acl.xml permissions

Benevolence · August 4, 2011

I've recently found out that anyone who plays my server has the ability to restart my server and mingle with the resources. I've tried some editing, but I haven't been able to fix this. People login my server and type in the console "debugscript 3" and they can see the live server log and I think they can even read PMs. This is frustrating and I hope someone can fix it for me or at least tell me how to fix it. If I need to post anything further, please let me know. I have a Roleplay server. And yes I refered to the wiki about this, but I still can't manage to "fix" it. I use MySQL (if that's relevant to know).

Here is my acl.xml file:

  

   "Everyone"> 
      "Default"/> 
      "user.*"/> 
      "resource.*"/> 
    "resource.ucp"/> 
   
   "Moderator"> 
      "Moderator"/> 
      "resource.mapcycler"/> 
      "resource.mapmanager"/> 
      "resource.resourcemanager"/> 
      "resource.votemanager"/> 
   
   "SuperModerator"> 
      "Moderator"/> 
      "SuperModerator"/> 
   
   "Admin"> 
      "Moderator"/> 
      "SuperModerator"/> 
      "Admin"/> 
      "RPC"/> 
      "resource.admin"/> 
      "resource.webadmin"/> 
  
    "resource.account-system"/> 
    "resource.achievement-system"/> 
    "resource.admin-system"/> 
    "resource.animation-system"/> 
    "resource.anticheat-system"/> 
     
    "resource.bank-system"/> 
     
    "resource.carlist-system"/> 
    "resource.carshop-system"/> 
    "resource.camera-system"/> 
    "resource.chat-system"/> 
    "resource.computers-system"/> 
     
    "resource.elevator-system"/> 
     
    "resource.faction-system"/> 
    "resource.fuel-system"/> 
     
    "resource.gate-system"/> 
     
    "resource.global"/> 
     
    "resource.help-system"/> 
     
    "resource.id-system"/> 
    "resource.interior-system"/> 
    "resource.irc"/> 
    "resource.item-system"/> 
     
    "resource.job-system"/> 
     
    "resource.license-system"/> 
    "resource.lves-system"/> 
    "resource.lvpd-system"/> 
     
    "resource.map-system"/> 
    "resource.mysql-system"/> 
     
    "resource.object-system"/> 
     
    "resource.paynspray-system"/> 
    "resource.phone-system"/> 
     
    "resource.realism-system"/> 
    "resource.realtime-system"/> 
    "resource.report-system"/> 
    "resource.resource-keeper"/> 
     
    "resource.saveplayer-system"/> 
    "resource.savevehicle-system"/> 
    "resource.scoreboard-system"/> 
    "resource.shop-system"/> 
    "resource.spike-system"/> 
    "resource.statistics-system"/> 
    "resource.startup"/> 
     
    "resource.tag-system"/> 
     
    "resource.vehicle-system"/> 
    "resource.valhallashield"/> 
     
    "resource.weather-system"/> 
  
   
   "Console"> 
      "Moderator"/> 
      "SuperModerator"/> 
      "Admin"/> 
      "RPC"/> 
      "user.Console"/> 
   
   "RPC"> 
      "RPC"/> 
   
   "MapEditor"> 
      "MapEditor"/> 
      "resource.editor_main"/> 
      "resource.edf"/> 
   
