These forums have been archived and are now read-only.

The new forums are live and can be found at https://forums.eveonline.com/

EVE General Discussion

 
  • Topic is locked indefinitely.
 

Final solution for botting and rmt - CCP Anti-botting software?
Author
Previous Topic Next Topic
Mistress Motion
Pator Tech School
Minmatar Republic
#61 - 2011-09-29 20:28:00 UTC
Mara Rinn wrote:
TriadSte wrote:
I mean all that's needed to catch bots is a software to track time between keypresses? If char 1-2-3 etc has the same time frame of warping to station for example, its a bot and they get auto banned.


The EVE client is "dumb". All those key presses are fed back to the server. A study on bots in Ragnarok Online found that messages sent from bots had very discrete periodicity while messages sent from human controlled clients had uniform periodicity between commands. That is to say, the timing analysis you are suggesting could easily be done server-side on EVE Online just as it was done for Ragnarok Online. There is no need for any software to be added to my computer to monitor my key presses.


Ahem...

TimeToNextKeyPress += 150 + rand(x);

I would imagine every bot maker is clever enough to randomize time between keystrokes, as it's really just that simple.
Mara Rinn
Cosmic Goo Convertor
#62 - 2011-09-29 21:38:23 UTC
Mistress Motion wrote:
TimeToNextKeyPress += 150 + rand(x);

I would imagine every bot maker is clever enough to randomize time between keystrokes, as it's really just that simple.


My argument was that there's no need to run software on the client to analyse the client's behaviour.

Thankyou for providing another argument demonstrating how hard it is to detect bots.

Day 0 Advice for New Players
Mara Rinn
Cosmic Goo Convertor
#63 - 2011-09-29 21:52:58 UTC
Slade Trillgon wrote:
… I will say that I do not use my computer for anthing that I would not do or say in public …


Slade Trillgon wrote:
That is why I use a seperate computer for all of my 'sensitive stuff.'


Do you have sensitive stuff that you wouldn't show in public, or not? I think you're contradicting yourself here.

Bank account details, superannuation funds, silent numbers - there are plenty of things I wouldn't be letting any random stranger see.

Day 0 Advice for New Players
The Apostle
Doomheim
#64 - 2011-09-29 23:05:12 UTC
Quote:
So I can run 3 Tengu accounts. I run each for 4 or 5 hours at a time. If a neut comes into system I safe up. I do this 7 days a week.
Am I a bot or a human?

I run 3 Hulks on 3 screens. I mine 5 hours a day and I do it 7 days straight. After 5 hours, I log my other 3 Hulks and mine the same. While all my Hulks are mining away I'm doing my work at my desk.
Am I a bot or human?

I run a Domi and I do L4's all day every day. After 5 hours, I log my other Domi char and do the same.
Am I a bot or human?

Don't bother answering. You can't tell can you? If you think patterns are a way to detect botting. Well. Cough......

Only way I have EVER seen bots identified beyond doubt is by interacting with them. Their response is the giveaway, not the botting patterns themselves.

Oh and RMT. As fast as a sting nailed an RMT'er, he's moved, shut down his accounts and started somewhere else. And apart from a breach of EULA, what law has he broken? You cannot enlist the help of the RMT ISP's/law enforcment or any such agency. So how do you stop them?

To declare that CCP could "easily" stop RMT/Botting is about.... well..... as dumb as it can get. Sorry man.

Quote:
Your over simplification is ridiculous. Patterns in details show bot vs human very quickly. If CCP's were detailed enough...


My point here is that ANY of these could be bots OR human players. Despite what you thing, it cannot be detected without massive amounts of stats - over time - to locate any patterns that might exist

And as posted above, which was my next point, injecting randomness to break patterning in code is soooo easy to implement it's not funny. Notwithstanding that a player can also choose to have day off here and there and log earlier on odd days to randomise it even more.

[i]Take an aspirin. If pain persists consult your local priest. WTB: An Austrian kangaroo![/i]
Pr1ncess Alia
Doomheim
#65 - 2011-09-29 23:44:59 UTC
The Apostle wrote:
Quote:
So I can run 3 Tengu accounts. I run each for 4 or 5 hours at a time. If a neut comes into system I safe up. I do this 7 days a week.
Am I a bot or a human?

I run 3 Hulks on 3 screens. I mine 5 hours a day and I do it 7 days straight. After 5 hours, I log my other 3 Hulks and mine the same. While all my Hulks are mining away I'm doing my work at my desk.
Am I a bot or human?

I run a Domi and I do L4's all day every day. After 5 hours, I log my other Domi char and do the same.
Am I a bot or human?

Don't bother answering. You can't tell can you? If you think patterns are a way to detect botting. Well. Cough......

