Original post by WitchLord
As another solution to the problem you could digitally sign the compiled bytecode. That way the client can verify if anyone has altered the code and not run it. This would only be a viable solution if you can keep the private key secure. If you plan on having public servers then the private key isn't secure so the digital signature cannot be trusted.
This doesn't help if the code is malicious at the source, at the server. (I.e. someone has set up a server just to spread a pleague. :)