   "raceACLGroup"> 
      "raceACL"/> 
      "resource.race"/> 
   
   "Owner"> 
      "general.ModifyOtherObjects" access="false"/> 
      "general.http" access="false"/> 
      "command.start" access="false"/> 
      "command.stop" access="false"/> 
      "command.stopall" access="false"/> 
      "command.gamemode" access="false"/> 
      "command.changemode" access="false"/> 
      "command.changemap" access="false"/> 
      "command.stopmode" access="false"/> 
      "command.stopmap" access="false"/> 
      "command.skipmap" access="false"/> 
      "command.restart" access="false"/> 
      "command.refresh" access="false"/> 
      "command.addaccount" access="false"/> 
      "command.delaccount" access="false"/> 
      "command.debugscript" access="false"/> 
      "command.chgpass" access="false"/> 
      "command.mute" access="false"/> 
      "command.unmute" access="false"/> 
      "command.kick" access="false"/> 
      "command.ban" access="false"/> 
      "command.banip" access="false"/> 
      "command.unbanip" access="false"/> 
      "command.shutdown" access="false"/> 
      "command.install" access="false"/> 
      "command.aexec" access="false"/> 
      "command.whois" access="false"/> 
      "command.whowas" access="false"/> 
      "function.executeCommandHandler" access="false"/> 
      "function.setPlayerMuted" access="false"/> 
      "function.addAccount" access="false"/> 
      "function.removeAccount" access="false"/> 
      "function.setAccountPassword" access="false"/> 
      "function.kickPlayer" access="false"/> 
      "function.banIP" access="false"/> 
      "function.banPlayer" access="false"/> 
      "function.banSerial" access="false"/> 
      "function.getBansXML" access="false"/> 
      "function.unbanIP" access="false"/> 
      "function.unbanSerial" access="false"/> 
      "function.getClientIP" access="false"/> 
      "function.setServerPassword" access="false"/> 
      "function.getServerPassword" access="false"/> 
      "function.callRemote" access="false"/> 
      "function.startResource" access="false"/> 
      "function.stopResource" access="false"/> 
      "function.restartResource" access="false"/> 
      "function.createResource" access="false"/> 
      "function.copyResource" access="false"/> 
      "function.addResourceMap" access="false"/> 
      "function.addResourceConfig" access="false"/> 
      "function.removeResourceFile" access="false"/> 
      "function.setResourceDefaultSetting" access="false"/> 
      "function.removeResourceDefaultSetting" access="false"/> 
      "function.aclReload" access="false"/> 
      "function.aclSave" access="false"/> 
      "function.aclCreate" access="false"/> 
      "function.aclDestroy" access="false"/> 
      "function.aclSetRight" access="false"/> 
      "function.aclRemoveRight" access="false"/> 
      "function.aclCreateGroup" access="false"/> 
      "function.aclDestroyGroup" access="false"/> 
      "function.aclGroupAddACL" access="false"/> 
      "function.aclGroupRemoveACL" access="false"/> 
      "function.aclGroupAddObject" access="false"/> 
      "function.aclGroupRemoveObject" access="false"/> 
   
   "Moderator"> 
      "general.ModifyOtherObjects" access="false"/> 
      "command.start" access="true"/> 
      "command.stop" access="true"/> 
      "command.stopall" access="true"/> 
      "command.gamemode" access="true"/> 
      "command.changemode" access="true"/> 
      "command.changemap" access="true"/> 
      "command.stopmode" access="true"/> 
      "command.stopmap" access="true"/> 
      "command.skipmap" access="true"/> 
      "command.restart" access="true"/> 
      "command.mute" access="true"/> 
      "command.unmute" access="true"/> 
      "command.kick" access="true"/> 
      "command.ban" access="true"/> 
      "command.banip" access="true"/> 
      "command.unbanip" access="true"/> 
      "command.whois" access="true"/> 
      "command.whowas" access="true"/> 
      "function.setPlayerMuted" access="true"/> 
      "function.kickPlayer" access="true"/> 
      "function.banIP" access="true"/> 
      "function.banPlayer" access="true"/> 
      "function.banSerial" access="true"/> 
      "function.getBansXML" access="true"/> 
      "function.unbanIP" access="true"/> 
      "function.unbanSerial" access="true"/> 
      "function.getClientIP" access="true"/> 
      "function.startResource" access="true"/> 
      "function.stopResource" access="true"/> 
      "function.restartResource" access="true"/> 
   
   "SuperModerator"> 
      "general.ModifyOtherObjects" access="false"/> 
      "command.refresh" access="true"/> 
      "command.addaccount" access="true"/> 
      "command.delaccount" access="true"/> 
      "command.chgpass" access="true"/> 
      "function.addAccount" access="true"/> 
      "function.removeAccount" access="true"/> 
      "function.setAccountPassword" access="true"/> 
   
   "Admin"> 
      "general.ModifyOtherObjects" access="true"/> 
      "general.http" access="true"/> 
      "command.shutdown" access="true"/> 
      "command.install" access="true"/> 
      "command.aexec" access="true"/> 
      "command.debugscript" access="true"/> 
       "command.refresh" access="true"/> 
      "function.executeCommandHandler" access="true"/> 
      "function.setServerPassword" access="true"/> 
      "function.getServerPassword" access="true"/> 
      "function.createResource" access="true"/> 
      "function.copyResource" access="true"/> 
      "function.addResourceMap" access="true"/> 
      "function.addResourceConfig" access="true"/> 
      "function.removeResourceFile" access="true"/> 
      "function.setResourceDefaultSetting" access="true"/> 
      "function.removeResourceDefaultSetting" access="true"/> 
      "function.aclReload" access="true"/> 
      "function.aclSave" access="true"/> 
      "function.aclCreate" access="true"/> 
      "function.aclDestroy" access="true"/> 
      "function.aclSetRight" access="true"/> 
      "function.aclRemoveRight" access="true"/> 
      "function.aclCreateGroup" access="true"/> 
      "function.aclDestroyGroup" access="true"/> 
      "function.aclGroupAddACL" access="true"/> 
      "function.aclGroupRemoveACL" access="true"/> 
      "function.aclGroupAddObject" access="true"/> 
      "function.aclGroupRemoveObject" access="true"/> 
   
