Eveytime someone joins and just strips all weapons, I have cac and another anti cheat, this shit always happens though. How do I discover who did this and how to fix it? Thanks
Make sure DarkRP is up to date and make sure Player can use toolgun on world props is unchecked
They use cheats though, I have cac and everything
Having an anti-cheat doesn't prevent the execution of scripts it rather detects and punishes it. You should NEVER rely on an anti-cheat or anti-exploit addon to replace good security and coding practice. In the case of this exploit I'm pretty sure having the correct FPP settings will mitigate it, if that doesn't suffice you need to modify stuff.
Can you show me some of the settings that will solve it?
Sounds like you got an backdoor installed?
If you use any leaked addons, Remove them.
they arent leaked all of them are paid on gmodstore )scriptfodder(
Try removing addon after addon until it stops. Then you know what addon causes it.
so i will remove all my essential addons on my 60 player slot server until some cheater joins and uses the script?
You just have a setting turn on in FPP like Rainbow_Cow said
you just need to disable the checkbox in the FPP settings "Player can use toolgun on world props". Allowing players to use the tool gun on world props basically allows them to remove the weapons since they are counted as a world entity.
you have a couple choices on how to deal with this exploit
option 1: disable the remover property,
go into darkrpmodification>lua>darkrpconfig>settings.lua>find "GM.Config.Allowedproperties">set remover to false
option 2: change FPP settings,
go into your server>hold Q>click utilities>under Falco's Prop Protection, click admin settings>
go to toolgun options>uncheck "people can use the tool on world entites"
option 3: create a script that uses SANDBOX/CanProperty
https://github.com/joeyjumper94/revenants_small_scripts/blob/master/lua/autorun/server/sv_nostrip.lua
hook.Add('CanProperty','nostrip',function(ply,property,ent)
if ent and ent:IsValid() and !ent:GetPhysicsObject():IsValid() and !ply:IsAdmin() then
--first 2 checks make sure the entity is valid, 3rd check sees if the ent has no physics object, such as a weapon, 4th check is if the player is not an admin
ply:PrintMessage(HUD_PRINTTALK,'you connot use "'..property..'" on "'..ent:GetClass()..'"!')
return false
end
end)
Okay ill just uncheck toolgun thingy, thanks alot! I hope this solves the problem.
One more thing, is this all I need to change in fpp or is there more I need to restrict in order to block more exploits?
That is the only setting that allows the exploit to work once you change it you should be good
Thank you!
the weapon strip exploit is something related to sandbox and gamemodes based on sandbox, usually it happens when there was an oversight when coding a prop protection addon.
most exploits are from poorly coded addons, one possible sign of faulty code is if it throws lua errors.
i have been talking to the darkrp dev lately, it has change the setting by default ;)
https://files.facepunch.com/forum/upload/249494/b0cc50cc-be67-4def-b395-b8a05454b048/dhghdghghj.PNG
Sorry, you need to Log In to post a reply to this thread.
