1. FFXIV Reset Timers
    Last daily reset was 6 hours, 48 minutes ago / Next daily reset is in 17 hours, 11 minutes
    Last weekly reset was 1 days, 6 hours, 48 minutes ago / Next weekly reset is in 5 days, 17 hours, 11 minutes
+ Reply to Thread
Page 1 of 25 1 2 3 11 ... LastLast
Results 1 to 20 of 499
  1. #1

    Default Another exploit - Wholly Unsecured Database

    As this is starting to gain traction(finally) on the official boards (and with apologies to Kincard, who posted this in Random complaints first - credit where its due) maybe they will do something about it rather than delete all the threads to make it go away. I felt this was just tooooooo crazy to leave be, so I created this thread.

    Anyone remember that photo of the guy dinging through like 30 levels within a two minute time-stamp?


    It's no photoshop - Details and more inside:

    Spoiler: show


    Your thoughts?

    EDIT - this should go without saying, but investigating this yourself is super risky, against the TOS, will get you banned, etc. Be careful

    A japanese blog reported the exploit here
    http://jacklog.doorblog.jp/archives/33776800.html

  2. #2

    Default

    Please no...

  3. #3
    New Odin
    Join Date
    Jun 2007
    Posts
    8,832
    BG Level
    8

    Default

    I'm amazed that the RMT haven't ruined the economy already if this is the case LOL.

  4. #4
    Chram
    Join Date
    Dec 2005
    Posts
    2,883
    BG Level
    7
    FFXIV Character
    Xenor Vernix
    FFXIV Server
    Excalibur

    Default

    Why didn't SE employ hackers in beta to try find exploits like this? This will be a disaster for them if news gets out to the major gaming websites.

  5. #5

    Default

    Well, they just deleted the 8 page thread on the main boards - again - so who knows what they're doing about it.

    I thought it was a programming basic to not trust the client

  6. #6
    New Odin
    Join Date
    Jun 2007
    Posts
    8,832
    BG Level
    8

    Default

    Sounds like somebodys about the get his ass kicked sometime soon.

  7. #7

    Default

    Quote Originally Posted by Hyan View Post
    Sounds like somebodys about the get his ass kicked sometime soon.
    Maybe maybe not. Apparently some players on Chocobo server have known about this for a while and reported it.

    Weeks ago.

    To date there's no official response, and SE is deleting all related threads wherever they can control them. That said, it's on facebook now.

  8. #8
    New Odin
    Join Date
    Jun 2007
    Posts
    8,832
    BG Level
    8

    Default

    lol so much time to ruin the whole game's economy, why hasn't the RMT acted on this?

  9. #9

    Default

    Sounds like they have, from some random guy on the boards

    From the RMT spam on Balmung in just this past hour, the prices are down from last week. Last week was 36 bucks, today they are saying the same amount is 15. Your server could be different.
    It's probably also what enables the botters to exploit the game - no server-side validation on anything sent by a client.

  10. #10
    CoP Dynamis
    Join Date
    Dec 2005
    Posts
    291
    BG Level
    4

    Default

    Quote Originally Posted by Anton View Post
    Maybe maybe not. Apparently some players on Chocobo server have known about this for a while and reported it.

    Weeks ago.

    To date there's no official response, and SE is deleting all related threads wherever they can control them. That said, it's on facebook now.
    I know at least 5 people who have been using this exploit and openly giving gil to their friends. None of them have been banned

  11. #11
    Chram
    Join Date
    Dec 2005
    Posts
    2,883
    BG Level
    7
    FFXIV Character
    Xenor Vernix
    FFXIV Server
    Excalibur

    Default

    SE should be shutting down the game for as long as it takes until they fix this and compensating people for the lost subscription time. It's that serious.

  12. #12
    Old Merits
    Join Date
    Mar 2009
    Posts
    1,004
    BG Level
    6
    FFXIV Character
    Tanaya Makers
    FFXIV Server
    Hyperion
    FFXI Server
    Fenrir

    Default

    I've been waiting awhile to comment on this because I wanted to see more information first, but it looks like this is actually a real thing.

    But overall, this is quite disappointing that something like this exists. The fact that SE can't detect reliably detect this just screams incompetence. If it weren't for the fact that I'm set on playing this game for years, I'd start doing this myself if it's so easy to get away with it.

  13. #13
    Relic Shield
    Join Date
    Sep 2004
    Posts
    1,725
    BG Level
    6
    FFXI Server
    Bahamut

    Default

    So far the bug report is still up on the bug report forum, people are whining about the reporter making it public.

  14. #14
    Lostbane
    Join Date
    Jun 2006
    Posts
    2,134
    BG Level
    7
    FFXIV Character
    Mexi Lostbane
    FFXIV Server
    Siren
    FFXI Server
    Shiva

    Default

    Hopefully this will be addressed here

    In addition to the above adjustments we will also be fixing a number of bugs.
    because this is ridiculous.

  15. #15
    Can you spare some gil? I don't want my rapebaby going hungry.
    Join Date
    Feb 2009
    Posts
    4,756
    BG Level
    7

    Default

    I hope they have some sort of way to track the people who have been doing this, because I would like to avoid a huge fucking roll back.

  16. #16
    New Spam Forum
    Join Date
    Aug 2010
    Posts
    189
    BG Level
    3

    Default

    Oh man, that is depressing. I sure hope nobody on my server knows how to do this because it could very quickly snowball into a complete disaster. SE really should shut down the service while they sort this out.

  17. #17
    New Odin
    Join Date
    Jun 2007
    Posts
    8,832
    BG Level
    8

    Default

    Quote Originally Posted by Anton View Post
    Sounds like they have, from some random guy on the boards



    It's probably also what enables the botters to exploit the game - no server-side validation on anything sent by a client.
    Eh, that seems like its due to normal means of filling up your stash of gil. With this exploit the RMT could invalidate SE's previous RMT efforts almost instantly but that hasn't happened (yet).

    I dare SE to do a rollback, everyone would quit instantly... I'd rather have the people get away with this if the economy isn't ruined otherwise.

  18. #18
    Relic Shield
    Join Date
    Jul 2005
    Posts
    1,520
    BG Level
    6
    FFXIV Character
    Deejay Zombie
    FFXIV Server
    Excalibur

    Default

    I thought it was a programming basic to not trust the client
    SOP is trust but verify. clearly no fucks about verification were given

    if it becomes common knowledge and goes unchecked this is a game ending exploit

    i'd love to test it to see what i can actually do, but it looks like someone has already done that and im not getting fucking banned for being an idiot.

  19. #19
    Banned.

    Join Date
    Oct 2006
    Posts
    10,126
    BG Level
    9

    Default

    If its on BG you can be sure its common knowledge.

  20. #20
    Relic Shield
    Join Date
    Jul 2005
    Posts
    1,520
    BG Level
    6
    FFXIV Character
    Deejay Zombie
    FFXIV Server
    Excalibur

    Default

    welp, game over man, game over.