http://luac.mtasa.com/ compiling rule

[Xabache]

Does the https://luac.multitheftauto.com/ compiling rule for MTA apply only to client side scripts? By my understanding, this rule forces the script writer to use luac.mtasa as the only compiler -- to protect mta users from potentially malicious scripts by automatically reviewing them beforehand or forcing them to remain open source and viewable to all users. But server side scripts would suffer no such scrutiny nor need for luac'ing except where remote hosting came into consideration and security was your average MTA Sever owner's greatest concern, for which having mtasa luac'd client side scripts and third party server side luac'd scripts would seem ideal. Giving no one but the author the chance to ever have both sets in lua format. So does your client prevent third party luac'd files from running server side only, and if so, what potential security threat to MTA users justifies this?

[JR10]

It's also made to protect server owners from compiled server side scripts. Someone can make a gamemode with back doors and compile it, then he can use it to abuse on any server that runs the gamemode. It happened before.

[Xabache]

Caveat Emptor = Let the buyer beware (Not Seller be forced to conform so the buyer may remain naive.)

If you download a public resource that comes luac'd on both sides and post it on your server it is at your own risk. Or better, could come with an MTASA disclaimer on loading, and even on player join, "Warning: this script is compiled without our oversight, it may contain malicious code, you should absolutely beware of this script!!" A simple clear protection that would not unduly violate the security of good natured, script writing, remote server owners as your current policy does; that rather than warn the buyer of this age old wisdom to be wary of things unknown, MTASA has chosen the big government approach... regulation without justification. You mandate any luac'd file must go through you because the buyer can't be bothered to be aware.

Everyone online is aware of everything all the time. Don't impose regulation without justification. Your point is invalid. I'll hear greater cause if such exists... Until such time there is no valid justification to require server side MTASA approved luac'd files that I know of. This rule stands as an unjustifiable imposition threatening the Intellectual Property Rights of the author to propagate naivety amongst potential users.

[Addlibs]

As far as I'm concerned, none of what is uploaded through lac.mtasa.com is reviewed by the MTA administration. It is just an online compiler made in interest of protecting scripts from being stolen. Compiled scripts with verified reports of backdoors have their (compiled) content added to a list of 'malicious scripts', which restricts these scripts from being loaded.

I do believe that there should be an option to disable such protection, under the server manager's own risk.