Quote:
Originally Posted by jonnzus
I think you should add some check sum or password to http post. I think it's pretty easy to flood database with small script..
|
A checksum or password will be pointless since it's an open source plugin. Anyone could copy it, except I use a constant random value that must be changed manually by every user.
I could check the IP from where the request came so I would only accept when it came from the gameserver IP. I will add it.
Btw if you look at chat.php there is a small script to prevent hyper-floding.
__________________