I agree with the previous responses: allowing RMT will be a major headache because of bots.
I am not, nor have I ever been, involved with any Flyff private server, but I deal with bot-related situations on both sides—avoiding them and, in the past, creating bots as requested several years ago.
In some cases, by monitoring and controlling bots effectively, I often did what we call here in Brazil
"fazer vista grossa" (turning a blind eye), allowing some bots that contributed positively to the game’s activity to operate unnoticed.
The key to good control over these situations has already been mentioned in previous posts:
- Have an efficient logging system: It doesn’t necessarily need to log everything but should focus on key points, which I can’t publicly disclose (to avoid compromising your system). This logging system should trigger alerts or flags for your staff to take the appropriate actions.
- Maintain an active staff: Not only to review alerts but also to provide security and reassurance for players, which motivates them to stay in the game.
Other measures I usually adopt include thoroughly vetting your staff (whether based on personal trust or contractual clauses) to prevent your security system from being exposed. It’s good practice to separate the development/security team from the team responsible for analyzing the “automatic report” generated for potential bot detections. I don’t think it’s ideal for many people on the team to know the exact methods used for detection.
Stay vigilant with bot-related communities: get close to them, purchase bots if necessary, analyze them, infiltrate those communities, and follow their developments to better understand your game’s vulnerabilities and address them more quickly.
Avoid client-side bot detection systems entirely.—they’re a headache for regular users and easily bypassed by bot developers. All security should be focused on the server, from bot/hack detection to choosing who has access to the server’s security measures, as most errors come from human security failures.