   "RPC"> 
      "function.callRemote" access="true"/> 
   
   "MapEditor"> 
      "general.ModifyOtherObjects" access="true"/> 
      "function.startResource" access="true"/> 
      "function.stopResource" access="true"/> 
      "function.restartResource" access="true"/> 
      "function.createResource" access="true"/> 
      "function.copyResource" access="true"/> 
      "function.addResourceMap" access="true"/> 
      "function.addResourceConfig" access="true"/> 
      "function.removeResourceFile" access="true"/> 
      "function.setResourceDefaultSetting" access="true"/> 
      "function.removeResourceDefaultSetting" access="true"/> 
      "function.xmlLoadFile" access="true"/> 
   
   "raceACL"> 
      "general.ModifyOtherObjects" access="true"/> 
      "function.xmlLoadFile" access="true"/>

Jaysds1 · August 4, 2011

What's the ucp resource?

Edited August 4, 2011 by Guest

Benevolence · August 4, 2011

What's the ucp resource?

I've actually have no idea, I searched my file and there isn't anything called that, it's only inside the acl.xml file.

Jaysds1 · August 4, 2011

You forgot to add the Default acl:

  
    <acl name="Default"> 
        <right name="general.ModifyOtherObjects" access="false" /> 
        <right name="general.http" access="false" /> 
        <right name="command.start" access="false" /> 
        <right name="command.stop" access="false" /> 
        <right name="command.stopall" access="false" /> 
        <right name="command.gamemode" access="false" /> 
        <right name="command.changemode" access="false" /> 
        <right name="command.changemap" access="false" /> 
        <right name="command.stopmode" access="false" /> 
        <right name="command.stopmap" access="false" /> 
        <right name="command.skipmap" access="false" /> 
        <right name="command.restart" access="false" /> 
        <right name="command.refresh" access="false" /> 
        <right name="command.refreshall" access="false" /> 
        <right name="command.addaccount" access="false" /> 
        <right name="command.delaccount" access="false" /> 
        <right name="command.debugscript" access="false" /> 
        <right name="command.chgpass" access="false" /> 
        <right name="command.loadmodule" access="false" /> 
        <right name="command.upgrade" access="false" /> 
        <right name="command.mute" access="false" /> 
        <right name="command.crun" access="false" /> 
        <right name="command.srun" access="false" /> 
        <right name="command.run" access="false" /> 
        <right name="command.unmute" access="false" /> 
        <right name="command.kick" access="false" /> 
        <right name="command.ban" access="false" /> 
        <right name="command.banip" access="false" /> 
        <right name="command.unbanip" access="false" /> 
        <right name="command.shutdown" access="false" /> 
        <right name="command.install" access="false" /> 
        <right name="command.aexec" access="false" /> 
        <right name="command.whois" access="false" /> 
        <right name="command.whowas" access="false" /> 
        <right name="function.executeCommandHandler" access="false" /> 
        <right name="function.setPlayerMuted" access="false" /> 
        <right name="function.addAccount" access="false" /> 
        <right name="function.addBan" access="false" /> 
        <right name="function.removeBan" access="false" /> 
        <right name="function.removeAccount" access="false" /> 
        <right name="function.setAccountPassword" access="false" /> 
        <right name="function.kickPlayer" access="false" /> 
        <right name="function.banIP" access="false" /> 
        <right name="function.banPlayer" access="false" /> 
        <right name="function.banSerial" access="false" /> 
        <right name="function.getBansXML" access="false" /> 
        <right name="function.unbanIP" access="false" /> 
        <right name="function.unbanSerial" access="false" /> 
        <right name="function.getClientIP" access="false" /> 
        <right name="function.setServerPassword" access="false" /> 
        <right name="function.getServerPassword" access="false" /> 
        <right name="function.callRemote" access="false" /> 
        <right name="function.startResource" access="false" /> 
        <right name="function.stopResource" access="false" /> 
        <right name="function.restartResource" access="false" /> 
        <right name="function.createResource" access="false" /> 
        <right name="function.copyResource" access="false" /> 
        <right name="function.addResourceMap" access="false" /> 
        <right name="function.addResourceConfig" access="false" /> 
        <right name="function.removeResourceFile" access="false" /> 
        <right name="function.setResourceDefaultSetting" access="false" /> 
        <right name="function.removeResourceDefaultSetting" access="false" /> 
        <right name="function.redirectPlayer" access="false" /> 
