V3.12.0.0  
(31/03/2007)  
 
ADDED: Bad Names section. This enables Admins to automatically  
kick specified names after the player joins. The player will  
recevie a message that his name is not allowed, before he is  
kicked.  
Also domain names can be added to this list. So '*dialup*'  
could be added to block all host names with 'dialup' in the  
name.  
These checks are wildcard supported. IE: you can add '*'  
character to the name as a wildcard.  
 
CHANGED: Kicking of players is now more interactive with the  
player. He will receive a chat message displaying that he is  
about to be kicked. And he will get the GR [You have been  
ejected..] message.  
Also the admin has the option to give a reason for the kick  
that will be displayed to the player. This reason is also  
entered in the log.  
 
IMPROVED: So code improvedments for stability/performance.  
 
__________________________________________________________________  
Version: V3.11.3.0  
(06/03/2007)  
 
IMPROVED: Grsec command checker now improved to avoid players  
getting banned by mistake (This is not a common occurance but  
has happended before). This improvement also improves the  
performance of the checks. It also means that grsec wont  
just drop a command if its not complete. It will wait for  
the rest of it to be sent by the player.  
__________________________________________________________________  
Version: V3.11.2.3  
(06/03/2007)  
 
FIXED: Replays with invalid characters still failed to download.  
Thanks to Sith for pointing out my stupidity ;)  
__________________________________________________________________  
Version: V3.11.2.2  
(05/03/2007)  
 
ADDED: Ability to exclude lines contining text when  
searching the log in http.  
 
CHANGED: Messages sent to players via the Player List  
will now be in hosts coloured writing. IE: white/blue  
 
FIXED: Hopefully fixed most of the PAKT issues.  
 
FIXED: Issue where replays/stats would not be saved if  
Map had invalid characters in the filename. Invalid  
character are now changed to '#'.  
 
FIXED: Issue where bans maybe created disabled due to  
an uninitialized variable.  
__________________________________________________________________  
Version: V3.11.2.0  
(16/02/2007)  
 
ADDED: LetMeIn! feature. Nice little feature for server  
admins who want to join their server but it is full.  
Basically this feature will create an extra slot for your  
IP address when you join the server and automatically  
remove it once you have joined.  
Once activated you have 30 seconds to join the game, after  
this time it will reset.  
Only one admin at a time can use this.  
You need to have [ALL] access rights to this page, to be  
able to use it.  
Localhost cannot use this feature for obvious reasons!  
 
FIXED: Possible fixed issue for packet length error  
disconnects. This only stops grsec disconnecting the  
client under certain situations. Ghostrecon may still  
do it.  
 
ALTERED: PAKT log entries now contain dump info. This is so i  
can try to determin why players get disconneted due to buffer  
length errors.  
__________________________________________________________________  
Version: V3.11.1.2  
(14/02/2007)  
 
FIXED/ADDED: Bug in where first hit on http page gave LOGIN  
FAILURE. This was due to the fact that the browser doesnt send  
login info on the first hit. This bug was good really because  
it has been turned in to a log entry indicating when a remote  
access user logs in to remote access.  
 
IMPROVED: When setting max player limit in GR Security, the changes  
are applied immediately, therefore an admin can create an extra  
slot, even when a game is being played.  
__________________________________________________________________  
Version: V3.11.1.1  
(13/02/2007)  
 
FIXED: User list in HTTP showed incorrect rights for users.  
 
ADDED: GR Security Page Option to prevent downloading of Replays  
when a game is playing.  
 
__________________________________________________________________  
Version: V3.11.1.0  
(12/02/2007)  
 
 
ADDED: Notification of Restarts and Hacks can now be  
configured in the GR Security page. The mechanism is  
as follows:-  
If either of the events occur and notification is enabled  
and configured then ReconLog sends a request to the URL  
specified in the settings. (This will usually be a script  
on your webserver.)  
There is an example php script included in this release,  
this script when configured, will send and email to a  
desired address when notification is sent. Please  
read the script for more info.  
 
CHANGED: Access rights now slightly changed...  
The WRITE has been changed to ALL. Just a visual change here.  
For users to download replays they need ALL access to the  
Replays page.  
Users with READ access cannot view details of Users or Bans/  
Exceptions. They will only be able to view the list.  
User list now lists rights of individual users as well.  
 
