xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 09 Jul 2012 06:13 PM |
okay, through multiple sources we found out that the exploit kills all localscripts; which inturn kills the .SelectionChanged protection.
1. have a server script insert a value in a localscript in the backpack (basicly pingining the client).
2. have the local script respond to that value by removing the value from itself. you can use tick() to find out how long it takes for the responce (ogm easi ping calculator).
3. so, if the local script is destroyed, it won't give a responce.
so have this:
local lol = Instance.new("IntValue") lol.Name = "Ping" lol.Parent = lol, the localscript
Spawn(function() wait(4) if lol.Parent ~= nil then lol, insert a crash script in the player end end)
four seconds is MORE than enough time for the client to respond. if the person is not exploiting and his/her ping is that bad, they should be kicked anyway because that will make the game nearly unplayable.
just don't do any DP bans, or it will result in unfair bans if someone's internet/comp is really bad. |
|
|
| Report Abuse |
|
|
Merely
|
  |
| Joined: 07 Dec 2010 |
| Total Posts: 17266 |
|
|
| 09 Jul 2012 06:17 PM |
| This is great because it means that the exploiter has a good 4 seconds to crash the server. |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 09 Jul 2012 06:19 PM |
@Merely
you can even reduce it to two seconds since that long of a ping is still insane.
also, i have heard that exploiters need to insert a localscript in their backpack, type the script in, and then run it. they can't remove anything from workspace since roblox denies it.
so good like doing that in even 7 seconds. |
|
|
| Report Abuse |
|
|
|
| 09 Jul 2012 06:21 PM |
Using a little AutoHotKey magic you can inject the DLL and insert a script which deletes all other scripts in a good 2 - 2 1/2 seconds.
~ Do you want fries with that? ~ |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 09 Jul 2012 06:22 PM |
@merely
http://www.roblox.com/Roblox-Rally-2011-Top-Hat-item?id=57476524
go buy that hat instead.
@tech
take note that most exploiters are ill-educated 12 year olds and have no idea what you just said. |
|
|
| Report Abuse |
|
|
|
| 09 Jul 2012 06:22 PM |
@xSIXx
Inserting into PlayerGui is also good, although I've found that it gets removed if you die. So the reasonable thing to do would be to make the script assign itself to Workspace.
~ Do you want fries with that? ~ |
|
|
| Report Abuse |
|
|
|
| 09 Jul 2012 06:25 PM |
@xSIXx
Also take note that most 12 year old exploiters know how to use Google, and it won't take long to search "How to exploit ROBLOX in less than 4 seconds". Put a compiled AutoHotKey exe on FireyMedia and you'll have people breaking in faster than the server can load their character.
~ Do you want fries with that? ~ |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 09 Jul 2012 06:30 PM |
@tech
Backpack.ChildAdded:connect()
umad? |
|
|
| Report Abuse |
|
|
| |
|
|
| 09 Jul 2012 06:43 PM |
| Okay. I think xSIXx has a real good point. Anyway there are so many new ways they can find a new "Exploit" (More like glitch). So keep a look for new appearances. |
|
|
| Report Abuse |
|
|
| |
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 09 Jul 2012 07:05 PM |
| dang, i wonder if i should DP ban for Backpack.ChildAdded... what if i forget one thing in the filter qq. |
|
|
| Report Abuse |
|
|
LPGhatguy
|
  |
 |
| Joined: 27 Jun 2008 |
| Total Posts: 4725 |
|
|
| 09 Jul 2012 07:10 PM |
@xSIXx Or just don't add things to the backpack? In my current framework I only add a single object to the backpack, and then practically scrap it. |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 09 Jul 2012 07:35 PM |
@LP
because in my game i need a localscript in the backpack and GUI's in the playergui.
i don't know about you. |
|
|
| Report Abuse |
|
|
|
| 09 Jul 2012 07:39 PM |
Dev (Mael) How is the pinging useful?
Lucien (LPGhatguy) You can know their connection speed to the server. You can prioritize people who have at least okay internet.
And compensate for their awful internet.
And you can use it to determine if they're likely to disconnect and save their DP data.
And you can use it to determine whether or not they nerfed LocalScripts on their system and kill them. |
|
|
| Report Abuse |
|
|
lombardo2
|
  |
| Joined: 30 Nov 2008 |
| Total Posts: 1604 |
|
|
| 09 Jul 2012 07:49 PM |
| DescendantAdded works better |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 10 Jul 2012 08:10 AM |
| stravat noob posted what i said on the other thread. |
|
|
| Report Abuse |
|
|
|
| 10 Jul 2012 08:42 AM |
| But what if I disable the script and remove the ping automatically based upon script hash? |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 10 Jul 2012 11:19 AM |
@popin
but what if all the mindless 12 year-olds learn how to do that and understand what you just said? ogm my place is ruind. |
|
|
| Report Abuse |
|
|
Ozzypig
|
  |
| Joined: 27 Mar 2008 |
| Total Posts: 4906 |
|
|
| 10 Jul 2012 11:19 AM |
Scripts run even when removed, so trolololol to hackers, you can do this:
script.Parent = nil function crash() Instance.new("ManualSurfaceJointInstance") while true do end end game:GetService("Selection").SelectionChanged:connect(crash)
Not only that, but many other anti-hacking scripts can do that as well. You don't even need to put the script in the starter pack since you can just have another script remove itself and act as a faux starterpack. |
|
|
| Report Abuse |
|
|
xSIXx
|
  |
| Joined: 06 Aug 2010 |
| Total Posts: 9202 |
|
|
| 10 Jul 2012 11:20 AM |
@ozzy
but scriptcontext.ScriptsDisabled kills ALL the local scripts, parented or not.
n00b |
|
|
| Report Abuse |
|
|
oxcool1
|
  |
| Joined: 05 Nov 2009 |
| Total Posts: 15444 |
|
| |
|
|
| 10 Jul 2012 11:23 AM |
@Ozzy
The partially fixed script.Parent = nil. You hav--- orite, no tellin' |
|
|
| Report Abuse |
|
|
| |
|
Quenty
|
  |
| Joined: 03 Sep 2009 |
| Total Posts: 9316 |
|
|
| 10 Jul 2012 12:56 PM |
Can I claim minimal effort for coming up with this idea?
|
|
|
| Report Abuse |
|
|