Hendrickson

So how do I set a buy one get one free using your script I jsut brought? Thanks

Thanks, tried it but no luck., Seems a hard bug to stop being exploit :(

Thanks, I didn't see there where updates this month! Edit: Download the new update from my account, Doesn't seem to find the issue? attacklost.php doesn't mention the cheaters don't get anywhere in an if statement? $war = $db->fetch_row($warq); $db->query( "UPDATE `gangs` SET `gangRESPECT` = `gangRESPECT` + 1 WHERE `gangID` = {$r['gang']}"); $db->query( "UPDATE `gangs` SET `gangRESPECT` = `gangRESPECT` - 1 WHERE `gangID` = {$ir['gang']}"); echo "<br />You lost 1 respect for your gang!"; } $db->free_result($warq); }

I've found a bug in the script, well at least mine. Where a player looses a fight and then respect points for their gang. Well if the user were to refresh the page they can give away more respect points to the winning gang. So its a way for Gangs to get cheap respect points. I'm lost at how to stop stop this. Using sessions to stop a page refresh is not the answer.   Not sure if using the below would work.   $_GET['userid']=abs((int) $_GET['userid']); if(($_SESSION['userid'] == $r['userid']) || $r['userid']<100) { die ("Don't refresh the page please"); }   Here is my attacklost.php below:   <?php $atkpage=1; include "globals.php"; $_GET['ID']==abs((int) $_GET['ID']); $_SESSION['attacking']=0; $_SESSION['attacklost']=0; $od=$db->query("SELECT * FROM users WHERE userid={$_GET['ID']}"); if($db->num_rows($od)) { $r=$db->fetch_row($od); print "You lost to {$r['username']}"; $expgain=abs(($ir['level']-$r['level'])^3); $expgainp=$expgain/$ir['exp_needed']*50; print " and lost $expgainp% EXP!"; $db->query("UPDATE users SET exp=exp-$expgain, attacking=0 WHERE userid=$userid"); $db->query("UPDATE users SET exp=0 WHERE exp<0"); $msg="{$ir['username']} Attacked you and lost!"; sms_send($msg,$_GET['ID']); event_add($r['userid'],"<a href='viewuser.php?u=$userid'>{$ir['username']}</a> attacked you and lost.",$c); $atklog=mysql_escape_string($_SESSION['attacklog']); $db->query("INSERT INTO attacklogs VALUES('',$userid,{$_GET['ID']},'lost',unix_timestamp(),0,'$atklog');"); $warq=$db->query("SELECT * FROM gangwars WHERE (warDECLARER={$ir['gang']} AND warDECLARED={$r['gang']}) OR (warDECLARED={$ir['gang']} AND warDECLARER={$r['gang']})"); if ($db->num_rows($warq) > 0) { $war=$db->fetch_row($warq); $db->query("UPDATE gangs SET gangRESPECT=gangRESPECT+1 WHERE gangID={$r['gang']}"); $db->query("UPDATE gangs SET gangRESPECT=gangRESPECT-1 WHERE gangID={$ir['gang']}"); print "<br />You lost 1 respect for your gang!"; } print"<a data-role='button' href='explore.php'>Back to Town</a>"; } else { print "You lost to Mr. Non-existant! =O"; } $h->endpage(); ?>

Ok, ive tested it countless times now and 100% working .Its either players talking #@$! or server lag. But i'm thinking its players trying to scam others. Thanks for your help

Ok, ive tested it countless times now and 100% working .Its either players talking #@$! or server lag. But i'm thinking its players trying to scam others. Thanks for your help

Thanks I did think the players were taking the **** but now a few others claiim the same issue. The server load has high when this happened. And the event is logged after the queries so I dont know. Its been working fine in my tests. Could server load really do that?   $db->query("UPDATE users SET money=money-{$_POST['money']} WHERE userid=$userid"); $db->query("UPDATE users SET money=money+{$_POST['money']} WHERE userid={$_GET['ID']}"); print "You sent \${$_POST['money']} to ID {$_GET['ID']}."; event_add($_GET['ID'],"You received \${$_POST['money']} from {$ir['username']}.",$c); $msg="You received \${$_POST['money']} from {$ir['username']}."; sms_send($msg,$_GET['ID']); $it=$db->query("SELECT u.*,us.* FROM users u LEFT JOIN userstats us ON u.userid=us.userid WHERE u.userid={$_GET['ID']}"); $er=$db->fetch_row($it); $db->query("INSERT INTO cashxferlogs VALUES ('', $userid, {$_GET['ID']}, {$_POST['money']}, unix_timestamp(), '{$ir['lastip']}', '{$er['lastip']}')"); }

Has anyone struck an issue when sometime not always, but bank money is transferred from one user to the other they receive the event but not the cash. Its even logged in the xfer logs.. It seems to happen randomly and I can't figure it out....Puzzling, would server load have something to do with this?

Yes of course no foolproof way, but this would help show any players that were doing crimes and crazy rates. Make detecting a possible cheat much easier and remove some guess work. Imagine: players doing 1000s of crimes a minute in there whole time in the game. You know they must cheat then. Well in my game at least. Any one what a job to code this :) as per first post ? p.s Lithium your alive!

