Tracing
Tracing is a dangerous thing to have happen to you when hacking. It has three causes, and one result: Game Over!
Causes
The primary cause of being caught is timing and not having AdminMonitor.exe running for a warning. When you are hacking an NPC Server, you have the chance of being caught due to an Admin being actively online to see your intrusion. When you hack into an NPC server, always run the ps command and look for the process: dsession, or something similar: this is the Admin! You need to clear the server log (See Below) and exit ASAP! Else, you are victim of an active trace.
The second cause of Tracing is a passive trace. A passive trace effectively runs when you leave a shell log entry (See Below) when you hack a system. The passive trace will run without you knowing (unless you have AdminMonitor.exe) and you will be caught.
The final cause of Tracing is being... framed! That is correct- you can be framed. When another hacker inputs YOUR IPs into a server with an Admin, the Admin will think YOU are the hacker, and passively trace you.
Prevention
It is always a good mindset to startup AdminMonitor.exe when you startup the game. AdminMonitor.exe allows you to be actively notified of any form of tracing against you, and you can take preventative actions. The fastest way to ward off a trace is to switch WiFi networks. This works because your IP will be changed in adaptation to a new network router.
Proxies
Proxies, used by [[Tool|Map.exe, are simply chains of SSH'ed computers that will make it longer for traces to get to the starting computer- you. Proxies can be created by buying NPC Servers from NPC Shops, and you can SSH into many of them- as many as needed!
Framing
To frame a user into getting traced & caught is simple- create log entries that trail back to the victim!
Importance of Logs
"It's log, it's log, it's better than bad, it good! (Blamo! - Ren & Stimpy - Cartoon Network's Adult Swim)"! That's right! Logs leave trails that Admin's can trace. To avoid this, simply go, on the victim's server, to /var/server.log, AND ALWAYS CHECK, TOO, IN /etc/! Open the file(s) and delete any related logs with your IP that contains any trace of opening the Shell.
Debug data:
[SQLBagOStuff] MainObjectStash using store ReplicatedBagOStuff[objectcache] MainWANObjectCache using store EmptyBagOStuffIP: 34.239.152.207Start request GET /w/index.php?title=Tracing&oldid=130
HTTP HEADERS:
CONTENT-LENGTH: 0
CDN-LOOP: cloudflare
CF-IPCOUNTRY: US
CF-CONNECTING-IP: 34.239.152.207
ACCEPT-LANGUAGE: en-US,en;q=0.5
ACCEPT: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
USER-AGENT: CCBot/2.0 (https://commoncrawl.org/faq/)
CF-VISITOR: {"scheme":"https"}
X-FORWARDED-PROTO: https
CF-RAY: 7b004cd5f9743b0e-IAD
X-FORWARDED-FOR: 34.239.152.207
ACCEPT-ENCODING: gzip
CONNECTION: close
HOST: wiki.ghtools.xyz[localisation] LocalisationCache: using store LCStoreDB[session] SessionManager using store SqlBagOStuff[DBReplication] Cannot use ChronologyProtector with EmptyBagOStuff[DBReplication] Wikimedia\Rdbms\LBFactory::getChronologyProtector: request info {
"IPAddress": "34.239.152.207",
"UserAgent": "CCBot\/2.0 (https:\/\/commoncrawl.org\/faq\/)",
"ChronologyProtection": false,
"ChronologyPositionIndex": 0,
"ChronologyClientId": false
}[DBConnection] Wikimedia\Rdbms\LoadBalancer::lazyLoadReplicationPositions: executed chronology callback.[DBConnection] Wikimedia\Rdbms\LoadBalancer::getLocalConnection: connected to database 0 at 'localhost'.[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[session] SessionBackend "4v0jr8o9muaennqusv12r6ho8f7rs6jl" is unsaved, marking dirty in constructor[session] SessionBackend "4v0jr8o9muaennqusv12r6ho8f7rs6jl" save: dataDirty=1 metaDirty=1 forcePersist=0[cookie] already deleted setcookie: "c6_wiki_session", "", "1648642758", "/", "", "1", "1"[cookie] already deleted setcookie: "c6_wikiUserID", "", "1648642758", "/", "", "1", "1"[cookie] already deleted setcookie: "c6_wikiToken", "", "1648642758", "/", "", "1", "1"[cookie] already deleted setcookie: "forceHTTPS", "", "1648642758", "/", "", "", "1"[DBConnection] Wikimedia\Rdbms\LoadBalancer::getLocalConnection: connected to database 0 at 'localhost'.Title::getRestrictionTypes: applicable restrictions to [[Tracing]] are {edit,move}[ContentHandler] Created handler for wikitext: WikitextContentHandler[MessageCache] MessageCache using store SqlBagOStuff[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[SQLBagOStuff] SqlBagOStuff::lock failed due to timeout for c6_wiki:messages:en.[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[MessageCache] MessageCache::load: Loading en... local cache is empty, global cache is expired/volatile, loading from databaseParserFactory: using preprocessor: Preprocessor_HashUnstubbing $wgLang on call of $wgLang::_unstub from ParserOptions->__construct[caches] parser: SqlBagOStuffArticle::view using parser cache: yes[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuffArticle::view: doing uncached parse[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[Preprocessor] Cached preprocessor output (key: c6_wiki:preprocess-hash:9ae391133c57554a41613fcbbc55ea05:0)[Preprocessor] Cached preprocessor output (key: c6_wiki:preprocess-hash:9ae391133c57554a41613fcbbc55ea05:0)Saved in parser cache with key c6_wiki:pcache:idhash:58-0!canonical and timestamp 20230330121918 and revision id 130[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuff[SQLBagOStuff] Connection mysql object #145 (handle id #151) will be used for SqlBagOStuffMediaWiki::preOutputCommit: primary transaction round committedMediaWiki::preOutputCommit: pre-send deferred updates completedMediaWiki::preOutputCommit: session changes committedMediaWiki::preOutputCommit: LBFactory shutdown completedTitle::getRestrictionTypes: applicable restrictions to [[Tracing]] are {edit,move}