Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
No, they are getting a summary of volume levels for the different frequencies, they cannot "listen" to your audio, all they get is data like "bass is at 50% volume right now, treble is at 75% volume right now" which allows creators to create audio visualizers but nothing more.
No.
Yes, they can connect to local IP addresses. I don't think your scenario is especially realistic but it's in theory feasible. If this is a realistic and huge concern for you, don't use web-based wallpapers or look at the source code before using them.
And yeah, I admit that the router maliciousness scenario is very minor. And I don't have a default router password. And I doubt that any wallpapers actually exploit this.
However, any chance that we could get a global settings toggle to block web access for wallpapers? To totally sandbox Web wallpapers. Would give total peace of mind.
Now I can use web wallpapers with a lot more peace of mind that it won't be able to do anything bad.
As for a program feature: I don't just worry about malicious wallpapers abusing the routers. That's kind of unlikely. I worry more about wallpapers downloading ads in the background to earn money for their authors. Or being coded to send spam emails or web form submissions from my IP. Or running crypto miners in the wallpaper (which would need web access). All of that would be doable by malicious authors, since it's a full JavaScript engine with web access... There could also be jailbreak exploits that haven't been found yet.
I've now blocked wallpaper internet/network access. Thanks for the tip! <3
Wallpaper Engine is very well designed with its Video and Scene performance and security. Web seems pretty secure too, but there are risks that connection blocking eliminates. :-)
(And then there's of course the riskiest kind, Application based wallpapers, which could literally be malware, so I'll never use those. Luckily there aren't really any wallpapers of that kind on the workshop. Most advanced wallpapers are implemented in the web engine instead, yay. :-))
Seriously great work on Wallpaper Engine. I was skeptical at first but loved it immediately.
Thanks again!
Hi. I am also using this with security in mind. Did you end up losing any functionality by blocking it in the firewall?
Hi, Tim. I am trying to do what this person did and disable internet access for Wallpaper Engine. In my antivirus firewall, I blocked connections for wallpaper32.exe, wallpaper64.exe, launcher.exe, as well as wallpaper32.exe and wallpaper64.exe from the distribution folder. I have also blocked webwallpaper32.exe from the bin folder. When I open the program, go the the workshop tab and search for something, I get results. Does this mean that the blocking did not work? I noticed that when searching, it said "Waiting for Steam to respond". I am inclined to think that the search is done through Steam. My question is what do I need to do to block the app from internet access altogether (just keep the ability to swap between the wallpapers I have already downloaded) like the person above me tried to do? Would not doing so present any potential security risk?
This is how you disable the Steam integration, it has nothing to do with the firewall: https://help.wallpaperengine.io/en/steam/ingame.html However this isn't "necessary" if you are concerned about internet access since Wallpaper Engine is accessing Steam through the Steamworks SDK just like every single game on Steam does.
The OP should consider using a firewall that deserves the name. What M$ calls firewall I call some kind of joke. I'm not talking about configuring iptables the hardcore way, just some decent software firewall for Windows like Comodo Internet Security for example. Even if you're not that skilled with security stuff Comodo is relatively easy to setup and has a nice manual where everything is explained pretty good.
Just a thought if you are concerned about security stuff on a Windows base.
Thank you for the quick response. That is exactly what I am looking for. So from what I understand, disabling Steam integration will prevent any of the wallpapers already stored from accessing the internet as well, making the program offline only. Is that correct?
- Blocking webwallpaper32.exe in the firewall will prevent web type wallpapers from accessing the internet.
- Disabling the Steam integration will disable the Workshop/achievement/screenshot functions meaning you cannot download new wallpapers from the Workshop. Basically it will disable anything related to Steam.
So would doing both achieve what I mentioned?
Background changed to white. Seems like it worked. Thanks!
I have another question. I found a firewall rule named "sheep" in my antivirus firewall, corresponding to the sheep default project. I don't remember seeing it at first. Is it there by default? I removed the sheep folder, but the rule still seems to be there. Would removing that rule break anything considering I deleted the sheep files?
There seems to be no trust rating for sheep.exe, but there is positive trust rating for the other wallpaper engine files in my antiviruses' firewall. Is there supposed to be an exe for that wallpaper?