MAC Address is Unique to each and every NIC ( network port ) like a finger print .. PROBLEM is your router is showing its mac address if it breaks and or gets swapped out so does your mac address so that's bad idea to use mac address then besides i bet you more than 90% of players don't even know how or where and what is a mac address
Why you need so harsh meassures?
Simple /voteban would fix the hacker problem.
Hackers tend to boost their ego with multiple click to kill blue msgs, if the said people voteban the hacker after a while the hackers wont find it funny anymore to be in the server between 1 and 2 minutes and would get bored.
The votebanned chars should stay banned limited time lets say 1-2 days till the admins check them and unbann them or delete them. Simple as cake.
(10-09-2013, 10:51 AM)Knjaz Wrote: Official faction players that are often accused of elitism, never deploy them and have those weird, immersion killing "fair fight/dueling" suicidal hobbies. (yes, i've seen enough of those lolduels, where house military with overwhelming force on the field willingly loses a pilot in a duel. ffs.)
(09-08-2013, 08:56 AM)RSAMaximus Wrote: do that and you will see a increase of player bans due to groups of friends abusing the system for there own gain ...
Not if you punish very harsh the people than vote ban people with no reason...
Okay, this is painful. Let's get a few things straight.
1. MAC Addresses are unique to a single NIC: TRUE.
2. MAC Addresses are necessarily unique to communications from a single machine: FALSE.
3. IP Addresses cannot be spoofed or manipulated: FALSE.
Look, if you want to implement a whitelist you need to recognize that it's not an absolute defense. Smart people (or skids who know how to find a couple of handy tools which will remain unnamed) can get around whatever you build. If you can keep out 99.9% of attackers, that's a good day.
To feed hungry's laser focus on implementation, I suggest the following: Write a short addition to your firewall or other interposing device (Heck, even FL Server if it has a means to do this) which matches sha1(concat([User's IP], [User's MAC], [User's FL Account ID])) against a value stored in the whitelist implementation of your choice (I hope you have a pretty badass firewall.)
And that'd work pretty well, but the big failure point is that new users would have to apply for admission to the server. No doubt this would have severe ramifications for the playerbase size. But hey, at least everybody online would be a Diehard FL RP fan, right?