- cross-posted to:
- steam@lemmy.ml
- cross-posted to:
- steam@lemmy.ml
Steam store pages received a new Anti-cheat field. Disclosure is mandatory for kernel-level anti-cheat solutions. And recommended for other anti-cheat solutions (like server-side or non-kernel-level client-side).
The field discloses the anti-cheat product, whether it is a kernel-level installation, and whether it uninstalls with the product or requires manual removal to remove.
atro_city ( @atro_city@fedia.io ) 50•3 months agoDon’t they mean malware?
GetOffMyLan ( @GetOffMyLan@programming.dev ) 15•3 months agoNo
Sl00k ( @Sl00k@programming.dev ) English5•3 months agoI’ve been a heavy competitive gamer for 10 years now, kernel anticheat has been an incredible blessing developed these last few years despite every non-player calling it malware. Meanwhile all the consistent players rejoice and newer players don’t have to deal with constantly wondering if someone’s hacking every single lobby.
You can see just how much this has directly impacted high elo League of Legends players via Riots dev blog after their implementation. The most notable:
more than 10% of Master+ games had a cheater in them.
filcuk ( @filcuk@lemmy.zip ) 3•3 months agoDoes anyone actually have a suggestion for a less intrusive alternative?
Do you realise how difficult and ineffective server-side anti-cheat can be?
Although it would be the only way to actually try and detect someone using a second machine for hacking/inputs.
All of this will become an increasingly uphill battle for the devs. pokexpert30 ( @pokexpert30@lemmy.pussthecat.org ) 6•3 months agoServer side AC is hard, yes, but it’s not less effective than client-side… As it’s security by obfuscation. If you can’t genuinely detect from server view the difference between an human and a cheater, that means a cheater can create a cheat controller (either hid spoof or even mechanicallly moving a mouse) that will spoof the client side too.
NEVER TRUST USER INPUT.
Matt ( @DieserTypMatthias@lemmy.ml ) 5•3 months agoWrite it in language that obfuscates code by default (Rust does that) and then it obfuscates again. Or do it the Valve way. Even though is very easy to crack their anticheat (the hacks and DLL injectors are basically for free both on Windows and Linux), they have other measures in place. E.g. Votekicking players, Overwatch and matchmaking against other hackers.
ReversalHatchery ( @ReversalHatchery@beehaw.org ) English1•3 months agowhere did you read it that rust obfuscates the code?
you want vmprotect and such for that
Matt ( @DieserTypMatthias@lemmy.ml ) 1•3 months agoIf security analysts have issues decompiling Rust malware, then it’s obvious that it obfuscates the code. All they could get was an ugly Assembly. You can try it yourself by downloading Ghidra/Cutter/any other compiler.