So i love how when i try to make FiveM devs aware of issues because i know what is upcoming i get muted by one of the max intelligent moderators. like lol… "everyone always says “don’t download shit resources” and the next day FiveM gets turned into a shit resource apparently. work on code that won’t allow automatic script dumping
Uh what? any context?
Wtf is this supposed to mean?
Figure it out lol
Well if you are not going to provide any information then this is going to be closed too
Oh my god , provide me information on why this should be closed
There are no guidelines that say i need to explain every little thing to you?
Because you are randomly open a negative topic about something which i never heard of “mysql defender”, and you are providing no context
It isn’t negative, it is informational, and if you haven’t heard of it then my mistake i will fix it before you attack me
Ah the “fix resource decryption” discussion, a element talked about this before… basicly it’s impossible to 100% protect a file which is send to the client.
By who? Yes, everyone does say that because it’s true.
So explain how the “Ham mafia” did that to the fivem menus huh?
Good question… could have been couple of ways
- Weak RCON password
- Unsafe events (sh*t resources)
- NUI exploits (sh*t resources)
It’s like the web, you have the browser where stuff like javascript and html runs in (client resources) everyone in there can modify and do everything they want. That’s why the golden rule is… don’t trust the client
It’s the same with fivem, regular people might not be able to like literally execute events and change stuff like in the browser but you still shouldn’t trust the client
3 Likes
Fake servers that led to a glitch with the sorting.
I mean that is true but when it comes to that many servers…
All fake, what can I say.
also fix your resources.
Bud… nothing is fake lmao, i can guarantee if you have a server i’m sure you went through the same error
Hi, let me explain why this is a fruitless task to do, and what other ways you, as a server owner, can mitigate this issue.
First of all, let’s start out with why it’s impossible to completely prevent script dumping. Client scripts must be executed by the computer they’re on. That means at some level, no matter how low, the computer must be able to interpret the instructions of the script in order to execute the instructions. This is why you can see “source code” on websites and other client-sided resources. There is no way to prevent this, and this issue occurs in games such as Garry’s Mod, CS:GO, ARMA, etc., which utilize client-side scripts.
Now, even though it’s impossible to 100% prevent this issue from happening, there are ways you can mitigate it. The easiest one is moving as much computation to the server side. This means the majority of your content would be dynamically served as-is from the server, making the functionality of the client heavily dependent on responses from the server. This would make it to independently utilize the resource by itself. You can also look into obfuscation to slow down analysis of the resource.
However, with those options, security through obscurity isn’t foolproof, and with enough effort, it is able to be circumvented.
As for a “MySQL defender”, I have no clue what you’re referring to, and that doesn’t make any sense.
If you want to improve the security of your server, audit the resources you download before using them, and ensure that they cannot be used to exploit your server.
4 Likes
Thank you, sir
This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.