Battledield now throwing an error because Valorant is already sitting in kernel memory. Time to buy your EA Battlefield PC but don’t forget your Valorant PC
Tell me how any other app uploading your entire documents directory is okay then. “Into the kernel” is largely fear mongering. Other, less trustworthy apps can do plenty of damage, and you don’t seem to care about those.
If you really want to be secure, you can’t do gaming on the same machine as your security sensitive stuff. It’s not limited to these anti-cheats.
And it’s such a weird argument to make that just because some other app uploads your entire documents directory (which to be clear is also not okay) you shouldn’t care about being forced into an potential attack vector that can take over your entire computer. Do you also leave your home server unsecured because Google is tracking you through your phone?
code running in kernel space is hugely privileged… it can open up enormous security vulnerabilities because when you’re in the kernel you can bypass a LOT of security checks and restrictions… windows code is generally pretty well tested, so is unlikely to have particularly bad bugs like RCEs etc… but these kernel mode apps aren’t nearly as rigorously tested - things like this is what lead to the crowdstrike outage
things running in the kernel can also cause a lot more damage than user space apps, because the kernel doesn’t do a lot of the error checking and validation that stops things like kernel panics
and also, security isn’t about 100% guarantees… we each have our own risk profile: regular joe gamer doesn’t need to be as security conscious as someone working for the NSA… their risks are different, because their exploitation value is different… most people only need to protect themselves from generalised attacks because they’re not going to be targeted
kernel level apps, however, blast a massive hole in the walls that keep us secure and potentially open attack vectors for generalised attacks… it’s just not worth that risk
You’re running closed source software that has permissions to read your keyboard input to other applications (other than apps running as admin), they can access your files, and and they can communicate over the Internet.
You’re inherently trusting these publishers if you’re gaming on Windows. Who is the publisher of Darkest Dungeon or Deep Rock Galactic or Lethal Company?
And anti-cheat needs a lot of access (e.g. read app memory) and sees a lot of churn to evolve with cheat engines. More churn means less thorough testing, which means higher likelihood of an exploit.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
Welcome to the largest gaming community on Lemmy! Discussion for all kinds of games. Video games, tabletop games, card games etc.
Rules
1. Submissions have to be related to games
Video games, tabletop, or otherwise. Posts not related to games will be deleted.
This community is focused on games, of all kinds. Any news item or discussion should be related to gaming in some way.
2. No bigotry or harassment, be civil
No bigotry, hardline stance. Try not to get too heated when entering into a discussion or debate.
We are here to talk and discuss about one of our passions, not fight or be exposed to hate. Posts or responses that are hateful will be deleted to keep the atmosphere good. If repeatedly violated, not only will the comment be deleted but a ban will be handed out as well. We judge each case individually.
3. No excessive self-promotion
Try to keep it to 10% self-promotion / 90% other stuff in your post history.
This is to prevent people from posting for the sole purpose of promoting their own website or social media account.
4. Stay on-topic; no memes, funny videos, giveaways, reposts, or low-effort posts
This community is mostly for discussion and news. Remember to search for the thing you’re submitting before posting to see if it’s already been posted.
We want to keep the quality of posts high. Therefore, memes, funny videos, low-effort posts and reposts are not allowed. We prohibit giveaways because we cannot be sure that the person holding the giveaway will actually do what they promise.
5. Mark Spoilers and NSFW
Make sure to mark your stuff or it may be removed.
No one wants to be spoiled. Therefore, always mark spoilers. Similarly mark NSFW, in case anyone is browsing in a public space or at work.
6. No linking to piracy
Don’t share it here, there are other places to find it. Discussion of piracy is fine.
We don’t want us moderators or the admins of lemmy.world to get in trouble for linking to piracy. Therefore, any link to piracy will be removed. Discussion of it is of course allowed.
load on boot INTO THE KERNEL is the main issue… this isn’t “just another executable”
Tell me how any other app uploading your entire documents directory is okay then. “Into the kernel” is largely fear mongering. Other, less trustworthy apps can do plenty of damage, and you don’t seem to care about those.
If you really want to be secure, you can’t do gaming on the same machine as your security sensitive stuff. It’s not limited to these anti-cheats.
Until it actually gets exploited.
And it’s such a weird argument to make that just because some other app uploads your entire documents directory (which to be clear is also not okay) you shouldn’t care about being forced into an potential attack vector that can take over your entire computer. Do you also leave your home server unsecured because Google is tracking you through your phone?
code running in kernel space is hugely privileged… it can open up enormous security vulnerabilities because when you’re in the kernel you can bypass a LOT of security checks and restrictions… windows code is generally pretty well tested, so is unlikely to have particularly bad bugs like RCEs etc… but these kernel mode apps aren’t nearly as rigorously tested - things like this is what lead to the crowdstrike outage
things running in the kernel can also cause a lot more damage than user space apps, because the kernel doesn’t do a lot of the error checking and validation that stops things like kernel panics
If you really want to be secure, you can’t do gaming on the same machine as your security sensitive stuff. It’s not limited to these anti-cheats.
that is wildly inaccurate. do you have a source?
and also, security isn’t about 100% guarantees… we each have our own risk profile: regular joe gamer doesn’t need to be as security conscious as someone working for the NSA… their risks are different, because their exploitation value is different… most people only need to protect themselves from generalised attacks because they’re not going to be targeted
kernel level apps, however, blast a massive hole in the walls that keep us secure and potentially open attack vectors for generalised attacks… it’s just not worth that risk
You’re running closed source software that has permissions to read your keyboard input to other applications (other than apps running as admin), they can access your files, and and they can communicate over the Internet.
You’re inherently trusting these publishers if you’re gaming on Windows. Who is the publisher of Darkest Dungeon or Deep Rock Galactic or Lethal Company?
And anti-cheat needs a lot of access (e.g. read app memory) and sees a lot of churn to evolve with cheat engines. More churn means less thorough testing, which means higher likelihood of an exploit.
“needs” might be debatable… i’m just don’t think the trade-off is worth it (and thus don’t play games that require kernel-level access)
It needs it to accomplish its goals. Whether its goals are worth accomplishing is a separate discussion entirely.