311
submitted 1 year ago* (last edited 1 year ago) by xavier666@lemm.ee to c/linux_gaming@lemmy.ml

From the article

Microsoft has officially announced its intent to move security measures out of the kernel, following the Crowdstrike disaster a few short months ago. The removal of kernel access for security solutions would likely revolutionise running Windows games on the Steam Deck and other Linux systems.

top 50 comments
sorted by: hot top controversial new old
[-] HRDS_654@lemmy.world 144 points 1 year ago

I'm okay with that. I don't want some program I don't control having access to the kernel of my system.

[-] ChillPill@lemmy.world 117 points 1 year ago

game developers and publishers are hesitant to enable Linux compatibility,

And I am hesitant to spend money on their games.

[-] Swedneck@discuss.tchncs.de 57 points 1 year ago

running linux is a great way to automatically filter out most of the shit games, if it won't even run in proton then you generally have to be doing some bullshit with the code and thus aren't worth my time and certainly not my money.

[-] akiradavis@reddthat.com 9 points 1 year ago

But us in the VR community is still Windoze.

[-] MentalEdge@sopuli.xyz 27 points 1 year ago* (last edited 1 year ago)

VR games work just fine in proton, as long as you're on Vive or Index.

It's the the headsets that don't support linux, unfortunately.

[-] fhein@lemmy.world 3 points 1 year ago

I've never got my Vive to work well in Linux, even though I'm using X which supposedly still is better for gaming that Wayland.

[-] MentalEdge@sopuli.xyz 9 points 1 year ago

There are a lot of kinks around VR on linux. Wayland has been better in my experience, but I still can't believe SteamVR on linux just doesn't have power management for the base stations implemented. Like, it works, there's a fucking python script that can do it! But not via SteamVR.

I use an app on my phone to turn my base stations on and off.

Here's hoping the Deck and whatever Deckard turns out to be means Valve is in the process of improving the situation.

[-] haagch@lemmy.world 3 points 1 year ago

For the Index and 2.0 Basestation it's supposed to work for a while now https://github.com/ValveSoftware/SteamVR-for-Linux/issues/320#issuecomment-1835581128

[-] Andromxda@lemmy.dbzer0.com 9 points 1 year ago

The VR community is a fairly small niche market

[-] akiradavis@reddthat.com 2 points 1 year ago

We are small but still exists...

Once there is a way to properly play VR games without too much configuration, I will jump back to Linux. But for now, Windows 11 IOT edition is not too bad. Specifically the IOT edition without all the telemarketing and CoPilot crap.

[-] MentalEdge@sopuli.xyz 18 points 1 year ago

Also more than half of games with AC do in fact run on linux right now, and the world hasn't ended.

[-] InnerScientist@lemmy.world 5 points 1 year ago

Hasn't ended yet, as soon as we reach 75% the simulation will end.

[-] SynopsisTantilize@lemm.ee 2 points 1 year ago

The second someone finds a way to hack the simulator it becomes uninteresting. Like when I cheat in GTA SP and then suddenly never play it again.

[-] Karyoplasma@discuss.tchncs.de 14 points 1 year ago

I would reply with something like "Arrrr matey" but new games aren't even worth pirating anymore.

[-] vinnymac@lemmy.world 96 points 1 year ago

And nothing was lost.

[-] Andromxda@lemmy.dbzer0.com 75 points 1 year ago

Could very well be possible. Apple did the same thing with macOS Catalina in 2019. Since then, there are no kernel extensions, meaning no third-party code running at kernel level. This greatly improves the security of macOS, and other desktop operating systems should do the same.

[-] InverseParallax@lemmy.world 4 points 1 year ago

They have a hardcore micro kernel though, windows and Linux are a long way off from that Valhalla, gnu Mach notwithstanding.

[-] Bookmeat@lemmy.world 56 points 1 year ago* (last edited 1 year ago)

It's probably going to move to hardware attestation similar to what Android and iOS are doing. This may or may not be a good thing.

[-] teawrecks@sopuli.xyz 32 points 1 year ago

Yeah, idk why everyone seems to legitimately think devs are going to just quietly revert back to usermode anticheat. I could see Riot patching an actual root kit before that happens.

But yeah, more likely MSFT will lobby for hw that is more annoying than secure boot or TPM to get working with linux, every windows app after that point will rely on it "because turnkey security!", and if you ever manage to disable it none of those apps will work on your machine in any OS (if they even worked through proton at all).

load more comments (2 replies)
[-] Andromxda@lemmy.dbzer0.com 5 points 1 year ago

If it works on Linux, I'm fine with it, since I'm not cheating. Just like hardware attestation works on GrapheneOS, because it doesn't decrease the security of Android, in fact, it greatly improves it.

[-] Bookmeat@lemmy.world 12 points 1 year ago

It's about control. And monopolies love control (governments, too). If we let them, they'll take it and then we're screwed.

[-] Andromxda@lemmy.dbzer0.com 4 points 1 year ago

Could you elaborate? I don't really see how a hardware attestation feature would take away any of your control? Android phones have had it for a long time, and even Google still allows you to install alternative operating systems on their Pixel phones. GrapheneOS even uses the hardware attestation feature to your benefit, by including the Auditor app, which you can use to verify the integrity of your device.

