Not sure if someone said it
But you can signout of your devices from account settings, you can do it from your phone if you like
Regardless dose Steam Cafe not auto sign you out?

Originally posted by Eiswolfin:

Originally posted by brian9824:

They really don't, in fact they'd rather you NOT use them, as they can all be installed with key loggers and you wouldn't know....

That isn't true, if Valve didn't want people to use them, then they wouldn't have an entire program to promote the use of cafe's.

https://partner.steamgames.com/pccafe#explore_steamworks

in the section where you can click the left/right arrow to see more info one slide says this
.

The primary function of the steam cafe was to run an internet cafe, not allow others to use their own accounts at a cafe

https://partner.steamgames.com/doc/sitelicense

The PC Café Program is the official way to operate Steam games, VR experiences, and software within your café, school, museum, showroom, or other public performance venue. The program leverages a host of Steam tools that makes it easy for licensees to administer and manage the service.

There is some sort of functionality to linking your account in a way that you can synch progress/purchases to it which has never been made public on how it works, but its NEVER a smart idea to enter your personal information on a public computer that you have no idea is clean from viruses, trojan's, etc.

Nothing Valve can do to mitigate the risk of people entering all their credentials onto a machine with a keylogger that they don't control except by encouraging users to not login to machines outside their control.

Originally posted by Eiswolfin:

Since Valve is literally doing that, it is Valve's responsibility and obligation to do what they must to mitigate the risks.

You know how products/services often have warning labels? This is little different; they can give you a tool, but being somewhere not in their control or otherwise doesn't mean they have to go out of their way for individuals that want to risk using computers that aren't theirs.

Originally posted by Eiswolfin:

They can add software to the client to look for keyloggers

That would only detect a small amount, which could in many cases be more disguised. That also doesn't prevent the other kind which is entirely undetectable.

Originally posted by Eiswolfin:

they can publish a list of officially support cafes that Valve have personally, with actual humans doing it, vetted the cafes, and anything else they can think of doing.

If something happens to go on there, since adding malware or any form of attack can be done at a moment, guess what happens? Legal shenanigans. They're not going to put themselves into a position of vetting and saying a location is ok when at any moment it can be infiltrated.

Originally posted by Eiswolfin:

If Valve is not doing everything they can to mitigate the risks for the customer then Valve failing their obligation and responsibility.

They already do so much for the client itself, security is ultimately in the hands of the users, not Valve. People give away their logins, people give away their guard codes. Stop trying to push all the responsibility onto Valve and realize that users are ultimately the weakpoint of security, not those that make, create or sell something.

Originally posted by Wolf:

Originally posted by Zero, Dark Knight:

yep if you value safety, don't use public computers to input sensitive data.
Public computers are for basic searches, not gaming etc.

Not always true, not everyone is a thief in the night trying to steal your information in public computer Cafe.

You don't need everyone to be a thief. Just one person.
And it doesn't take very long to put a Keylogger on a machine.

Originally posted by Black Blade:

Not sure if someone said it
But you can signout of your devices from account settings, you can do it from your phone if you like
Regardless dose Steam Cafe not auto sign you out?

You're assuming that there's a proper STeam Cafe setup

The sad part is i could put a keylogger on anyone's machine in under 10 seconds if i had physical access to their computer that would be completely undetectable by steam or any other software.

Hence why you should always treat any PC outside of your control as suspect.

Originally posted by Eiswolfin:

Originally posted by brian9824:

The sad part is i could put a keylogger on anyone's machine in under 10 seconds if i had physical access to their computer that would be completely undetectable by steam or any other software.

Hence why you should always treat any PC outside of your control as suspect.

Internet cafe's can prevent installations from happening that isn't coming from Steam.

If they vet the cafe's in their program, personally vet them, not some robot doing it, and publish that list as an official partner, that would massively reduce risk. Sine Valve supports this program, its their responsibility and obligation to reduce the risk as much as possible.

Do you really believe most internet cafes are even at the level of having the idea of even how to prevent foreign installs?

Regardless, if an attacker wants in, basic policy/protections aren't good enough for a determined attacker. They'll always find a loophole in security, and the rest goes downhill. That, is a reason for valve to not "vet" or otherwise say someplace is ok, when there is absolutely no way they could know that it is, and anything after with such could add liability.

If you want the best security, users need more education and to not use public computers unless they have a second account made just for the cafe that wont lose anything of value.

Originally posted by Eiswolfin:

Originally posted by brian9824:

The sad part is i could put a keylogger on anyone's machine in under 10 seconds if i had physical access to their computer that would be completely undetectable by steam or any other software.

Hence why you should always treat any PC outside of your control as suspect.

Internet cafe's can prevent installations from happening that isn't coming from Steam.

If they vet the cafe's in their program, personally vet them, not some robot doing it, and publish that list as an official partner, that would massively reduce risk. Sine Valve supports this program, its their responsibility and obligation to reduce the risk as much as possible.

