Re: Regarding the Use of Third-Party Programs and Player Safety

**ExcellusUltimus** · 01-25-2025 02:43 AM

Originally Posted by Collin_Sky

lol
lmao
there's no way dude

Good argument. It's full of facts.

**Sarevok_Thordin** · 01-25-2025 02:46 AM

Originally Posted by ExcellusUltimus

Good argument. It's full of facts.

It won't. Look at Albion Online which does have Kernel level Anti-Cheat, the place is still ridden with cheaters. I'm not going into how they do it here.

**Minarisweet** · 01-25-2025 02:40 AM

Considering they take forever to make any significant updates to the game it will take a major patch to fix this at best if we are being optimistic about yoship just not wanting to jump the gun.

**Nebelheim** · 01-25-2025 02:47 AM

This situation proves how poor the security of the game is if a plugin can scan hundred of thousands of accounts and player I.D's and shows there is no encryption or any protection of data.

**tank2fish** · 01-25-2025 02:58 AM

Anyone suggesting anti-cheat software either does not know or does not care that any information dealing with basic account security should not be left raw and unencrypted and handled purely client side. There's a HUGE host of problems and issues associated with various levels of anti-cheat software, things that you absolutely do not want to consent to having installed on your platform, and yet we have some big brains in this thread who think it's the answer?

SE should be handling sensitive information server side, or at the very least encrypting the information. The fact that some people are suggesting "oh use anti-cheat" instead of acknowledging the actual issue is beyond incomprehensible. Just because you think such a thing would stop SOME people, that still does not deal with the root issue of player safety. Sure, maybe you are weeding out some people who cannot find such a thing easy, but you are still allowing access to sensitive account data. You are not dealing with the core problem, you are suggesting a solution that does nothing to fix the issue.

Again, account information should not be raw, unfiltered, unencrypted, and sent to every client. It has nothing to do with whatever third party tools people are using and it has everything to do with how SE has decided to leave account safety to chance in the wind.

**ExcellusUltimus** · 01-25-2025 03:01 AM

Originally Posted by tank2fish

Anyone suggesting anti-cheat software either does not know or does not care that any information dealing with basic account security should not be left raw and unencrypted and handled purely client side. There's a HUGE host of problems and issues associated with various levels of anti-cheat software, things that you absolutely do not want to consent to having installed on your platform, and yet we have some big brains in this thread who think it's the answer?

SE should be handling sensitive information server side, or at the very least encrypting the information. The fact that some people are suggesting "oh use anti-cheat" instead of acknowledging the actual issue is beyond incomprehensible. Just because you think such a thing would stop SOME people, that still does not deal with the root issue of player safety. Sure, maybe you are weeding out some people who cannot find such a thing easy, but you are still allowing access to sensitive account data. You are not dealing with the core problem, you are suggesting a solution that does nothing to fix the issue.

Again, account information should not be raw, unfiltered, unencrypted, and sent to every client. It has nothing to do with whatever third party tools people are using and it has everything to do with how SE has decided to leave account safety to chance in the wind.

I am willing to sacrifice nearly anything to purge a segment of this community from the game forever. They're a festering lesion on this community. The solution may be imperfect, but if it gets rid of them I will call it a success.

**tank2fish** · 01-25-2025 03:04 AM

Originally Posted by ExcellusUltimus

I am willing to sacrifice nearly anything to purge a segment of this community from the game forever. They're a festering lesion on this community. The solution may be imperfect, but if it gets rid of them I will call it a success.

Except anti-cheat would not do what you apparently think it does. It will not stop people from cheating. It will not adequately protect YOUR account and YOUR safety. It would not prevent bad actors from continuing to do what they have been doing this entire time. Tell me you don't understand how anti-cheat works without saying those words exactly, because this reply certainly tells me that.

**ExcellusUltimus** · 01-25-2025 03:07 AM

Originally Posted by tank2fish

Except anti-cheat would not do what you apparently think it does. It will not stop people from cheating. It will not adequately protect YOUR account and YOUR safety. It would not prevent bad actors from continuing to do what they have been doing this entire time. Tell me you don't understand how anti-cheat works without saying those words exactly, because this reply certainly tells me that.

So you don't think it would even detect ACT or whatever that pluggin is that people use to manage all of their cheating tools?

**VerdeLuck** · 01-25-2025 03:16 AM

Originally Posted by tank2fish

Anyone suggesting anti-cheat software either does not know or does not care that any information dealing with basic account security should not be left raw and unencrypted and handled purely client side. There's a HUGE host of problems and issues associated with various levels of anti-cheat software, things that you absolutely do not want to consent to having installed on your platform, and yet we have some big brains in this thread who think it's the answer?

SE should be handling sensitive information server side, or at the very least encrypting the information. The fact that some people are suggesting "oh use anti-cheat" instead of acknowledging the actual issue is beyond incomprehensible. Just because you think such a thing would stop SOME people, that still does not deal with the root issue of player safety. Sure, maybe you are weeding out some people who cannot find such a thing easy, but you are still allowing access to sensitive account data. You are not dealing with the core problem, you are suggesting a solution that does nothing to fix the issue.

Again, account information should not be raw, unfiltered, unencrypted, and sent to every client. It has nothing to do with whatever third party tools people are using and it has everything to do with how SE has decided to leave account safety to chance in the wind.

The "sensitive account data" isn't PII, it's a reference number that is useless outside of SE's internal DB. Again this kind of posting is concern trolling to cast doubt because a segment of players really really do not want cheats or plugins like this banned.
But that's 100x harder whenever the game's files are completely insecure, there's no checks on memory being accessed or tampered with, and packets are out in the open. Anticheat is the first step to deal with this and actually get some control on the game and the community from the rampant abuse and cheats that are going around.
You can remove the account ID from the client, but then it just shifts and people will still make programs like this and spread them through dalamud to harass and stalk other players. Cracking down on these plugins will remove them from the hands of the majority of players, a few people will still have them but we won't have a crowdsourced harassment plugin in the hands of a large chunk of the game when it's significantly harder to inject or install it.

**brinn12** · 01-25-2025 02:54 AM

So they think they can send account IDs to every client, so long as they don't show them in-game, and blame plugins?

What is this alternative reality I haven't heard of, in which the only programmers in existence are working for SE?

Thread: Re: Regarding the Use of Third-Party Programs and Player Safety

Thread Tools

Search Thread

Display

Hybrid View