As you guys may know (and if not, should be aware of) a new hacked client/program has been made publicly avaliable that allows players to unabn themselves, even if it is by an IP from both online AND offline servers. This, obviously makes it prime for griefing. I suspect that the program will send an upstream packet to the server that removes the player name/IP from the banned player file, which is currently an unprotected unencrypted straight list. I believe that a plugin that handles bans through a MYSQL or other form of database would protect servers against these malicious programs. I just made this post after my server, Megaloldom was temporarily taken down until a fix for this has been found, and I do believe I have found a potential solution. MCBans is not really a solution, as like many people I was recently hacked into and my account used as an alt for griefing, and also put into the 0/10 rep list. Unfortunatly MCBans refuses to believe that accounts can be hacked into, and despite two months passing I have still not recieved a response from them. Therefore, like many other players in my situation, MCBans is not an option. It is also used by many griefing teams to find servers to go and attack, so many owners too will not want to use it as a solution. If one of you nice coders could make up a fix I, and many other players and server owners would be forever in your debt.
I'm not a dev, but: which plugin are you using to ban players? I would say you should use commandbook's ban (but it has a simple .txt too) or use EasyBan (installed yesterday to our server). EasyBan uses MySQL.
