Perhaps set up a password system with your RemoteEvents where if the client doesn’t transmit the correct password they get kicked?
Passwording won’t work and it will easily be bypassed.
I’m not the most knowledgeable about scripting/exploiting, but if you just put an if statement checking for the password and an else statement to kick the player?
Exploiters can see what you send in the remote.
1 Like
That’s the second most dumbest thing I’ve heard the server can not magically “override and run the code” that a local script on the client is running, this is just a sad excuse for an “anti exploit”.
yes, its easily bypassed. they can either remote spy or simply copy the key of validation inside localscript.