IMPROVED: Log view. Restored the Highlight option. And added  
[NEXT/PREVIOUS] buttons. Line are still limited to 500 per page.  
This is necessary for performance and may even be decreased  
in the future.  
 
FIXED: Bug in ban/white list viewing where filter caused problems  
due to uninitialized variable.  
__________________________________________________________________  
Version: V3.11.0.0  
(11/02/2007)  
 
ANOTHER IMPORTANT CHANGE!  
HTTP access is now user/password based. Each user  
can have assigned rights of access to different  
pages. Each section has READ/WRITE access, basically  
this means that READ access can view the page. WRITE  
access can perform actions. Some pages such as log/stats  
etc. WRITE access wont make any difference to READ.  
And some pages like status/home can be accessed by any  
authenticated user.  
By default there are no users in the database, so the  
server admin will have to initially access reconlog http  
via 'localhost'. This can be done by double-clicking on  
the reconlog trayicon. 'localhost' always has access  
and doesnt require a password (dont worry noone outside  
of the PC can connect as localhost). Once logged in  
the admin can then create a user(s) and give them whatever  
access rights they want to.  
 
CHANGED: Status page in HTTP is improved giving extra  
information. The trayicon access to the stats page has  
been removed.  
 
ADDED: Bans/Exceptions can now be individually disabled.  
 
CHANGED: Localhost connections to HTTP don't require  
a password. This is done in case the host accidently bans  
himself from the server. Spoken by one that knows :)  
This only affects localhost->localhost HTTP connections  
these can only be made on the host machine.  
EG: http://localhost  
 
ADDED: Database is compacted and repaired each time  
reconlog is launched.  
 
IMPROVED: Html layout in Remote Access is easier to use.  
 
FIXED: Bug where log entries saying error when moving  
replay archive.  
 
FIXED: Bug where viewing log, item order was slightly incorrect.  
 
__________________________________________________________________  
Version: V3.10.0.0  
(10/02/2007)  
 
IMPORTANT CHANGE PLEASE READ CAREFULLY!  
 
CHANGED: Logs are now in the database and not the log files.  
This has been done so more searching can be done accross  
multiple dates.  
Note that the logs are now view in date descending order. IE: the  
latest entry will be at the top.  
I will make imporvements to the viewing of the log as necessary.  
Included in this release is a utility called RL_MDB_LogImporter.exe  
this program will import you existing logs into the database.  
View the accompying readme file for more info.  
 
 
FIXED: Issue where IE7 didnt remember password for HTTP if user  
selected that IE7 remembers password. This was an IE7 issue  
due to the fact that reconlog webserver ddint send Realm info  
to browser (Thanks to FNG-Saker for spotting problem).  
 
FIXED: Bug that cause memory error when closing a normal  
client game from the trayicon.  
 
FIXED: Some GR Security settings may not work if changed  
during game.  
 
CHANGED: All GR shutdowns now create a crash file. Whether they  
be crashes or not.  
__________________________________________________________________  
Version: V3.9.1.0  
(09/02/2007)  
 
IMPROVED: Playerlist will now display most 'non-standard'  
character names.  
 
FIXED: Bug where replay file in zip would have incorrect  
name.  
 
FIXED: Bug where kicking player from game may not work.  
 
ADDED: Player list is now saved when certain types of  
crash occurs. These files are saved to ReconLogFiles\Crash.  
The file contains time/date and players on server (with their  
details). Access to these files can be done via the HTTP log  
page.  
 
REMOVED: Ike Logs are no longer saved. Sorry but ike logs  
are only useful for determining why gr doesnt run.  
 
ADDED: HTTP access ips are checked against White/Ban lists.  
 
CHANGED: CONN/CLOS entries are no longer logged. JOIN/LEFT  
entries are still logged. This is a performance change and  
makes viewing the log easier. Joining connections are still  
shown in player list and connection timeouts are still  
implemented.  
 
CHANGED: IPs are no longer resolved to host names until the  
player has joined. This is to improve perfomance.  
 