        <right name="function.aclReload" access="false" /> 
        <right name="function.aclSave" access="false" /> 
        <right name="function.aclCreate" access="false" /> 
        <right name="function.aclDestroy" access="false" /> 
        <right name="function.aclSetRight" access="false" /> 
        <right name="function.aclRemoveRight" access="false" /> 
        <right name="function.aclCreateGroup" access="false" /> 
        <right name="function.aclDestroyGroup" access="false" /> 
        <right name="function.aclGroupAddACL" access="false" /> 
        <right name="function.aclGroupRemoveACL" access="false" /> 
        <right name="function.aclGroupAddObject" access="false" /> 
        <right name="function.aclGroupRemoveObject" access="false" /> 
        <right name="general.adminpanel" access="false" /> 
        <right name="general.tab_players" access="false" /> 
        <right name="general.tab_resources" access="false" /> 
        <right name="general.tab_server" access="false" /> 
        <right name="general.tab_bans" access="false" /> 
        <right name="general.tab_adminchat" access="false" /> 
        <right name="command.freeze" access="false" /> 
        <right name="command.shout" access="false" /> 
        <right name="command.spectate" access="false" /> 
        <right name="command.slap" access="false" /> 
        <right name="command.setgroup" access="false" /> 
        <right name="command.sethealth" access="false" /> 
        <right name="command.setarmour" access="false" /> 
        <right name="command.setmoney" access="false" /> 
        <right name="command.setskin" access="false" /> 
        <right name="command.setteam" access="false" /> 
        <right name="command.giveweapon" access="false" /> 
        <right name="command.setstat" access="false" /> 
        <right name="command.jetpack" access="false" /> 
        <right name="command.warp" access="false" /> 
        <right name="command.setdimension" access="false" /> 
        <right name="command.setinterior" access="false" /> 
        <right name="command.givevehicle" access="false" /> 
        <right name="command.repair" access="false" /> 
        <right name="command.blow" access="false" /> 
        <right name="command.destroy" access="false" /> 
        <right name="command.customize" access="false" /> 
        <right name="command.setcolor" access="false" /> 
        <right name="command.setpaintjob" access="false" /> 
        <right name="command.listmessages" access="false" /> 
        <right name="command.readmessage" access="false" /> 
        <right name="command.listresources" access="false" /> 
        <right name="command.execute" access="false" /> 
        <right name="command.setpassword" access="false" /> 
        <right name="command.setwelcome" access="false" /> 
        <right name="command.setgame" access="false" /> 
        <right name="command.setmap" access="false" /> 
        <right name="command.setweather" access="false" /> 
        <right name="command.blendweather" access="false" /> 
        <right name="command.setblurlevel" access="false" /> 
        <right name="command.setwaveheight" access="false" /> 
        <right name="command.setskygradient" access="false" /> 
        <right name="command.setgamespeed" access="false" /> 
        <right name="command.setgravity" access="false" /> 
        <right name="command.settime" access="false" /> 
        <right name="command.unban" access="false" /> 
        <right name="command.banserial" access="false" /> 
        <right name="command.unbanserial" access="false" /> 
        <right name="command.listbans" access="false" /> 
    </acl>

Benevolence · August 4, 2011

The default acl? But there's a "Owner" acl there...? I don't get it.

SDK · August 4, 2011

It looks like the "Default" acl got renamed to "Owner", but it didn't change in the groups. Try changing it back to "Default"

Benevolence · August 4, 2011

So it should work after I change "Owner" to "Default" ? I just want to know before I restart my server (There's ppl on).

Arran · August 4, 2011

It looks like the "Default" acl got renamed to "Owner", but it didn't change in the groups. Try changing it back to "Default"

^

Also, giving that many resources full admin might not be a good idea, use the principle of least access and only give them what they need.

Benevolence · August 4, 2011

Okay I replaced "Owner" with "Default". Now I can't mingle with resources in-game, it says with my admin msg that it worked, but it really didn't (what writes it is something in my admin resource).

Sign In

acl.xml permissions

Question

Benevolence

8 answers to this question

Recommended Posts

Jaysds1

Benevolence

Jaysds1

Benevolence

SDK

Benevolence

Arran

Benevolence

Create an account or sign in to comment

Create an account

Sign in

Recently Browsing 0 members

Browse

Activity

MTA Network

Social Media