Install Steam
login
|
language
简体中文 (Simplified Chinese)
繁體中文 (Traditional Chinese)
日本語 (Japanese)
한국어 (Korean)
ไทย (Thai)
Български (Bulgarian)
Čeština (Czech)
Dansk (Danish)
Deutsch (German)
Español - España (Spanish - Spain)
Español - Latinoamérica (Spanish - Latin America)
Ελληνικά (Greek)
Français (French)
Italiano (Italian)
Bahasa Indonesia (Indonesian)
Magyar (Hungarian)
Nederlands (Dutch)
Norsk (Norwegian)
Polski (Polish)
Português (Portuguese - Portugal)
Português - Brasil (Portuguese - Brazil)
Română (Romanian)
Русский (Russian)
Suomi (Finnish)
Svenska (Swedish)
Türkçe (Turkish)
Tiếng Việt (Vietnamese)
Українська (Ukrainian)
Report a translation problem
Discussions Rules and Guidelines
Report this post
You should trust the software running at l0 !
Even if you think you can trust this Anti Cheat software, what if something else runs on your system that can exploit it? With, say, the row hammer attack vector, for instance????
Most people don't see how badly this can go. I don't believe in god, and I don't believe in the "goodness" of this Anti Cheat that would have beyond god powers over your entire OS and anything running on it. We have those rings for a reason. Hello.
Most of the things you listed can be easily done in usermode aswell (Like injecting code into another application, keylogging or even hiding itself in another application)
My concern is the additional attack vector by etablishing a peer to peer connection for multiplayer session, too. A new type of "lock" attract "lockpickers" just for sports.
The thing is that dac itself doesn't have internet access, so remote code execution over the driver shouldn't possible and I'd be much more worried about remote code execution in (for example) csgo due to the recent source code leak.
That's why people experience all of the sudden BSOD, CTD, FPS drops and hardcrashes.
Like yeah, I can get not liking them shoving in denuvo all of a sudden... But there's a reason ANTI CHEAT in particular would use kernel level
I'm no expert on the subject but afaik anti cheats that don't use kernel level are trivial for cheaters to bypass, to the point it might as well not even be there.
I agree in what they have done is poor taste, but I'm still struggling to get on board with this fear mongering stuff
I don't like taking risks when the failing risk is that my computer is bricked.
like yeah with D:E in particular it sucks.. But I can think of other games I have in the past that I would of rather not updated and kept the same build I already had.
If this was an option by default I'd be so happy
Especially the BSOD part is true, in that any unhandled exception in a kernel driver will cause the whole windows kernel to crash.
But because the driver is not installed (no driver is) and only loaded once you fire up doom just restarting your pc basically reloads everything and no damage to any windows files or your pc is done.
of course virtually any vendor can opt for complete access to our computers to easily solve some issue, that doesn't mean it is ok or the best choice or even a best practice
there is literally no reason to install root level admin access spyware on our computers for the sole purpose of combating cheating for a very small playerbase actually engaged in battlemode - just slack and lazy devs trying to shortcut their duties and costs - likely the dev/financial leadership more than the groundwork devs themselves
The normal way of combating cheaters these days is to use a kernel driver. Why else would both biga anticheats namely battleye and easyanticheat use one.
When you would do a usermode-only anticheat, it could only detect cheats from usermode, but even inexperienced cheaters use kernel mode cheats these days and these would then be 100% undetectable.
This software is doing the opposite of what an effective piece of malware would do.
It doesn't hide its self. It appears when you run specific commands to show kernel drivers, it presumably shows up as a running program in task manager and it's presence was announced by bethesda in the update's changelogs. It doesn't hide its self and you've been told that it's added into the game.
Kind of funny for a piece of malicious software to announce that it's in your system eh?
It also has to be running at all times.
Funny how DAC only runs when the game is running? You'd think that if they wanted to do naughty things with it, it would run 24/7 like Vanguard initially did so it can to nefarious things to your computer at all times.
You (user) Ring level 3
Applications (like games steam etc) Ring level 3
Some hardware drivers (non-primary and some others) Ring level 2
Primary drivers (like video card) Ring level 1
Host OS (your OS) Ring level 0
Denuvo starts up in Ring 0 BEFORE THE OS. It has more privileges then your OS.
It can change everything in your CPU, if can look at memory adress.
This is the single most dangerous thing in the entire gaming industry. This goes well beyond microtransactions or anything else. Immediatly delete the game, and look on the internet how to remove denuvo.
It is shown to be running even after deletion of the game, and running when the game isn't on.
Guys seriously don't do this losing bank accounts or your complete identity is not something you want, especially not over a f-ing game.