Only way I have EVER seen bots identified beyond doubt is by interacting with them. Their response is the giveaway, not the botting patterns themselves.

Oh and RMT. As fast as a sting nailed an RMT'er, he's moved, shut down his accounts and started somewhere else. And apart from a breach of EULA, what law has he broken? You cannot enlist the help of the RMT ISP's/law enforcment or any such agency. So how do you stop them?

To declare that CCP could "easily" stop RMT/Botting is about.... well..... as dumb as it can get. Sorry man.

Quote:
Your over simplification is ridiculous. Patterns in details show bot vs human very quickly. If CCP's were detailed enough...


My point here is that ANY of these could be bots OR human players. Despite what you thing, it cannot be detected without massive amounts of stats - over time - to locate any patterns that might exist

And as posted above, which was my next point, injecting randomness to break patterning in code is soooo easy to implement it's not funny. Notwithstanding that a player can also choose to have day off here and there and log earlier on odd days to randomise it even more.



So what your saying is it's impossible because it would require

#1-information (that is readily available to CCP)
#2- taking the time to organize and analyze that information (OMG not TIME!!!)
#3-People might not bot every day (because this is an absolute necessity to identify them amirite?)

...wait. So how does that = impossible again?

It's like your brain is actively working to sabotage your comments. Maybe you have it running in reverse or need to drink a V8?
David Grogan
University of Caille
Gallente Federation
#66 - 2011-09-29 23:47:17 UTC
Sentient Blade wrote:
Over my dead body and / or unsubscribed accounts.

I want bots gone as much as the next guy - but like most people I have a large amount of personal content on my computer, plus a lot of work stuff too.

I would never knowingly allow a third party to monitor the goings-on of my personal hardware in any way, shape or form.


this

Everytime you buy something that says "made in china" you are helping the rising unemployment in your own country unless you are from china, Buy locally produced goods and help create more jobs.
The Apostle
Doomheim
#67 - 2011-09-30 00:33:14 UTC
Quote:

So what your saying is it's impossible because it would require

#1-information (that is readily available to CCP)
#2- taking the time to organize and analyze that information (OMG not TIME!!!)
#3-People might not bot every day (because this is an absolute necessity to identify them amirite?)

...wait. So how does that = impossible again?

It's like your brain is actively working to sabotage your comments. Maybe you have it running in reverse or need to drink a V8?



The "information" you readily speak so much about can easily be made difficult to interpret. We're at a stage where we can closely mimic human intelligence in a Q&A and you think 50 or so keystrokes per hour can easily be classified into bot or human behaviour? Seriously?

No game, from ANY developer has EVER been able to eliminate bots/RMT trade. To suggest that CCP is unable (or worse) don't even bother is ludicrous in the extreme.



[i]Take an aspirin. If pain persists consult your local priest. WTB: An Austrian kangaroo![/i]
Sri Nova
Sebiestor Tribe
Minmatar Republic
#68 - 2011-09-30 05:46:13 UTC
Chess has been botted .

The bots have millions of combination of board postions stored in their database.
then their is some logic to follow the best path.

How do you prevent botting in chess ? you don't because you would need to break the rules.

How do you prevent botting in Eve ? thankfully eve can be a bit more complicated than chess but unfortunately the mechanics that the bots are exploiting are arguably less complicated . So is the answer, you don't because it would break the rules of eve ?

Or is the answer to implement a mechanic that would make it infinitely more difficult for a bot to function in eve.

No one wants to be bothered with more complexity or extra methods. The truth however, is that something needs to change in eve.

Whether it be the mechanics that the bots are exploiting or a simple mini game that's impossible for bots to solve .

the mini game would be the easiest to implement . but i would personally prefer a mechanics change.

and as for a the third option . several billion dollar companies have utterly failed at keeping bots off of Personal Computers for decades. you honestly think a million dollar budget will achieve more than those companies have ?
Prince Kobol
#69 - 2011-09-30 06:17:07 UTC
Unfortunately many people simply do not understand how bots work hence so many posts saying bot are easy to detect.

If bots were so easy to detect then they wouldn't exist in the number that they do, not only in this game but in all MMO's.

