• 5 Posts
  • 344 Comments
Joined 2 years ago
cake
Cake day: June 29th, 2023

help-circle



  • I’m still not convinced it’s possible to have a cheat proof environment. Kernel anti-cheat is not fool proof, it’s just more annoying to deal with than user space anti-cheat. Yes, pairing it with server side stuff will make it even more difficult but if one of the anti-cheats can be successfully bypassed then some amount of cheating is possible and anything running on a user’s machine is susceptible to being bypassed because the user controls the environment. Additionally I’m in favor in general of kernel AC being outright banned by OSes. It’s honestly far too invasive and it’s a race to the bottom the game devs won’t win if a cheater is determined enough. You say you’re a fan of it only running as needed but it’s in your kernel, it’s got God access, 1 micro second is too long to allow every game developer on the planet unrestricted access to my computer. Ultimately though client side AC is like DRM, when you expect the software on the user’s computer to enforce your rules you will be sorely disappointed. It will raise the bar, it will make some people give up, but it won’t prevent it.












  • I also feel incredibly uncomfortable with this. Ultimately it comes down to if you trust the application or not. If you do then this isn’t really a problem as regardless they’re getting code execution on your machine. If you don’t, well then don’t install the application. In general I don’t like installing applications that aren’t from my distro’s official repositories but mostly because I like knowing at least they trust it and think it’s safe, as opposed to any software that isn’t which is more of an unknown.

    Also it’s unlikely for the script to be malicious if the application is not. Further, I’m not sure a manual install really protects anyone from anything. Inexperienced users will go through great lengths and jump through some impressive hoops to try and make something work, to their own detriment sometimes. My favorite example of this is the LTT Linux challenge. apt did EVERYTHING it could think to do to alert that the steam package was broken and he probably didn’t want to install it, and instead of reading the error he just blindly typed out the confirmation statement. Nothing will save a user from ruining their system if they’re bound and determined to do something.




  • I have mixed feelings on this. On the one hand this is incredibly screwed up, on the other hand this kind of surveillance isn’t new in the corporate world and there really shouldn’t be an expectation of privacy on devices issued by a school, company, or anyone other than yourself. I know I would never trust a device that isn’t mine. That doesn’t remotely make it ok to do, I’m just not sure anyone will do anything about this.