So I’m creating this game that gives players certain roles and other scripts will do different things depending on these roles, now I’m perfectly able to do that but then I started thinking about how to avoid hackers to know what these roles are and that’s where I can’t figure out any solution with my knowledge
The basic way would be where the roles are stringvalues with players assigned to it yet exploiters can read that, another way would be tables but how do I read these with other scripts or any other solution?
So the question: How do you make sure exploiters can’t see the “value” of someone’s role but still be able to read it with any script within the game?
The only places in the game explorer were exploiters can’t see anything inside ServerStorage and ServerScriptService. If you wanted to store values, you would probably make a folder for each player in the game, and put the values inside each player’s folder. This will make it so exploiters wont be able to see the values, and you will be able to get values from any script. Including a local one by using some remote functions.
I don’t think there is a reliable solution to this, making it local won’t help because they can still see it as well as being able to see the instructions of how you kept the roles invisible to their eyes. Making it on the server side can cause a few issues as well I believe, depending on which method you use.
ServerStorage and ServerScriptService are the only locations that an exploiter cannot see as they’re completely server-side. That means that this value will not be readable via a LocalScript unless you fired the client with a remote event/function, but again, an exploiter has access to anything client-side, meaning full prevention will be impossible.
You would want to put the values into an array on a Script or store it in ServerscriptService or ServerStorage.
Exploiters only have access to the client, not the server side of games. This means they cannot see code in scripts and cannot see anything in ServerStorage and ServerscriptService.