Common Client-Server mistakes

CodedJer · August 4, 2024, 9:48am

Assuming you meant “anticheat”—you are wrong.

I support using client-side anticheats, however, this is a dumb argument.

You should always use client + server, most exploiters use code made by people who can code and eventually that person who can code will work around it if you have no server sided measures alongside your client ones.

Qariter · August 4, 2024, 9:49am

Exploiters are persistent. Taking a look at Criminality and some games, the script communities there update to fix their scripts in almost near seconds. You’re not gonna shutdown servers every 8h just to do something that’ll get bypassed in mere seconds, while hurting player experience?

0786ideal · August 4, 2024, 9:50am

i want to add that we are talking about anti-cheats which mean mostly security about player abbilities, we don’t take remote security here, so no, money bag drop is not job of anti-cheat but rather safe remotes

CodedJer · August 4, 2024, 9:50am

This is not relevant to what I have posted.

Qariter · August 4, 2024, 9:50am

I ain’t gonna lie, if done perfectly it CAN be okay, but if you see many games most of them dont even bother with clientside anticheat. Your post also has 308 replies, which kinda should say a lot.

0786ideal · August 4, 2024, 9:50am

again anti-cheat here is things such as anti: tp, speed, jump, fly ect.

Qariter · August 4, 2024, 9:51am

On serverside? Yeah, it can be done and it’s much better than clientside anticheat. Just do serverside anticheats if you’re desperate.

CodedJer · August 4, 2024, 9:51am

All of these specific measures should be done on the server, not the client.

0786ideal · August 4, 2024, 9:53am

Still, i can say depends on game, i thought about it overnight and i can say in some games where cheats harm players, but in games like clickers or sandboxes
it’s practically fight with wind

CodedJer · August 4, 2024, 10:04am

That literally won’t work in any anticheat ever unless it is written horribly.

0786ideal · August 4, 2024, 10:20am

tested, when anti-cheat compared 2 positions every 1/4 of second when i teleported player in 1/8 of second it didn’t fired

CodedJer · August 4, 2024, 10:24am

Could you please show me the teleport script and the anti-cheat?

0786ideal · August 4, 2024, 10:52am

-- Tp script, teleports player to position X and then quickly back.

-- Some trigger
local current = Character.PrimaryPart.Position
Character.PrimaryPart.Position = targetPosition -- let's say we want to tp player to coin and back to don't fire anti-cheat
task.wait(1/8)
Character.PrimaryPart.Position = current 

-- Anticheat, max distance is set in settings and given
local last = Character.PrimaryPart.Position
while true do
  local current = Character.PrimaryPart.Position
  if (current - last).Magnitude > MaxDistance then
    print("Player cheated: "..Character.Name)
  end
  
  last = current
  task.wait(1/4)
end

In this scenario, there is chance that coin collection will detect that player is near it and then player teleports back soo he can’t be caught

CodedJer · August 4, 2024, 10:59am

The problem is that you are checking every 1/4 seconds. An actual anti-cheat will only check every second.

You can whitelist server-sided teleports by listening to HumanoidRootPart:GetPropertyChangedSignal("CFrame") and setting the last CFrame to the new CFrame, this will not trigger upon client-sided teleports but will when a server-sided teleportation happens, letting your server-sided scripts teleport players without the anti cheat having a spasm.

0786ideal · August 4, 2024, 11:01am

if there is 1 second of cooldown between checks, still player can teleport super fast and collect coins, then go back and never be caught

CodedJer · August 4, 2024, 11:05am

Thats just not how it works.

0786ideal · August 4, 2024, 11:10am

Then? how it works? if we have touched event or something to detect if player collected coins, 1/2 of second is enough to collect them and go back, also lerp teleport can bypass stuff

I don’t want to argue anymore, i know there can be good anti-cheat and made well can limit use of cheats, still for most of the games there are no need for anti-cheat as it doesn’t harm players, only gives cheater a slight advantage, even then there can be automation cheat that simply allows player to be afk and get items.

Still for me most of the time anti-cheat is useless or simply you don’t need that strong anti-cheat, safe remotes is the most important thing, thanks for discussion anyways

To also agree with you, i will say there are moments when anti-cheat is usefull and moments when it’s useless, bye

Sindious · August 6, 2024, 7:56am

I disagree in some cases you need to access the stamina on the server for things like stamina draining when you jump or a weapon being used,

0786ideal · August 6, 2024, 9:01am

this can be done via remotes., also jumping can be done client-side completely

monkeymario1000 · August 26, 2024, 7:44pm

But what if someone drives a vechicle off a cliff or smth? kindof realistic maybe? ¯_(ツ)_/¯

True you helped me feel less lonely that I’m not the only one that knows about these comon mistakes a lot of people make! :D

Well then you have to rely on Byfron’s Hyperion, and players reporting exploiters. Which is okay, especialy if your just gonna make a single-player game or just a non-competitive game in general, but if your making a competitive game then, you should add anti-cheat, or server authoritive stuff like Chickynoid, or just any defense against exploiters.

So true especialy for someone with bad internet like me.

I’d also like to add:

6. Teleportation:

Remember when moving the Player’s Character you should do it client-side to make sure there’s no delay.
IDK what else to add