Then you would of course make sure the highscore is only accepted if the control data is submitted and valid. Please note the numbers I wrote in the above URL are purely fictional.
In your MMF application you calculate id and control by an algorithm, say:
id is a random number between 1000 and 9999 (you know how to in MMF)
control = (score * id) + (score * 5422) - (id * 1365)
or something like that. this is merely a suggestion.
Then in your highscore.php you calculate back again and if the calculation equals the control number submitted the highscore is real or someone found out to break your algorithm.
The more complex the algorithm is, the harder it is to break. Please note that small calculations will have the least impact on the algorithm and thus add least to the complexity. Like if score and id are number like 1256 and 6980 and the algorithm is: (score * id) + 65 the constant (+65) will not have a big impact on the algorithm and thus make the algorithm appear more linear than: (score * id) * 65. The more nonlinear the algorithm seems the harder it is to breake unless you know what you are doing. Also be careful about dividing as dividing may give decimal numbers and if you do not handle that the same way in MMF and php you may get different results (I dont remember but I believe both MMF and php by default throws away the decimal part, but be careful you do not round of one of the places).
Obviously it is possible break the algorithm but the person will require a number of results (score, id and control) to calculate back and most likely no one bothers to do that unless they really can gain something (like money) which is rarely the case with click games.
Edited by the Author.
If you knew, I would have to kill you...
DaVince This fool just HAD to have a custom rating
Registered 04/09/2004
Points 7998
23rd October, 2004 at 10:14:50 -
Great! Page not found! Of course not!
Why did you make it a link anyway?
Advertisement
Post Reply
Edited by the Author.