Yes bookmarks and refreshing etc. But still Its a way to detect a user that had a crazy amount of crimes done per second or minute. Not foolproof no. But a way to look at who could be cheating and investigate. Anyone willing to code this for me? Detecting clicks then throw a captcha is an idea, but what about bookmarking and refreshing. No clicks there.

I'm looking for someone to code me a mod. Its a bot detector, my idea is simple using the users days, and crimes done. Both in user table "daysold" and "crimes" to work out their crimes done per minute or second. And based on this info report if the user is cheating or not to the admin with a ban link.   Crimes / Days old / 86400 = crimes per second crimes / days / 1440 = crimes per minute For example so the scrip was run and reported. User1 : .7 crimes per minute | fedjail User2: 90.4 crimes per minute | fedjail Clearly user two is running a marco! Will pay for this

Ok thanks for the pm's I have someone working on this now for me thanks.

Hi I'm looking for someone to code me a revised item market. The idea is since the item market can full up with junk. To have a time limit of 5 days, once this time limit is reached, the item is then pulled from the item market and returned to the user. I think all MCCode games could do with this feature. Before asking note that NO cpanel,ftp or mysql access will be given out. However I can test and run an msq updates need for you for testing. The mod would require a new sql field for the item, a time setting of sorts. A new cron line for the day cron to update the item days and then remove the item from the market and place it back into the user inventory. I would prefer an event also given to the player when his/her item doesn't sell. Paying $25 usd for this simple mod for an expert.

Hi, I'm paying for the following to be modded into my attack.php script.   A way of making sure only one player can attack another at the same time. Not have two players attacking one. An attack limit that would mean a player can online attack a person that is online once every 5 minutes. (This is to stop repeat attacking leaving players stuck in hospital, where they take morphine just to be hit over and over again)   Thanks

Ok how exactly does one go about that?

OK so I'm trying to code in a small edit that will check if a player is attacking. And if so, Make them loose if they go to their inventory. Often players play unfair and take morphine to boost health and win. Where the other player can't. I'm sure others will want this small mod. So far I've come up with:   if($_SESSION['attacking']=0) { print "You lost the fight you were just in! Only losers try take morphine during a fight. Next time fight fair!<br />"; print "You lost to {$r['username']}"; $expgain=abs(($ir['level']-$r['level'])^3); $expgainp=$expgain/$ir['exp_needed']*100; print " and lost $expgainp% EXP!"; $db->query("UPDATE users SET exp=exp-$expgain, attacking=0 WHERE userid=$userid"); $db->query("UPDATE users SET exp=0 WHERE exp<0"); $db->query("UPDATE users SET hospital=5, hospreason='Tried to take morphine in a fight.'"); }   But its not working....Where am I going wrong here? (As you can tell i'm learning php) I think the if($_SESSION['attacking']=0) is where I'm going wrong.

And also give the user s print, you have already attacked this user. Please wait 5 minutes and try again. Can anyone code this in for me? Please pm me if you can and the cost. Edit: Canibalstew please pm me I can for some reason pm you!

yeah i just found the fix link to the action as you said. 3 minutes before you posted this lol

Fixed..it thanks

Check the access logs, tedious task that is. But then what would you look for that would be a dead give away? (Apart from the stats)

I'm reading there are these plug-in for firefox and programs that can read captcha. How exactly would one track a bot? Auto clickers that can read screens. Read captcha and enter the text. Got me worried :confused: Is there an easy way to bust a autoclicker / bot user?

Ok got an issue with the standard forums.php. For some reason my forum mods can remove , pin or lock threads. I can. I've found the code that works with the if user level = > 1 they should have right but it seems it doesn't work? I've been trying to figure it ok. if($ir['user_level'] > 1 seems ok to me. As the players are level one anyone greater is a mod, assistant or admin etc.   echo "<br />"; if($ir['user_level'] > 1) { echo "<form action='forums.php?act=move&topic=".$_GET['viewtopic']."' method='post'><strong>Move topic to:</strong> ".forum_dropdown($c, 'forum', -1)."<input type='submit' value='Move' /></form><br /> <a href='forums.php?act=pin&topic=".$_GET['viewtopic']."'><img src='/imageicons/book_go.png' alt='Pin/Unpin Topic' title='Pin/Unpin Topic' /></a><a href='forums.php?act=lock&topic=".$_GET['viewtopic']."'><img src='/imageicons/key.png' alt='Lock/Unlock Topic' title='Lock/Unlock Topic' /></a><a href='forums.php?act=deletopic&topic=".$_GET['viewtopic']."'><img src='/imageicons/delete.png' alt='Delete Topic' title='Delete Topic' /></a><br />"; }   Since no help is free here and people bitch if I post something like this, I will pay $5 (paypal) for the fix so my staff can mod the forums.....

Thanks. I'm having a look at it.

I remember a game I saw a whiel back that had a car racing mod. Can anyone point me too it? Free or paid, just curious. I have searched here but found nothing.

I'm always getting timeout errors. Sounds like its overloaded..