Hello there,

So here are my questions, how is it possible to download server side scripts in cod2 even with q3dirtrawfix but without the latest libcod from Mitch which added iwd check?

To be more specific, does a person that downloads it has to know the exact name of every script? or rather every file? could he list it somehow? If yes how? What type of access does this person have to have to gain access to all the information he needs to download those files?

Basically someone did download all scripts and some other valuable files from my server and he knew the name of every file he was downloading even some unusual ones that shouldn't be in cod directory but were there by mistake.

I am hoping for a good lesson on security and if the latest libcod from Mitch would solve it?

Regards YuriJurek.