this post was submitted on 24 Sep 2024
5 points (85.7% liked)
Technology
59651 readers
2617 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
https://en.wikipedia.org/wiki/BattlEye
Fuck cheaters, but also FUCK kernel level shit, it's possible to make a good AC without fucking around in the kernel.
I don't even install third party Antivirus' that hook into the kernel because of all the issues it causes. 80% of all BSODs I've traced back have always had a root cause because of some shit piece of software fucking around in the kernel. 15% is shitty drivers.
Kernel AVs and ACs actually act like malware in of itself with the types of hooks and interactions it performs. Anything operating at the kernel level can basically see just about everything you or your computer is doing
Fuck kernel level AC
CrowdStrike has entered the chat.
They've been a boom to the cyber security industry though, even though it wasn't a virus and didn't really damage anything simply the fact that it happened has forced management to actually appreciate the importance of cyber security, and cyber integrity.
They are hiring like crazy now.
Now if only the United States could be convinced that remote working isn't the work of the devil, we might be in for a productive few decades in the technology space. No need for AI
What if the cheat runs in the kernel? I am also against these extremely invasive anti-cheat measures, but it must be clear to everyone that the cheat developers and users have no qualms about this.
A user level AC can do shit all against that if the cheat runs in ring 0.
A) They can actually invest in server-side detection
B) Cheats running at ring0 aren't invisible, unkillable maybe, but AC just needs to detect to ban/kick user
There's no excuse for kernel AC, it's just a cheap, lazy shortcut
Every rootkit ever disagrees with that statement.
I'm not deep enough in the topic to be able to judge this, but i would guess the needed extra hardware is simple not worth it. especially in games with many players or complex physics i would guess that could lead to considerable load on the servers.
Plus, server side is not able to catch things the client manipulates on his side. e.g. graphical data to make walls transparent. The server could at most catch the player abusing this knowledge, but if he is smart about it, the server has no way to ever notice.
Clarification, to the game client, the cheat has to interact with the actual game process at some point. Rootkits try to interact with other processes as little as possible until instructed otherwise
Nope, the servers are already beefed up to just handle the players and physics as-is, adding detection routines to determine "Hey, this player is flying 100s of feet in the air and there's no flying in this game" would be like a drop in the bucket
Do you realize how much cheating just some server-side checks would cut down? The most egregious ones are the ones people complain about, and hate, the most. The ones who instakill you or fling you far above the map or shoves you underground. The "smart ones" can be taken care of manually based on reports.
There will never ever be a 100% cheat proof game kernel AC or not. Nothing is unhackable.
It's all about doing it as cheaply as possible and offloading to a third party to handle so they can wash their hands