19 Aug 11, 10:26PM
(19 Aug 11, 09:03PM)FleshyPod Wrote: Hashed checksum of client binary is compared with checksum of the server. If both the same, client connects, if not, it's kicked. Simple and idiot proof.
This is completely wrong.
I suggested this a long time ago (or something similar), and was told it was a bad idea (which was true). Here's why: since the client code is already modified, nothing is stopping them from changing the checksum sent back to the server. After taking the time to design an aimbot, changing one int value is really not very much work.
Any real anti-cheat needs to happen on the server side. Since the client can literally do whatever they want, its up to the server to detect and deal with cheats (and hence we have blacklists and anti-cheat on servers).