Disable PM's from login for non-P2P/Classic
 

Recently it's been abused by phishers and anti-Graalians as a way to spam every person on every server with PM's linking them to "Graal hacks" and whatnot. I propose disabling PM's from the login server fom un-upgraded accounts to prevent this. If they try to log on playerworlds, we can simply ban them (unlike the login server, where only globals can deal with them).

This idea is way too logical.

Global pm pass purchased from gelat shop 3 bucks a pop. The graalonline way

monthly ;)

Perhaps prevent global PMs to players on servers you are banned on. Not a full solution but less punishing towards normal players.

That doesn't fix it though. What if no GP's are on to ban the account when it starts spamming players? What stops them from simply creating a new account and doing it again?

I'd like this plus not allowing non-upgraders. A lot of the times they're using upgraded accounts, so it would help a lot if PRs could ban them on Era to prevent it.

Ideally allow PMs to players with RC (staff) for non-upgraded players, but I think this is probably hard for Stefan.

Getting any type of seemingly basic update seems to be hard. :(

So we have players using basic trainers, which is no big deal because they get banned in seconds and are only spawning bombs or walking on the OSL wall. We now have someone lagging up everyone's clients to the point where the Graal client becomes unresponsive. Said person is now crashing the place with too many bomb spams. How nice, and he creates accounts in seconds which means everytime we ban him he just comes back after half a minute.

Bump because this is getting ridiculous.

Fogles is a lonely boy, he needs some attention. Graal hackers used to be less sloppy and more dominant.

Stefan just replied to my email:

This has become a major problem on Zodiac, particular because the hacker will go into the OSL and crash everyone. We have a script that removes the bombs but it still generates too many and crashes the client.

We need a server update to fix this problem as well. Preferably a server option, pretty much every server on the login server-list except for UN has a classic bomb script.

A maximum bombs per second threshold (if they go they're disconnected and logged) to prevent putbomb/putexplosion spam hacking needs to be implemented. A server option like:

putbombthreshold=5

Classic features like putbomb, putexplosion have no place on custom system based servers like Zodiac and Era. So if you set it to 0 it would just disconnect them if they manage to create a bomb.

Same for disabling the default shootarrow(dir); type projectiles.

There was already a server option called limitfreeplayers2 which disabled default projectiles and bombs for trial players, but this option was disabled because it also prevented trials using the shoot(); function.

I noticed this was added to serveroptions list on Graal Bible:

http://www.graal.net/index.php/Server_options

Funnily enough putbombenabled apparently existed already:

http://forums.graalonline.com/forums...3&postcount=24