Weapon Ray Casting For Efficiency/ Protection??

Should I ray cast on the server side when shooting a weapon? I dont plan on having tracers.

Right now I am casting on the server from the barrel of the gun to mouse.hit.p. Then firing a remote event that takes what ever the ray hit.On the server I am checking if what was hit is a humanoid and in range.

The problem is an exploiter can simply execute the following script

workspace.ExploiterName.M4.HitRemote:FireServer(workspace.AnotherPlayer.HumanoidRootPart)

and then in the server side it will only check if the anotherPlayer is in range of the exploiter and do damage.

Instead should I raycast on the server, and the hitRemote would pass mouse.hit instead?
Im not sure exactly how to secure my weapons, any advice would help!