Roll20 uses cookies to improve your experience on our site. Cookies enable you to enjoy certain features, social sharing functionality, and tailor message and display ads to your interests on our site and others. They also help us understand how our site is being used. By continuing to use our site, you consent to our use of cookies. Update your cookie preferences .
×
Create a free account

Players Able to Delay hack - stall hack Roll20 server and cheat on their dice rolls.

I made this video about a Cheater I caught in my game .&nbsp; <a href="https://youtu.be/lu7r3nSBbg4" rel="nofollow">https://youtu.be/lu7r3nSBbg4</a> &nbsp; &nbsp;Now I dont trust roll20 and I think all my slow rolling players are cheating. After 3 years of being a gm I had never heard of this type of hacking the roll20 server and was never warned about it by roll20 or what to look for. Is anything being done about it?&nbsp;
A player who cheats is a player that doesn't belong in my game. That needs to be made clear at session "0". If I can prove (not just suspect) that someone is cheating, they would get one warning. No three strikes; second offense and out they go.
1714428202

Edited 1714428279
If you hover the mouse over their die roll and the tooltip has the little atom symbol next to it, that means the roll used Roll20's quantum roll server . If you don't see the symbol, perhaps you shouldn't trust the roll.
1714428739

Edited 1714428909
vÍnce
Pro
Sheet Author
The hack appears to use roll20's quantum roller but you only post the roll you want.&nbsp; It IS a legit roll, just not the ONLY roll the cheater made. ;-(
&nbsp; Jim r. it does not say that for most of my macros , just says "API or players ...."
Ah OK, I didn't see the symbol in the tooltips in the video.
My idea is it needs a timer built into it so the roll goes invalid after 4 seconds , that way if it was delayed the server would kick the result and throw up a warning in the chat instead. it would have to be long enough to allow connection accross the globe but no long enough for someone to see the packet info.&nbsp;
The trouble is the same no matter what platform or application; it's always an arms race between hackers and defenses. Also, increased security often results in decreased usability. If someone wants to use cheat codes in single player game, that's their choice, but in a multiplyer environment it's just disrespectful and selfish. Bad actors (cheaters, thieves, etc.) ruin it for everyone. Kick them out, ban them, and show evidence when you need to call them out.&nbsp;