Sorry, there is this thing called hardware key loggers, can be installed in seconds and are untraceable, and undetectable by any software. The only way to identify them is to physically inspect the machine. Heck there are keyloggers built into the keyboard itself that the only way you could find it is to dismantle the keyboard

Also again, steam isn't going to fly people around the world to inspect cafe's on a daily basis. Vetting a cafe is pointless as a cafe that is clean today, can have keyloggers and other malicious devices installed tomorrow, and opens steam up to legal liability.

Again, its not valves responsibility to monitor what people do outside of their program, nor is it even their legal right

Originally posted by Eiswolfin:

Originally posted by brian9824:

Sorry, there is this thing called hardware key loggers, can be installed in seconds and are untraceable, and undetectable by any software. The only way to identify them is to physically inspect the machine. Heck there are keyloggers built into the keyboard itself that the only way you could find it is to dismantle the keyboard

Also again, steam isn't going to fly people around the world to inspect cafe's on a daily basis. Vetting a cafe is pointless as a cafe that is clean today, can have keyloggers and other malicious devices installed tomorrow, and opens steam up to legal liability.

Again, its not valves responsibility to monitor what people do outside of their program, nor is it even their legal right

Valve can vet them without sending people around the globe, they can be vetted the the cafe owner giving lots of information about their practices, procedures, protections being used, and anything else that Valve can think of.

A part of procedures can also include inspection of every computer as soon as its no longer in use for an example.

Valve is already opened up to legal liability be supporting these cafes anyways, as long as they are officially supporting them, which they are in fact doing, they are already legally liable. They can mitigate their liability through vetting the cafes and publishing the list so customers know where it is safe to go to.

Yes, it is Valve's responsibility and obligation to monitor these cafe's because this is an officially supported system that Valve is doing.

Again Valve is not going to certify businesses are safe, they can lie, etc and Valve has no way to know or verify and it makes valve legally liable if they say its safe when its not.

Also again, under no law anywhere in the world is valve liable for anything other then their own software. If an internet cafe allows someone to put a physical keylogger that has nothing to do with their software Valve is in no way liable, the owner of the cafe is.

The only system valve supports is their own software. Not the entirety of the computer and the external hardware the system is installed on. I mean by your logic Microsoft is responsible since they support the system steam is installed on....

Originally posted by Eiswolfin:

Doesn't change the very fact that Valve does in fact promote and support these cafe's that include advertising that users can use their own accounts there as well. Since Valve is literally doing that, it is Valve's responsibility and obligation to do what they must to mitigate the risks. They can add software to the client to look for keyloggers, they can publish a list of officially support cafes that Valve have personally, with actual humans doing it, vetted the cafes, and anything else they can think of doing. If Valve is not doing everything they can to mitigate the risks for the customer then Valve failing their obligation and responsibility.

This is like Microsoft selling an educational license to a school, and you blaming Microsoft for your kid not getting into Harvard

Steam is not selling "how to make a cyber cafe" licenses

Steam is selling "how can you use steam in your cyber cafe" licenses

They have no say in how someone operates their cyber cafe. They have a say in how their software operates and how cyber cafes should licenses games for use in their cafes

Steam is not a cybercafe turn key solution company. They are not responsible for how a cybercafe is run.

Originally posted by Start_Running:

You're assuming that there's a proper STeam Cafe setup

Can't say I used many internets cafes (And steam one only in my own household)
Once I did use normally cleared out the PC at the end of the user as part of the system, so it basically returns to state 0 between users, meaning even if you were login before, it should be deleted and not kept running. Is that not common?
As it does sound like they're talking about something with a proper setup there, if they are sus on it, Steam → Settings → Account → Don't remember user on this computer checked, then if they disable access to try to restart the PC, that means you log out.
And that is besides the ability to logout outside of the cafe using a phone or laptop that I said before

Anyway I was sure I read Steam cafe before on the title guess miss read

Originally posted by Black Blade:

Originally posted by Start_Running:

You're assuming that there's a proper STeam Cafe setup

Can't say I used many internets cafes (And steam one only in my own household)
Once I did use normally cleared out the PC at the end of the user as part of the system, so it basically returns to state 0 between users, meaning even if you were login before, it should be deleted and not kept running. Is that not common?

The steam local licensing server, required to use the cafe licenses, auto-logs out users after a period of inactivity

https://partner.steamgames.com/doc/sitelicense/licensees/gettingstarted/licensemodelpc

Can I turn off the auto logout feature in my network?

The Steam PC Café Server will make sure that inactive Steam accounts will be logged off automatically after a certain time has passed. We strongly recommend that you do not turn off this feature, as it is very valuable for customers that have left the PC without logging out of their Steam account. If you do choose to deactivate this feature, we recommend that you let your customers know. To deactivate the feature, you will need to navigate to the server file location and open steamconsole.cfg with a text editor. Adding the following command line will deactivate the auto log off within your network, when the server is active: @bSiteLicenseAllowCachedClientCredentials 1

Originally posted by Satoru:

The steam local licensing server, required to use the cafe licenses, auto-logs out users after a period of inactivity

https://partner.steamgames.com/doc/sitelicense/licensees/gettingstarted/licensemodelpc

So ya like I remmbered