[Glitch] Enormous exploit.

[zeraniti]

Hello,

Im zeraniti and I discovered a huge glitch in the no / command, combined with xauth.

Since, when ur not logged in u can still do the no slash commands, they arent disabled on xauth.

And since you guys made the factions override anything, you guys als overrided xauth so now normal ppl can go onto an admins account, and disband factions without logging in, please fix this.

Yours sincerely zeraniti

[Rijor]

There IS a config option to force players to use / commands. Sounds like it might not be a bad idea in your case.

/f config allowNoSlashCommand false

[ghost]

The allowNoShashCommand boolean is true by default. A lot of people running cracked servers don't know about this glitch and it's dreadfully annoying when factions corrupts itself somehow and then turns to this default value so allowing bad guys to mess with peoples bases.

I call for this value to be false by default. (will look in the jar for this default config file anyway)

[Brettflan]

I've never been a big fan of the slashless commands either, but to be honest, I also don't care all that much about people with cracked servers having problems.

[ghost]

It's okay pal, you don't need to worry anymore. Most people with cracked servers switched to Towny just now.

MySQL support, better chat handling, awesome block regeneration features, and the strings are 100% customisable! Sure it required a lot more configuration, and the default chat lines are ugly, but it's sure worth it because there's none of that noslash crap! :D

(now... we need to compile xauth with the new chat events...)

[Brettflan]

Sweet, maybe now they'll stop posting asking for the solution which has already been provided so many times.

[ghost]

Switching to Towny isn't a solution, it's an alternative.