vlekje513
|
  |
| Joined: 28 Dec 2010 |
| Total Posts: 9057 |
|
|
| 13 Dec 2016 03:50 AM |
How would I prevent a hacker to steal any of my scripts?
Server-side and Client-side (if possible). |
|
|
| Report Abuse |
|
|
vat21s
|
  |
| Joined: 07 Jun 2010 |
| Total Posts: 2508 |
|
| |
|
|
| 13 Dec 2016 04:11 AM |
Put everything in a module script and then require it. Although it isn't possible on the client side.
But why would you even want to hide your scripts from hackers? |
|
|
| Report Abuse |
|
|
cntkillme
|
  |
| Joined: 07 Apr 2008 |
| Total Posts: 44956 |
|
|
| 13 Dec 2016 04:24 AM |
It's (practically) impossible to steal server-sided scripts. You can't do it from in-game, but your client-sided scripts are somewhat possible to steal from in-game.
To my understanding. the source of LocalScripts are no longer replicated to the client. The server compiles the source and replicates the bytecode to the client to load. What this means is it's impossible to get the actual source code (comments are lost and the exact method on how you did something is lost) but it is possible to decompile that bytecode back into Lua. Because debugdata is not lost, the name of local variables could still theoretically be known as well as the line they were defined at among other things.
I'm under the assumption that current in-game LocalScript source "stealers" expect a viable reference within the DataModel. Theoretically this means you can put your code in a ModuleScript, require it, then create a reference to it via a local in another script and set the Parent of the ModuleScript to nil. Although realistically you should assume that no matter what you do, they client can still get it.
|
|
|
| Report Abuse |
|
|
HlCOM
|
  |
| Joined: 29 Mar 2009 |
| Total Posts: 3332 |
|
|
| 13 Dec 2016 05:12 AM |
| http://wiki.roblox.com/index.php?title=API:Class/ServerScriptService |
|
|
| Report Abuse |
|
|
vlekje513
|
  |
| Joined: 28 Dec 2010 |
| Total Posts: 9057 |
|
|
| 13 Dec 2016 06:33 AM |
Thanks, a lot of helpful responses.
Server is secure. Client should be secure, but should be assumed to not be secure. |
|
|
| Report Abuse |
|
|
Cheater
|
  |
| Joined: 29 Jun 2007 |
| Total Posts: 5258 |
|
|
| 13 Dec 2016 07:34 AM |
| I came up with a similar question a few days back where people were argueing about my ideas to prevent people from stealing scripts. It resulted in my idea that any localscript is stealable and any serverscript aint as long as the serverscript is in either SS or SSS. |
|
|
| Report Abuse |
|
|
Rerumu
|
  |
| Joined: 11 Oct 2014 |
| Total Posts: 950 |
|
|
| 13 Dec 2016 08:19 AM |
Create LocalScript Parent RemoteEvent to it Have LocalScript fire the event once done Server-side :Destroy() it after parenting to SS.
Assuming you can set up a way from that script to load module scripts via decryption or something, your sources are safe. |
|
|
| Report Abuse |
|
|
|
| 13 Dec 2016 08:29 AM |
| You cant just enable FE and expect all your scripts to work. Search the wiki |
|
|
| Report Abuse |
|
|
Rerumu
|
  |
| Joined: 11 Oct 2014 |
| Total Posts: 950 |
|
|
| 13 Dec 2016 08:29 AM |
| I beg to differ if you're me. |
|
|
| Report Abuse |
|
|
|
| 13 Dec 2016 08:32 AM |
"Server is secure. Client should be secure, but should be assumed to not be secure."
No, the server should be secure but who really knows with Roblox, and the client is not secure and should assumed to not be secure. |
|
|
| Report Abuse |
|
|
|
| 13 Dec 2016 10:36 AM |
| If you don't want something stolen, put it on the server. |
|
|
| Report Abuse |
|
|