Hello, I have recently ran into a certain exploit that I want to stop from being a possibility.
So I went looking for it myself and luckily I was able to find it. Any suggestions on what I can do to prevent this?
I know it’s risky to post this on the DeveloperForum but I want to stop this script and any others that can be injected to ruin other peoples fun.
What this script does…
It consistently sends messages through the ChatSystem Event and sends a lag storm through.
The purpose of this script.
To lag and or crash servers for their own amusement.
My questions…
Is it possible to stop an injector, such as making it so it can’t inject anything?
Is there a way I can prevent these types of scripts from being entered?
The script.
This script goes on for lines among lines… I’ve shortened this entirely.
This is able to be injected into any game I believe, not entirely sure… i’m not an exploiter so I don’t know how these injectors work.
Any help is always appreciated…
I believe when the message request is sent, it’s filtered and shortened to fit the character limit. There is also a flood limit, so it shouldn’t cause much harm (unless i’m wrong).
Exploiters most likely have an injector which is only client sided, because you can’t access server scripts from a client. I think the script would be parented to nil (because who would have an exploit script in the starter gui?)
Unusual. I would see how many times a player sends a message in under 1-2 seconds (or see how many times a message is sent in under a second). If it’s over some amount like 10 or 20, kick the player.
Can’t reveal where I found it as I don’t want others to find it but my one friend verified that this is what people use to lag servers. It’s in a lua file so yeah.
Working exploits for any Roblox system should be messaged privately to this group. Since this exploit harms the entire server and bypasses the Roblox default chat safety features, this must be reported immediately.
I’d also suggest removing the exploit script from your post to avoid other malicious players from taking advantage of the flaw.
Kindly message all the details to this group, including the source and the affected systems.
Okay. Here’s a good solution:
Make a .chatted function seeing if a message a player sent is over the limit of let’s say 500. If it is over that limit, kick the player. Should be very simple.