I was looking for a pretty niche indie game, but I wanted to try it out before purchasing… The only link that still works is made by a user who made their account 4 years ago and about 700 posts, but also 1 warning.
How do I know whether or not I should trust this link?
- viking ( @viking@infosec.pub ) English19•4 months ago
Is the game older, that no active links remain? In that case any up to date antivirus should find whichever malware might be embedded in the game easily.
- bobs_monkey ( @bobs_monkey@lemm.ee ) English13•4 months ago
Better yet, launch it in a VM with an antivirus
- WallEx ( @WallEx@feddit.de ) English12•4 months ago
If you want to be very sure: no Internet connection. There are some ways to escape a VM, but its not very likely.
- Appoxo ( @Appoxo@lemmy.dbzer0.com ) English3•4 months ago
I’d believe that such a malware with those zero days would target higher value targets than gamers looking for 60€ entertainment.
- aStonedSanta ( @aStonedSanta@lemm.ee ) English3•4 months ago
Depends. Smart people have children who do stupid shit lol.
- Appoxo ( @Appoxo@lemmy.dbzer0.com ) English2•4 months ago
True.
- WallEx ( @WallEx@feddit.de ) English3•4 months ago
Yep, was just meant as a “I want it 100% secure” way. Not saying its likely.
It’s not that old, just a bit niche.
- Diurnambule ( @Diurnambule@jlai.lu ) English6•4 months ago
Or run it in Linux with proton. Same as VMSo it seem I was mistaken to feel safe using proton/wine. I stand corrected.
- WeLoveCastingSpellz ( @WeLoveCastingSpellz@lemmy.dbzer0.com ) English23•4 months ago
Wine is not an emulator. Windows malware works on wine/proton
- Diurnambule ( @Diurnambule@jlai.lu ) English8•4 months ago
I didn’t knew, thanks
- meseek #2982 ( @ultratiem@lemmy.ca ) English3•4 months ago
Most don’t actually because Wine Is Not an Emulator. It’s a stripped down windows environment that likely doesn’t have the necessary DLLs installed or the file structure to run it. Moreover, WINE doesn’t really do things by itself. If anything did run under it, you’d see a wine-server process spin up.
It’s definitely not 100% safe, but it’s also not a gaping hole either.
- Vojtěch Fošnár ( @vfosnar@beehaw.org ) English21•4 months ago
It really isn’t, malware still can easily break out as wine nor proton were never designed for isolation in the first place. Easy example is the Z drive giving program access to the whole Linux filesystem.
- Diurnambule ( @Diurnambule@jlai.lu ) English8•4 months ago
Ho I see, I stand corrected. Thanks
- dracs ( @dracs@programming.dev ) English10•4 months ago
Proton is not the same as a VM. It has direct access to your filesystem. It could delete your entire home directory if it wanted to.
- Yglorba ( @Yglorba@lemmy.dbzer0.com ) English4•4 months ago
Although, as a practical matter it provides some protection in the sense that most malware is probably not designed to do that and will, at worst, fuck up the Windows environment created by Wine / Proton. It’s not something to rely on but it is a bit safer than running something directly on your home machine as a practical matter.
(Although I guess that depends what the malware does. If it searches every document on your system for credit card numbers and sends them to Albania, that would probably still work.)
- Berny23 ( @Berny23@lemmy.sdf.org ) English7•4 months ago
Here is a comment I made in another thread:
For pirated games, I recommend Bottles installed as a flatpak. That’s because it has a per-game toggle for sandboxing the app, not giving it access to your complete home folder and optionally no network access or audio output.
Even when using trusted sources, you can never be safe enough. Bottles with sandboxing will at least protect your files from crypto trojans and prevent you from becoming part of a botnet. It should not have any impact on performance.
Remember to put all installer files anywhere inside the prefix folder, otherwise sandboxing denies access to them. After creating an empty game entry in Bottles, check the 3 dots menu for the option to open it in your file explorer.
- Venia Silente ( @veniasilente@lemm.ee ) English2•4 months ago
As an extra layer of security, always run wine / proton as a separate user, for example via sudo, or even better via schroot, which won’t let the “Z:/” drive see your entire filesystem.
- JackGreenEarth ( @JackGreenEarth@lemm.ee ) English3•4 months ago
I find Z drive seeing my filesystem a useful feature, for mods for example.
- Diurnambule ( @Diurnambule@jlai.lu ) English1•4 months ago
Never player with Chroot need to look into it.
- SimpleBro ( @SimpleBro@lemy.lol ) English5•4 months ago
700 posts is usually fine. I tend to trust repacks less though.