Bots are programs written by some very talented and very intelligent programmers, not by some 12 yr old.
Richard Hammond II
Doomheim
#70 - 2011-09-30 06:23:45 UTC  |  Edited by: Richard Hammond II
The Apostle wrote:
Stormshadow. Admirable suggestion but no. Yes I can trust the company but as we all know, companies are a collection of inidividuals and any individual can


and have in the past

Quote:
go rogue.



more to the point, arent there MMOs that run programs like that already?
WoW for example.
I know there are things inside their software package that trip my malware detecting programs when Ive had it installed in the past

Goons; infiltration at its best - first bob... now ccp itself. They dont realize you guys dot take this as "just a game". Bring it down guys, we're rooting for you.
Brooks Puuntai
Solar Nexus.
#71 - 2011-09-30 06:54:29 UTC
If you think you can create a in game system to try and fight bots then you are horribly wrong. Even a CAPTCHA system would fail eventually. Hence why now a days you get captcha thats so difficult most actual humans can't even read it. Removing/delaying local won't work either due to client injection since the information is already sent between server/client, local is just a GUI.

Really what the OP has in mind as far as a punkbuster style spyware is the only way to prevent botting. Also for those who are paranoid about CCP looking through your stuff, your being over paranoid. You honestly think CCP is going to sit there and shift through 300k+ peoples p0rn folders, steal your bank info(which they already have for most people), or steal any other personal info? All those programs do is sniff out processes they try to interact with the client, once this happens it sends a alert to CCP or closes the client.

CCP's Motto: If it isn't broken, break it. If it is broken, ignore it. Improving NPE / Dynamic New Eden
Prince Kobol
#72 - 2011-09-30 07:16:56 UTC
Programs like Warden and Punk Buster do not stop botting.

There are various ways to bypass both of these programs as well as there being many bots which still remain hidden from Warden.

I also found it funny when Symantec started to treat Warden as malware after an update and try to delete it.
Thgil Goldcore
Ministry of War
Amarr Empire
#73 - 2011-09-30 07:21:40 UTC
http://en.wikipedia.org/wiki/Warden_(software)

know it was brought up, but its becoming a rather common feature with online games....
Jaroslav Unwanted
Brutor Tribe
Minmatar Republic
#74 - 2011-09-30 07:32:40 UTC  |  Edited by: Jaroslav Unwanted
different human-computer interface developed by CCP

You plug your nodes on your head and things will happen. No other interface allowed, token to calrify user as well as brain scan prior to login.

Moral of the story is : How far you gonna go to fulfill "threat" reduction. Is the actual alternative reality worth losing so much of our imaginary "rights"
Renturu
In Glorium et Decorum
#75 - 2011-09-30 08:06:33 UTC  |  Edited by: Renturu
I agree that there needs to be more stern action against those botting... For instance.... PERMABAN. But, to catch them... that is the trick. My son (11) plays Runescape (you think I'd trust him to convo you guy's... sheesh! - He pisses me off at times, but hey, he's my son)

Back on topic. Runescape (as much nanny control that there is) does have a system where the server will interact and you must reply or you are kicked. Perhaps CCP should impliment this in some way...

Concord flies into a belt (random security checks -High Sec, of course).
Starts convo with random miners in belt... no reply, CCP boots you and 30 day ban for first offense (make it serious enough to get the point across for those attempting). Granted a timer of 5 minutes should be ample (AFK - Smoke, Bio, Kick the dog).

Second offense - Permaban

For low sec... hmmm, that would require something new... perhaps an NPC bounty hunter? IDK.

By the orders of PlunderBunny: ☻/ /▌ / \ This is Bob, post him into your forum sig and help him conquer the forums.
Urgg Boolean
Center for Advanced Studies
Gallente Federation
#76 - 2011-09-30 20:31:11 UTC
Blizzard had a lot of botting problems with Diablo and later with WoW. They use a two-pronged approach.

First off, if they detect a compiler and/or decompiler, they dumb down the bot detection code, so the bot developer cannot accurately determine whether or not the bot will be caught by the production detection code. In this way, the devloper cannot figure out counter-measures for producion bot detection alogrithms becuase bot detection will only run at "full power" if no developer tools are present.

Secondly, they look at actions taken by the bot : server-side DB reads in the form of stuff you shouldn't know, memory writes or over-writes faster than humanly possible. Also, the bot detection code does checksums against the client and somehow has methods to detect when the correct checksum is being faked. And when they think they found a bot, a GM randomly PM's the bot/player. They can detect some forms of emulation, so if you are running a virtual machine they can detect an outside environment calling the shots. Some extreme forms of hardware emulation are not detecable but cost in the range of $100K (buy them from HP) and are intended for the engineering lab and/or hardware development team.

Blizzard does more - similar to virus checkers, they keep a list and strings of code samples to identify known bots and test for their presence. So, if you have a bot, then change it's name, or create a variant, they can still find it. I'm positive they do stuff that is a well kept set of secrets.

Blizzard stopped the bots by invading your machine at a virus-checker level. CCP can stop the bots too, but as many have said, they may or may not have the corporate will to do so. Did they already lay off the bot guy they supposedly hired ? If not, what is that guy up to ???