I have a module script which is very important to the game’s inventory, but I need both client and server to be able to call the functions inside it. If I put the module script in the workspace or replicated storage, would it be at risk for exploiters to access and call these functions?
From what I understand, exploiters have access to anything that is replicated to the client. So, yes, they would be able to call these functions and see the code inside.
If something needs to be shared to both clients and the server, but could be exploited by the clients, that seems to me like a code management issue. Maybe you could identify what parts could be exploited and move them to strictly server-side, and include sanity checks along the way.
2 Likes
Sounds like a job for RemoteEvents.
Yea remote events will definitely work, I don’t trust remote events and only connect the server when I have to, let’s say for example detecting clicks, I will detect clicks on the server rather than the client so I won’t have to fire a remote event, if I want to have button animations I will either fire it from the server so it’s never accessible from the client.
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.