ADDED: Blacklisted ip checks. If Joined players IP  
is found to be in blacklist then the ip is added to the ban list.  
The blacklists are known infected computer/open proxy servers.  
You may find that innocent players get caught in this check.  
 
Blacklisted IPs (if the check is enabled) will appear in red  
in the player list. Also (RBL) will be appended to the JOIN  
log.  
 
You can enable the option to auto kick blacklisted IPs. Be aware  
that many innocent people have IPs that are blacklisted, this is  
because they have either inherited a bad ip (dynamicly) or they  
have a virus on their computer that makes their computer act  
as a proxy server or SMTP mail server.  
 
You can also enable the option to auto enable kicking of blacklisted  
IPs after a crash (via hack) has been detected.  
 
Blacklisted IPs are not kicked if they are in the Exception list.  
All these setting are accessed in the GR Security Page.  
__________________________________________________________________  
Version: V3.9.0.4  
(04/02/2007)  
CHANGED: Replay archives now have date in the file name.  
Format is: rpf_YYYY-MM-DD_HH-MM_MAPNAME.zip  
 
ADDED: More hack detection.  
 
FIXED: Two issues with the start/end mission function. Thanks  
Mark for helping me find problem.  
__________________________________________________________________  
Version: V3.9.0.3  
(29/01/2007)  
 
IMPROVED: Flash UI is now prettier. Ok Chili i took art class  
today :)  
 
ADDED: Ability to start mission via HTTP. This is useful when an  
admin needs to force a game to start without having to put  
the timer on.  
__________________________________________________________________  
Version: V3.9.0.2  
(28/01/2007)  
 
CHANGED: The High Process Priority for gr is now an option  
and can be specified in the GR Security Page.  
 
ADDED: Ability to end mission via HTTP. This is cool :)  
(Please let me know if you have problems with this as  
i only managed to test it on 2 systems (XP/Win2K3)  
 
ADDED: More server info in player list. Map/GameState/Timelimit/  
ElapsedTime.  
__________________________________________________________________  
Version: V3.9.0.1  
(25/01/2007)  
 
Reconlog HTTP Tutorial Has now been produced as a PDF file and  
can be downloaded directly from the following link:  
http://www.soulbrothers.co.uk/downloads/ReconLog_Tutorial.pdf  
Many thanks for [SB]_Sith/[SB]_Chilip2000/[SB]_Seraph and rest of  
SoulBrothers Clan for producing/hosting/and keeping updated  
this valuable resource!  
 
ADDED: UbiDetect patch is now distributed with the setup and  
the setup process will ask if you want to run the patch. Only  
needed if you run your server on UBI.  
 
ADDED: GhostRecon is now run in a higher priority class.  
This basically means the computer will give GR higher  
priority than other applications running on the same  
machine.  
 
FIXED: Player name now added when banning from player list.  
 
FIXED: Browser issues when screen res is not 1024*768.  
 
ADDED: Flash player list now lists connecting players as  
well as joined players.  
 
ADDED: Ability for ADMIN to message individual players from the  
player list. No other players will see the message. (untested so  
feedback needed plz...)  
 
ADDED: Player list is now displayed via flash plugin. This adds  
easy of viewing when looking at player list and also improves  
bandwidth when reloading the player list. Browsers will need  
Flash Player V7 or higher to view the player list.  
 
REMOVED: Auto removal of AutoBans. This is because autobanning  
is pretty stable now.  
__________________________________________________________________  
Version: V3.8.0.0  
(18/01/2007)  
PERFORMANCE UPGRADE - CRITICAL FOR VERSION 3.7.0.0  
 
IMPROVED: Ban/white lists now navigate better.  
 
ADDED: When viewing logs via filter. Option to highlight results  
and still display other output as well.  
 
Major changes in grsec.dll code. To FIX a lot of issues involving  
stablilty of server and connection drops.  
 
REMOVED: Connection checks: Proxy/Blacklists/Dynamic  
 
REMOVED: UPD logging. If you need UDP logs then get your router  
/firewall to do it. This is a performance issue.  
 
IMPROVED: Speeded up banlist / whitelist checks  
 
ISSUED NOT YET FIXED:  
Auto-remove of autoban hacks not fixed. This maybe removed  
alltogether at a later date. Feedback...?  
__________________________________________________________________  
Version: V3.7.0.0  
(14/01/2007)  
FIXED: Another Issue where innocent players could be banned.  
 
