Hi devs,
Recently as I’m starting to build a game, I am aware of the client-sided exploiting issues, and I became curious of whether sending a massive amount of RemoteEvents within a very short period would crash the Server.
Any help is appreciated!
2 Likes
They can thats why you have to ensure safety checks on the server side
1 Like
And much more like verification/validation and type checking of values
I’m not too sure if Roblox has their own throttling system for RemoteEvents, but its also unlikely that you need to make your own, otherwise I would’ve seen many instances of people preaching this. I’m pretty sure running :FireServer() on a RemoteEvent in a loop with small wait times wouldn’t affect the server much.
But the more important issue is how you’re dealing with RemoteEvent requests on the server. As @Gobironlang mentioned, ensuring that you have proper validation checks (checking if the parameters the player passed are valid), your system architecture is good (you are not passing critical things like data through the RemoteEvents), type checking, checking if the parameters are nil, etc.
If the server throws errors, creates memory leaks, etc, in the OnServerEvent part then at a mass scale this can disrupt the game and/or cause lag.
1 Like
As @voozy_v mentioned you want to prevent memory leaks as its important to manage memory as too much can cause lag as the server is workload is increasing
1 Like
I m pretty sure that even if roblox did nothing, ie made any safe guards that prevents this, the server wont crash out.
It is a type of DoS attack you are mentioning, but DoS isnt that powerfull nowadays due to more computing power availability. If someone would want to crash a server, they would have to send a DDoS, not just DoS. And in this secnario, adding a lot of bot players and then crashing it, but then it is not possible to do that as that might require up to a thousands bots while most of the games have atmost 100 player slots per person.
And even if you take as that, they would have to send gigatons of data to overwhelm the server. And that would be just obvious an roblox would just ban the account.
And about sending data in a very short amount of time, that happens all the time, most games, including roblox send data to server to maintain a connection, measure ping, send game data such as own players position etc or send data per frame.
So in conclusion, no sending data very frequently wont take down the server cuz that happens all the time, second of all, DoSing or DDoSing is highly illegal in most countries, so practically, legally, techinically, theroitically, hypothetically, nvm not hypothetically be it would be just a NO.
2 Likes
Idk why you think you’d need an account to DDoS a server.
I don’t see why hackers would care about that.
I’m fairly sure you could DDoS a game Server, probably doesn’t even require a lot of compute when you do it on peak times where Roblox’s servers are already stressed out quite a bit.
But:
- as a game dev, you can’t do anything about that
- DDoS has to be actively performed to keep a server down
- Roblox would just spin up a new virtual game server if yours crashes
1 Like
other people answered you already, though exploiters can send big strings as remote event arguments to lag your game (if you mess with the string enough)
There are a lot of servers including virtual ones, using public ip for each server would be costly. Most services, even outside of roblox, have a proxy server, assuming there is 1 proxy server for every 15 actual servers. If one would only want to take only a single server, they would have to connect via an account so the proxy server connects them to that server.
OP isnt concerned about hackers taking down robloxs datacenters, but their own game server alloted to them. So therefore.
After all, main point is, it is a thing that roblox be concerned about, the the devs.
Yeah, that just means you need the actual ip adress of the server that’s hosting the game server, and then the port on which the game server is running. The rest depends on implementation.
It’s possible you can’t access the game server directly, then indeed you cannot. But it’s also entirely possible Roblox just forwards traffic of a specific port to a specific server. Then you can.
My point is: You can’t just say it’s not possible.
What are you talking about? I don’t get it. I said hackers don’t care about things being illegal. And that last part is just incoherent.
I didnt actually meant to say that its impossible, but most likely not possible.
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.