A REAL CURE TO BOTTERS.

Free.Block · April 2014

Just sell your own in game gold, like 50k for $5 or something along those lines. Bot's will be useless, and your game might actually get saved. Heck, even start a RL auction house, like D3. But change it up a little, make it so your store, has every item in the game, that you can buy for "X" amount. You make full profit, people are happy, less spam, and gold sellers can go cry a little in the corner.

Iorail · April 2014

NO

/thread

7788b14_ESO · April 2014

So why wouldn't bots sell gold next to you? Maybe for $4?

Hearts · April 2014

Im pretty sure most people would be unhappy if Zenimax tried to milk the game on more money JUST after launch.

Free.Block · April 2014

Gold sellers, is almost like a legit company, they get paid a hourly wage, from who ever the boss is. If you can cut it down so there time is worthless, No one is going to want to farm for 24 hours, for as little as $4. I'm sure you wouldn't work at Mc Donalds for less then minimum wage.

yodased · April 2014

Dorasmora · April 2014

I personally like the idea of an authenticator that has to be posted out to everyone personally until the botting problem / gold seller is sorted out - better yet, posted to the address that the card you subscribe from is registered to.
- No way these people who are using fake credit cards are going to ask for the authenticators to be sent to the addresses of the people they are frauding.

Free.Block · April 2014

Dorasmora wrote: »

I personally like the idea of an authenticator that has to be posted out to everyone personally until the botting problem / gold seller is sorted out - better yet, posted to the address that the card you subscribe from is registered to.
- No way these people who are using fake credit cards are going to ask for the authenticators to be sent to the addresses of the people they are frauding.

That is indeed a good idea.

Auric_ESO · April 2014

Then people can buy the best stuff with cash? Isn't that kinda like pay to win?

Free.Block · April 2014

Im not talking about like "Bound" Gear or dungeon gear. Just simply, Anything material wise (wood, ore, cloth, etc)

llXll · April 2014

surely a captcha on login,
allthough annoying as hell,
would stop the bots in their tracks?
the thing with selling gold officially is it wont make a difference to bots,
their gold will just be sold cheaper.

Auric_ESO · April 2014

The captcha won't help. The botter would just login then hit go

Dorasmora · April 2014

They need to do something that forces people to really verify who they are, like my suggestion above, an authenticator would be great.

the.dzeneralb16_ESO · April 2014

Whether most people would agree or not, the truth is that the GM's going online and to these places is the best option. It is the least inconvenience to the players while being effective.

Tannakaobi · April 2014

So we have a problem with bots farming dungeons in order to sell gold. Your solution is to make it so all players can sell gold.

Will that cut down on Boss farming? I'm not sure you have really gave this much thought.

Auric_ESO · April 2014

the.dzeneralb16_ESO wrote: »

Whether most people would agree or not, the truth is that the GM's going online and to these places is the best option. It is the least inconvenience to the players while being effective.

Its a good short term fix agreed. In the long run they need systems that will automate the process which they say that are working on

Medicius · April 2014

No, they need to find a way to allow real players the option of protecting themselves and their right to enjoy the game without competing with 25 Temp bots killing a boss before the real player even sees the spawn pop.

If ZOS is unwilling to pay for in-game admins to actively patrol dungeon bosses, then allow the players to do it.

Do like CS:GO does with Overwatch. Only make it an active role with a few extra rights - like the ability to flag accounts for immediate porting to a special room in the game world. Then either have non-volunteer employees watching the queues for flags of that nature - or add the option for the overwatch-like players to be able to port bots themselves.

You'll want to plan out a check and balance system to prevent some a**hat from griefing other non-bot characters, but I would guess that like you see with Overwatch, players are going to want to make sure the game is fun for all non-botters more than they are going to want to grief another person and be banned themselves.

RinaldoGandolphi · April 2014

Honestly IMO the best solution to cure the bots is simple.

Embed a custom "in-house" routine into the ESO executable itself that scans all running processes in memory on the machine at certain intervals and looks at the processes running.

Any process that is "NOT SIGNED CODE" should instantly trigger a temp ban pending review.

On any 64 bit version of windows, You will be hard pressed to find exe's running in memory that don't have a proper digital signature on them signed by a CA....i guarantee you none of these bot programs are signed code, and none of the CA would ever issue a Code Signing Cert to these spammers since you have to go through a lengthy vetting process just to get approved for a code signing cert.