FIXED: Thread safety issue that may have caused random  
disconnects.  
 
ADDED: Editing of items in the ban/white lists.  
 
ADDED: Access Database for storing bans and exceptions. This  
will now replace RLIPBan.txt and RLIPExceptions.txt. The MDB  
file is called reconlog.mdb  
All listed ips will now include time/date.  
I have created a utility for importing existing ban/exception  
file into the database. This utility is distributed in the zip  
with an accompanying readme file.  
 
ADDED: IP range banning. This replaces wildcard banning as it  
can now narrow down ranges better. To use a range ban you need  
to specify a start ip and end ip EG: 123.123.123.10 - 123.123.123.12  
Single IPs dont need the end IP address entering.  
 
__________________________________________________________________  
Version: V3.6.1.1  
(12/01/2007)  
FIXED: Issues where banlist wansn't properly displayed over  
HTTP due to memory allocation issue. Thanks to Sith and  
his list for spotting it.  
__________________________________________________________________  
Version: V3.6.1.0  
(12/01/2007)  
FIXED: Issue where IP of player may be incorrect in log.  
Thanks to [SB]_HC_Chilip2000 (aka LogGod) for spotting  
the issue.  
 
ADDED: Explosive blocking reintroduced. Should work better  
than before. Any problems then let me know.  
 
GRAFIX: Reconlog images changed by Dice (AMS_BOSS). This  
does make the exe file larger but its because the splash  
screen image is in true colorand not 256 bit. Won't  
affect performance though.  
 
FIXED: Issue in grsec.dll that would not load on some systems due  
to base address collision.  
__________________________________________________________________  
Version: V3.6.0.3  
(09/01/2007)  
IMPROVED: Code where some hackers would be blocked but not  
logged.  
 
REMOVED: Most trayicon dialogs now removed. Administering  
Reconlog should be done through the HTTP. So the Web server  
is now enabled by default. This is done as a performance saving  
as before there needed to be to copies of the playerlist kept.  
Now there is only one. The basic settings dialog still remains  
as this is where you can set the HTTP options.  
 
ADDED: Option to check players ip in blacklists.  
 
ADDED: Option to block Dynamic ip addresses.  
 
CHANGED: Log entries for banned ips joining. The entry will  
give 'BLOC' intead of 'BAN'. And the text will give reason  
for the blocking. EG: local banlist, remote banlist,  
proxy blacklisted, dynamic ip.  
 
RECODED: Parts of the grsec.dll so that when a player joins  
his connection can be run past as many checks as we want  
before he is allowed to join. This is so that future checks  
on ips can be added, such as checking against remote ban lists  
etc. The downside to this is that when a player joins there  
is a slight delay in him joining (about 0.25 second i estimate)  
but will be longer when additional checks are added.  
 
ADDED: Ability to prevent player number limit from being  
changed in GR Admin screen.  
 
ADDED: Can change server name as via HTTP. Same page as for  
setting MOTD.  
 
IMPROVED: Grsec.dll code. Faster and more  
efficient so now more packets can be inspected and more  
anti hack measures can be easily added later.  
 
CHANGED: Time limit blocking. Now you can set a maximum  
allowed game time limit to be set. If limit is exceeded  
when it will default to 10 minutes.  
 
IMPROVED: Packet checking to prevent tandem packets.  
This is BETA at the moment so if you suffer preformance  
issues then please let me know  
 
REMOVED: Nade blocking removed for now. Server should get  
server side mods to restrict kits.  
 
ADDED: Extra anti hacking measures to detect hackers spoofing  
other players. There is not 100% coverage of this,  
but its a start.  
 
ADDED: ability to log UDP queries. The purpose of this is to  
catch players who use a socks proxy to join. Socks doesnt  
use UDP so if they query the server it will expose their real  
IP address. Log entries begin with UDPQ: and give the ip of  
the user.  
You should only use this if needed AND if your Firewall doesn't  
or cannot log this.  
__________________________________________________________________  
Version: V3.4.0.5  
(29/12/2006)  
ADDED: Dumping of suspected hack packets to file.  
\ReconLogFiles\Dump\dump_0000.txt  
Each dump will have its own seperate file. These  
files can be viewed over HTTP. There will be an entry  
in the log after the HACK entry. Where you can follow  
the link to view the file.  
 
