RHfront

@Dedmen Thanks for your help. After whitelisting sideChat (which was required if I wanted the server to instruct a client to receive a sidechat [another test was moveInCargo]), I ran this test where the server remoteExecs an addAction which has a client sideChat itself via remoteExec. _action = ["gib sideChat", { params ["_target", "_caller", "_actionId", "_arguments"]; [_caller, "remote sideChatted myself!"] remoteExec ["sideChat", owner _caller]; }]; [_unit, _action] remoteExec ["addAction", owner _unit]; Targeting tests in cfgRemoteExec: If the command targeted clients, then addAction sidechat worked. If the command targeted the server, then sidechat would not work. I also had a [_unit, "sideChat test"] remoteExec ["sideChat", owner _unit] sent from the server to the client. The same results followed depending on the target set in cfgRemoteExec. This appears to me that if I want to apply commands to clients from the server, I have to whitelist the command, which then allows clients to remoteExec the hell out of it. How would I safeguard against that?

cfgRemoteExec provides a filter which blocks clients from using commands and functions in a destructive manner. However, I can't help but draw the conclusion that there seem to be some security loopholes. Through cfgRemoteExec I can block players from applying commands via remoteExec, but if I whitelist the commands, can they use remoteExec? What exactly does "target" mean when it says "target everyone/clients only/server only? I don't really want the client targeting anyone at all. Example: Lets say I have the server [_unit] remoteExec ["setDammage ", etc. ...]. Supposedly the server has authority to apply this change... but not so fast. The server cannot apply this change unless remoteExec has been whitelisted for clients to use. So now the client is able to apply remoteExec to other clients? Rephrased example: I have a custom command that allows clients to ask the server to change things for them like, "Do <some action that is restricted> for me, please?" This command targets the server. So the client can order the server around in a controlled environment, so to speak. So the server says, "Sure! <restricted command via remoteexec>. Have fun. ❤️", but... but since I had to (whitelist -- target clients) the restricted action for the client to use it, is that client now able to use that remoteExec on other clients?

Nevermind: https://community.bistudio.com/wiki/serverCommand

https://community.bistudio.com/wiki/Multiplayer_Server_Commands According to this, I should be able to automate kicks and bans as needs via .sqf file. It seems I'd have to log the server in as an admin (which the player can see if he unpacks the .pbo). Isn't there a method that grants the server authority to do that and execute admin functions via script?

Someone else has agreed with your observation. I'm probably just being daft. https://community.bistudio.com/wiki/Talk:remoteExec The game complains about bis_fnc_execvm everytime someone joins the server, that log message is not related to your code. What you need is something like this in your CfgRemoteExec:class Commands { mode = 1; // whitelist only jip = 0; class sideChat {}; };--AgentRev 06:42, 3 October 2019 (CEST)

I'm learning the ropes with remoteExec and basically this is my first attempt at server to client command. Question 1: Does cfgRemoteExec only restrict use of remoteExec for clients, or for the server as well? In other words, do I need to whitelist for the server as well? Question 2: Is this a correct assumption? the server sends = [_unit, "sideChat works"] remoteExec ["sideChat", _owner, false]; the client executes = if (!isJIP) then {this sideChat "sideChat works";};

I'll give it a shot.

I might be terribly misinformed, but iirc, CfgRemoteExec restricts which functions /commands clients can use through remoteExec. I have the server remoteExec sidechat to client, which shouldn't be an issue, but (i assume) that sidechat requires bis_fnc_execvm for the client to run the sidechat command. I don't want to build code under the wrong premise. Thanks for helping.

[_unit, "sideChat works"] remoteExec ["sideChat", _owner, false]; Server remoteExec to _unit/_owner. I receive: "Scripting function 'bis_fnc_execvm' is not allowed to be remotely executed." I understand that bis_fnc_execvm should not be whitelisted. Any solutions? --------------------------------------------------- It requires cfgRemoteExec whitelisting.