I am working on a game which has a weapon system, and I been working on making it exploit proof. What I did since I cant clone from ServerStorage is, I added 2 folders with the same descendants, and I put one in ServerStorage and one in ReplicatedStorage since I can clone from there. Then whenever the player joins, or goes to equip a weapon, I check the weapon they are trying to equip, if it exists in the ServerStorage if it does, then I clone from the ReplicatedStorage. Is this good, or could it be done better? in the weapon there is no Values or anything that affects the weapons performance such as Damage or HitBox.
1 Like
Just dont run any important code on the Client, If you use RemoteEvents (A way of Sending data between the Client/Server), perform sanity checks to ensure the data is valid to prevent any exploitation of the system.
Its a simple way towards an anticheat on any FPS, and in fact any system, just validate the information coming from the client, and you would be set.
Entirely stopping exploiting will be nearly impossible, But we can do our best!
Make use of RemoteEvents and forced timing, Try to keep as much on the server as you can. Add Server-Checks to the functions to make sure its not being exploited.
Example: For a bullet fire system.
When the bullet is fired, it will check it’s firerate and if its more than what it should be, it will detect the player is exploiting.
1 Like
I see thanks, is what im doing a sanity check?
Sanity check basically just means making sure the information is correct, Cloning an Object and Placing it somewhere else doesnt seem to be a type of sanity check, but rather just you preventing the exploiter from accessing explicit information until you load in the weapon, you arent really validating anything there.
However Checking the Weapon they are trying to equip is a type of Sanity Check, as you are essentially validating what weapon they are trying to get.
once they join a local script in starter player fires an event if it finds the weapon they have equipped, then when the server receives the event i check if it is also in the serverstorage folder thats good?
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.