FIX: Another fix added to prevent innocent users from being  
autobanned when network conditions are bad. Thanks again  
Sith :)  
 
IMPROVED: Nade blocking. Give it a go and let me know if you  
have any problems.  
 
Open Server Addition Options:  
 
ADDED: Option to Block setting of Unlimited Time if Open  
Server is Enabled. (defaults to 10 minutes)  
 
ADDED: Option to Block setting of Infinite Respawn if Open  
Server is Enabled. (defaults to zero respawn)  
 
ADDED: Option to block setting of game join password in GR  
admin screen when Open Server is enabled. This is to prevent  
users, who access the admin screen, from setting a password  
and then leaving, thus not allowing anybody else to join.  
 
__________________________________________________________________  
Version: V3.4.0.4  
(15/12/2006)  
FIXED: Missing replays issue. Due to lack of buffer memory assigned  
in web server. Thanks to [SB]_Sith for help me solve this issue.  
__________________________________________________________________  
Version: V3.4.0.3  
(13/12/2006)  
RECOMMENED UPDATE!  
 
FIXED: Genuine players being banned by autoban.  
This was due to keepalive data being tandemed with packet data  
and being interpreted by reconlog as a malformed packet.  
 
ADDED: Ability to auto remove after one hour, autobans.  
This should only be used if the fix above below doesnt work.  
 
FIXED: Some thread deadlock issues when reconlog is closed.  
 
FIXED: Possible memory corruption in replay archiving. (GetMapName)  
This may fix the issue of missing replays.  
__________________________________________________________________  
Version: V3.4.0.2  
(16/09/2006)  
 
CRITICAL UPDATE  
 
FIX: Fixed issue where banlist was not loaded properly when  
reconlog was launched. This would give the effect of bans not  
being enforced when player joined via IP.  
__________________________________________________________________  
Version: V3.4.0.1  
(15/09/2006)  
 
SMALL FIX: Hopefully fixes a issue of ReconlogFiles folder  
creation problem at reconlog launch. This is most likely  
caused by an operating system compatibility issue or utility  
software / driver conflict.  
Update not required if you don't suffer from this problem.  
Sorry for any delays but Ive got a lot on!  
__________________________________________________________________  
Version: V3.4.0.0  
(18/04/2006)  
 
FIXED: Bug in built-in webserver where date/last-modified headers  
in response were not correct when servers locale was non-uk/us.  
This would cause the content type to be misinterpreted causing  
the downloaded ike log files to be treated as HTML and not plain  
text.  
 
FIXED: Possible thread deadlock in grsec.dll, that could happen  
when join player has got poor connection.  
 
IMPORTANT CHANGE:  
Now users who access HTTP can specify any username (1-15 characters  
max). Users should be encouraged to use their playername. This  
is done so the logs and ban list will now automatically add the  
http username to the end of the entry. This is so you can see  
who did what easier than tracking the web users IP. (Note the  
ip address is still added to the log)  
EG log entry:  
HTTP: 10:22:27 BAN Of 123.123.123.123 By Ritey[WTF][192.168.21.21:1153]  
EG ban list entry:  
123.123.123.123 defPlayr cheating (Added By Ritey[WTF])  
 
Failed HTTP login attempts are now logged.  
EG:  
HTTP: 09:59:29 FAILURE Of LOGIN By Ritey[WTF][192.168.21.21:1153]  
 
More HTTP actions are logged..  
HTTP: 11:03:53 Update Of MOTD By Ritey[WTF][192.168.21.21:1153]  
HTTP: 11:04:01 Update Of GR Security By Ritey[WTF][192.168.21.21:1153]  
HTTP: 11:04:11 Change Of Mods By Ritey[WTF][192.168.21.21:1153]  


Complete Change History

System Requirements:
Windows XP 2003
GhostRecon v1.4 (and all the Specs that GR requires)

Questions / Comments / Suggestions: Please Email Me