Closed raecyst closed 3 years ago
Confirming. A lua injector that spams net messages for password attempts can bruteforce containers and unlock them within minutes. Adding even a 1 second delay extends that process by such a long time that it stops being viable. More info/context here: http://blackblog.community85.com/index.php/2020/12/28/storages-arent-safe/
Might seem unnecessary, but just making sure it's patched on all versions of NutScript (including Helix)
Thanks, very appreciate
Fixed a container exploit that allowed you to brute force using scripts.
Also adds a config that allows a developer to choose how long they want a user to have to wait.