DDoS Attacks Confirmed

[Joe777]

It's always sad how people have nothing better to do than try to disrupt others... Also I agree on the whole internet police thing, it's long overdue. This bs wouldn't happen near as often if there truly was a penalty to the attackers.

What's even sadder is the persistency of this attack. Clearly someone has it in for FF14 and/or SE and can't get over it.

[Rawrrior]

Alright. Then why not block the ip addresses of the computers that the attack is coming from? I'm assuming that if you play ffxiv, then you're sending data to their servers anyway so it wouldn't really matter if actual ffxiv players were infected.

The IP of the attackers are constantly changing and being masked to make it look like the attack is coming from X location at any given moment. You can't simply block the IP without blocking real, or potential players.

All they can do is pay extra bucks to put in DDoS attack relieving tech that can eat up the "fake" multiple connections while letting through the real ones. It ain't cheap!

And don't worry, everything will go back to normal in a week or 2 at most. These attacks don't usually last that long, and neither does the current problems happening in-game.

[negiman4]

It's always sad how people have nothing better to do than try to disrupt others... Also I agree on the whole internet police thing, it's long overdue. This bs wouldn't happen near as often if there truly was a penalty to the attackers.

What's even sadder is the persistency of this attack. Clearly someone has it in for FF14 and/or SE and can't get over it.

I disagree on the internet police thing. There's way too many ways this could be abused; we all know that they'll make their laws as vague as possible. It would be the end of a free and open internet.

That being said, a better solution would be to update current laws to better deal with cybercrimes.

[TitaniaZero]

Do note. Its not DDoS singularly. If it was, why hot fix anything? There are some issues they know is theirs and they can and are attempting to fix them. Normal Congestion and DDoS aside, there is not much else one can do. A month from now things will be smoother... well for some of us. (Ahem Aether server's big momma servers)

[wicked-one]

Alright. Then why not block the ip addresses of the computers that the attack is coming from? I'm assuming that if you play ffxiv, then you're sending data to their servers anyway so it wouldn't really matter if actual ffxiv players were infected.

The Keyword and difference between an classical DOS Attack is that D in front of DOS -> meaning Distributed.

That´s why its hard to mitigate such stuff because it´s coming from so many different IP´s (think 5-6 digit numbers) and it now try to sort out good from bad traffic...

[KisaiTenshi]

I'm not a tech person but would they have known about the ddos attack the moment it occurred or within the first hour or so? Or does it actually take 3+ days to determine that the congestion of the instance servers were caused by a ddos attack? I sure hope SE isn't lying to us because I would be very sad if they were. I don't mind all the problems that we've been experiencing because of launch but I would feel very offended being lied to.

A DDoS is relatively easy to determine, and they're always malicious in nature. It's just hard to tell legitimate traffic from DDoS traffic until certain thresholds are hit, eg connections without handshaking.

The servers I manage, periodically get DDoS'd because people running minecraft servers are awful people and try to kill each others servers on the same subnet.

[Joe777]

I disagree on the internet police thing. There's way too many ways this could be abused; we all know that they'll make their laws as vague as possible. It would be the end of a free and open internet.

That being said, a better solution would be to update current laws to better deal with cybercrimes.

There are already cyberlaws in effect, but they don't get enforced as often as they should. Laws without upholders are pretty pointless.

[Jwrigh7784]

I call BS. None of the DDOS attack maps show any unusual activity targeted towards the location of the NA servers since the 16th. The current issues regarding the servers is the EXACT same thing that happened at 2.0 launch. This is a blunder on SE's part. There are so many people trying to play the new expansion and they have their servers set up in such an asinine way that instead of properly gating traffic they allow so many people to login at once it destabilizes the servers. Like I said, this is the EXACT same thing that happened at 2.0 launch and they didn't blame DDOS attacks back then. They need to reconfigure the servers so they don't allow more players to log on than the server can handle, sure the queue times will be longer but I'd rather have that than being DCed every 5 min only to be thrown into a queue of 1000+

[YitharV2]

Alright. Then why not block the ip addresses of the computers that the attack is coming from? I'm assuming that if you play ffxiv, then you're sending data to their servers anyway so it wouldn't really matter if actual ffxiv players were infected.

You must have not read my post, because I specifically said that there are too many IP addresses for the router to block. If it were that simple, DDoS attacks wouldn't be much of a threat.

Rawrrior also makes a good point that IP addresses can be spoofed/faked. The Internet was designed at a time when everyone was trusted so security was an afterthought to the Internet.

[LunaFaye]

DDoS and instability of servers, as well as the miscalculation of active players, that would participate in early access is one thing, and I am not going to comment on that. I think it's not my place, because every company needs to decide by themselves, which path they would like to walk and what kind of measurements will be taken, to match their business model.

But one thing I will say, sadly DDoS can't be blamed for missing and invalid cd keys, that some customers found or found missing with their orders of the physical copies. As well as the lacking support or any kind of help. We as the community, did have to help or try to help customers that were lost, and couldn't find any answers or information regarding their problems.

I am not saying that we should get any kind of compensation, because the damage has been done, and unless we're turning back time, it's understood that there's nothing that could make up for that. However, I do think that if there was an error or miscommunication between departments, which is not abnormal when launching a new and very well advertised new expansion, some kind of acknowledgement should have been made.

I think customers would have been more happy, if they would have read something down the line that stated,

"we sincerely apologize for the bad experience some of our customers experienced during and throughout the early access, due to (whatever the reason is/was insert here), but we will assure you that we are doing everything necessary, to make the next upcoming weeks a much better experience for everybody. (listing a couple of details that are coming, or that have been taken care off, or ongoing problems that are addressed and worked on)"

would have been seen as better solution.

After all, we need to keep in mind that a online game and the company publishing it, would be nothing without their community. Communication is the key, regardless of the position (player or development), and not leaving customers absolutely frustrated and in the dark about on going problems.

If I receive the ban because I was stating something that was personally important to me, I'll take it, at least I tried explaining that no matter how bad something might be or look like, at the end if the communication and proper information would have been given right from the beginning, a lot of this drama and frustration could have been avoided. As well as bad reviews. But that's just my personal opinion.