short answer: the only way to make a game secure is playing all the logic on the server-side and using the client-side just for rendering.
1 - pass each action in real-time to the server. 2 - server validate action and returns the result. 3 - client-side renders result. long answer: http://stackoverflow.com/questions/73947/what-is-the-best-way-to-stop-people-hacking-the-php-based-highscore-table-of-a-f/74841#74841 good software to test "if user can intercept" the information you are sending to the server (he always can) : http://www.charlesproxy.com/ - charles is an amazing debugging tool for any sorts of projects, highly recommended... PS: "In Soviet Russia you don't send the score to the server, the server sends the score to you." :P -- Miller Medeiros | blog.millermedeiros.com -- To view archived discussions from the original JSMentors Mailman list: http://www.mail-archive.com/[email protected]/ To search via a non-Google archive, visit here: http://www.mail-archive.com/[email protected]/ To unsubscribe from this group, send email to [email protected]
