All Discussions > Steam Forums > Off Topic > Topic Details
PhamTrinli 3 hours ago
This is why ring 0 anti-cheat is dangerous
Well - one reason, anyway...

Basically, hackers aren't the only ones who write malware - just the only ones who do it with malicious intent.

If you write a ring 0 (or kernel-level) driver for your software that ends up having an exploitable vulnerability, then you've potentially just enabled a BYOVD attack:

https://www.youtube.com/watch?v=pSksXALDV98

Kudos to low level learning for the video and explanation
< >
Showing 1-12 of 12 comments
cow 3 hours ago 
ring 0 anticheat is jewish
#1
Naii Starwing 2 hours ago 
And Valve is standing by KLAC like it's a holy site or a sacred relic. They picked the wrong side in this conflict. KLAC does not work. Halo MCC is loaded with bots, hackers and other rule breakers, and 343i is focused on... other things... and is uninterested in remedying this. By enforcing KLAC compliance, Valve has put its customers at the mercy of the hackers. Again. Do better, Valve.
#2
MinionJoe 2 hours ago 
Welcome to Off-Topic.

Where were you sent from?
#3
PhamTrinli 2 hours ago 
Originally posted by MinionJoe:
Welcome to Off-Topic.

Where were you sent from?
steam discussions

not sure how anti-cheat is "not relevant" to steam discussion
#4
MD 2 hours ago 
Imagine things like the fundamental framework mod used by modified server owners of an anonymous fps, loaded with a backdoor script which allows for nefarious users to enter said modified servers and wreak havoc with administrative powers.

Thats just a sample of how anti-cheat can quickly become useless anyway.

Also, many game devs sell hack, exploit, script, and rmt, through sister/shade corps, basically to recoup the money being lost to the inevitable whack-a-mole head that pops up in their place if they dont do it first. Its mainly with mmo and fps skin types but making sales can even extend all the way to modded server owners being given the go-ahead to charge rmt for perks, and queues, simply because said modders are bringing numbers into buying the base game installation with their servers popularity. Profits are profits. etc, etc. This happens in many games thesedays. Its not just a banana clicker that people are playing so they can hopefully make a buck.
Last edited by MD; 2 hours ago
#5
Silverlight 2 hours ago 
I don't mind using Linux because I'd never install any of these games anyway.
Even without an exploit the devs themselves are using this stuff like malware.
#6
MinionJoe 2 hours ago 
Originally posted by PhamTrinli:
Originally posted by MinionJoe:
Welcome to Off-Topic.

Where were you sent from?
steam discussions

not sure how anti-cheat is "not relevant" to steam discussion
Well, the automated system may be a bit touchy about terms like "cheat" after Wednesday night.

Just be glad it wasn't a ban! And welcome to OT! :KentHappy:

I wish I had more knowledge about the actual topic of discussion for you. About the limit of my associated knowledge would be with old rootkits like Starforce and SecuROM.
#7
PhamTrinli 2 hours ago 
Originally posted by MinionJoe:
Originally posted by PhamTrinli:
steam discussions

not sure how anti-cheat is "not relevant" to steam discussion
Well, the automated system may be a bit touchy about terms like "cheat" after Wednesday night.

Just be glad it wasn't a ban! And welcome to OT! :KentHappy:

I wish I had more knowledge about the actual topic of discussion for you. About the limit of my associated knowledge would be with old rootkits like Starforce and SecuROM.

I must have missed what happened Wednesday. What happened?
#8
Chalupacabaras 2 hours ago 
Ring-0 anticheat software is nothing more than a backdoor for third-party analytics. Those backdoors work both ways, TPAs need to receive user data and send instructions when certain conditions are met.

However, backdoors are still active when you're not playing games on Steam. You can do a LOT more damage to whoever's running the TPA servers, than they could do to you with proper execution of SEO mechanics. In other words, it is possible to exploit their exploit against itself and light up the whole thing like a trillion-megawatt Christmas tree.

You can even destroy their user data centers, not just their servers, by sending any malware attacks right back to them in an escalating feedback loop. After a few days, any online platform that uses the networking services (like Akamai, AzureEdge or CloudFlare) will start experiencing technical difficulties that adversely impact customers.

Valve is no different. They're so reliant on Google and Microsoft that I could brick their entire network just by uninstalling SteamClient.
#9
xorc1zt[MpC] 2 hours ago 
ring0 AC are working in the background, not bothering the user, and a little price to pay to get rid of cheaters. :boot:
#10
MinionJoe 2 hours ago 
Originally posted by PhamTrinli:
I must have missed what happened Wednesday. What happened?
American Presidential election. :sr4eagle:

So the usual accusations of shenanigans are doing their rounds.
#11
PhamTrinli 1 hour ago 
Originally posted by MinionJoe:
Originally posted by PhamTrinli:
I must have missed what happened Wednesday. What happened?
American Presidential election. :sr4eagle:

So the usual accusations of shenanigans are doing their rounds.

Honestly the thought of the election having any impact on steam or steam discussions had not even crossed my mind.
Last edited by PhamTrinli; 1 hour ago
#12
< >
Showing 1-12 of 12 comments
Per page: 1530 50

All Discussions > Steam Forums > Off Topic > Topic Details
Date Posted: 7 Nov @ 9:26am
Posts: 12
Start a New Discussion

Discussions Rules and Guidelines