Pretty much all 64 bit Windows Drivers are signed and approve by WHQL

If the process finds unsigned code, issue temp bans pending review...the very few legit apps today that are unsigned can be review, SHA256 cryto hashes made for them, and whitelisted....by by to the bots...

It would very easy to license to Anti-Rootkit Tech from a major security vendor that makes it impossible to hide these executable from being seen....

Would a few still get past it? sure your never gonna get rid of the bots 100%, but this solution would probably get rid of about 90% of them...which would be a vast improvement over the way things are currently...

Personally, they should contact Symantec...their Symantec Sonar Cloud system pretty much has every single stinking file known to man indexed and rated in some fashion, the very few you run across that are not are usually rated within 1-3 hours upon discovery....just license this tech Zenimax and modify it...set up your system to temp ban anyone that has files running on their system memory that are:

1. not Digitally Signed
2. are mega new and not recognized by the cloud network yet.
3. known bad files and bot programs

All temp bans will have to be manually reviewed and followed up with a member of a team of CS that deals in nothing but bans...problem solved for the most part.

it much easier to deal with bots, when you know what processes are running on their machine client side....

Lastly when implementing this, when launching the client, check that the anti-cheat software is running and that the SHA256 Hash of the newest version of the software matches the hash stored on the server...this way you will know if its been tampered with and if it don't match they can't connect.

IMO your going to have to know whats running on the client side in order to fully put a stop to this....just my opinion.

Free.Block · April 2014

Zenimax, you should hire this guy ^

Arsenic_Touch · April 2014

Not only no but hell no. And zenimax needs to stay the hell away from symantec.

Nox_Aeterna · April 2014

Ok , 2 things.

First , that does not guarantee to end the bots. That just adds another seller , the bots will remain if they can sell cheaper than zen , so that people would buy from them AND still make a profit. Also , these people dont only sell gold , they sell services and accounts also.

Second , it is not that simple. If the company itself begins to sell it , then tons of people will buy it , the moment they do that , they will destroy to economy does not matter what anyone does to stop it. You cant flood a market with millions and then expect the prices to remain the same.

RinaldoGandolphi · April 2014

Free.Block wrote: »

Zenimax, you should hire this guy ^

Thanks, but I don't know about all that.

WyeVxndzz · April 2014

llXll wrote: »

surely a captcha on login,
allthough annoying as hell,
would stop the bots in their tracks?
the thing with selling gold officially is it wont make a difference to bots,
their gold will just be sold cheaper.

You do understand that there's no global AI out there, chuckling in cyberspace, logging in by enchanting electrons?
There are PEOPLE who log in their bots, and they can authenticate a raft of captchas as easily as they turn on their computers?

RinaldoGandolphi · April 2014

Arsenic_Touch wrote: »

Not only no but hell no. And zenimax needs to stay the hell away from symantec.

It doesn't necessarily have to be Symantec, and I am not talking about actual "Symantec Software" I am talking about in-house software that queries Symantec's Cloud VIA an API to determine information about a running process as an example. Again, it doesn't have to be Symantec's cloud, just need something to verify files against. There are tons of cloud based services out there that can do this.

if you want to stop botting you MUST know whats running on the client side...plain and simple...there is no other way around it....its the only way to stop cheaters...

Harvest the SHA256 or SHA512 Cryto hash of every running process on the system and compare them to database stored on the cloud somewhere...check for Digital signatures as well, as 99.9% of all programs digitally signed are legit (nothing is 100%) and issue temp bans based on certain conditions.

This check should run at random intervals, it may not even run every time you open ESO..it has to be random, and it has to be a fair check....just like showing your ID at the door before getting into a nightclub....just checking to make sure your old enough to be here. Im talking about comparing hashes, not making copies or storing files.

This is just one of the many ideas they could use, but there has to be some way of knowing whats running on the client machine if you want to put a stop to this...even if they just run it to collect performance information, that information can be used to combat specific bot programs as they go down the line.

they need to know whats running client-side on the machine if they want a fair chance of fighting back against these people...thats just how it is...if they don't know whats running client side, they are fighting a battle blindfolded which is one they can't win.