[-] phar@lemmy.ml 5 points 1 year ago

Can anyone give an ELI5 on how hardware attestation works or is implemented on current OSes?

[-] sunzu2@thebrainbin.org 50 points 1 year ago

Believe it [or] not battlefield still won't work on Linux because fuck you peasants

[-] wazzupdog 55 points 1 year ago

If it doesn't run on Linux it doesn't deserve my money at this point.

[-] Sanguine@lemmy.world 35 points 1 year ago* (last edited 1 year ago)

Its so liberating to just accept this mindset everyhwhere. I personally feel so comfortable voting with my wallet I don't even feel a sense of missing out anymore.

[-] pemptago@lemmy.ml 14 points 1 year ago* (last edited 1 year ago)

💯 There's more software, games, movies, music, people, etc than I'll ever be able to interact with in my entire life. So much good to be found when you don't waste time on all the extractive, disrespectful, enshittified BS. Edit: dropped word.

load more comments (1 replies)
[-] sunzu2@thebrainbin.org 12 points 1 year ago

i agree and i don't buy unless it runs on linux now... but my steam library was purchased when i was on microshit's dicks.

but sometimes we got to take the L and move on. I just won't buy EA trash going forward.

[-] wazzupdog 4 points 1 year ago

Same for me, i still have win 10 installed and updated (for the couple things i haven't migrated).

[-] fhein@lemmy.world 3 points 1 year ago

Unfortunately most Battlefield games worked fine with Wine/Proton for years since EA used server side AC, so they already have our money.

load more comments (1 replies)
[-] blindbunny@lemmy.ml 14 points 1 year ago* (last edited 1 year ago)

There was news that battlefield one would stop working because they were implementing fairfight(?) but it's still working and someone in game chat told me it wasn't kernel level in battlefield one version of the anti cheat. Any facts to this?

[-] fhein@lemmy.world 4 points 1 year ago

I think FairFight is the old anti-cheat, which at least used to be server side only.

[-] ReakDuck@lemmy.ml 3 points 1 year ago

So the best kind of anti cheat? (Does it prevent hackers good?)

[-] fhein@lemmy.world 3 points 1 year ago

It did alright, don't think I saw that many obvious cheaters in BF1. BF5 would occasionally have obvious cheaters, but I would hope they get banned eventually just because it's over the top (shooting people through walls, infinite ammo, perfect aim). Difficult to say with more subtle cheats, but I suppose if they're indistinguishable from players who are just good at the game then I think most people won't ever notice.

On the flip side I got permabanned from multiplayer in BF5 after EA falsely accused me of cheating, though I suppose that could've happened with any kind of anti-cheat, and could've been fixed by having half-competent support.

[-] merthyr1831@lemmy.ml 3 points 1 year ago

The problem with EA is that they never bothered to moderate their games. In the end you get spinbotters and shit whilst legit players have to deal with rootkits because they're too stingy to pay for someone to review reports and develop moderation tools.

the Overwatch system in Counterstrike (and a bunch of other tools and policies in tandem with VAC) have been way more effective; I was always more certain that a blatant or suspected cheated would be dealt with in CS than in battlefield.

[-] _____@lemm.ee 11 points 1 year ago

As a long time cs gamer I approve of this change but I warn ye regardless that there is no alternative or viable solution to actually stop cheaters right now.

And if you've only heard stories and don't really experience cs (vac kind of does nothing)

Ive kept track of players for months/years who have not been banned. I find it strange that they eventually do get banned several months after cheating. It took one account nearly 2 years to get banned.

I hope that a clever solution comes out, a man can dream right ?

[-] sunzu2@thebrainbin.org 36 points 1 year ago

well... you see back in my day we had cool bros in "clans" running their servers mostly paying for it themselves with some donations. admins would boot bad faith actors as needed.

then something happened to that model... and here we are now... FPS genre has no been the same IMHO

[-] azertyfun@sh.itjust.works 2 points 1 year ago

The competitive scene happened. Can't have meaningful competitive matchmaking against the same 100 players. People don't just want to frag noobs, they want to grind the ladder to be able to say "I'm GE and you're Gold, therefore I know for a fact I'm better than you".

This is a global phenomenon. Even goddamn chess has this, first thing players ask each other nowadays is "what's your chess.com ELO".

I'm not a competitive player myself but I get why people rush after ELO progression. And it's not much of a stretch to say CS, Valo, and especially chess wouldn't have seen such widespread success without competitive ELO-based matchmaking.

load more comments (2 replies)
load more comments (1 replies)
[-] julianh@lemm.ee 10 points 1 year ago

Csgo and 2 have a "trust" system to keep track of player behavior and put you in games with others of similar trust value. So if you get reported often or have a history of bad behavior, you're more likely to be put in games with other bad actors, and vice versa. Idk how effective it is though.

Honestly there isn't a great solution, which is kind of why I avoid competitive multiplayer games. Even kernel level anticheats can be circumvented.

The nice thing about vac is that theres pretty much no false positives. And valve will occasionally update it, catching a ton of cheaters off guard and getting them banned.

load more comments (1 replies)
[-] Ephera@lemmy.ml 9 points 1 year ago

I wouldn't get my hopes up. Them announcing something like this looks good PR-wise, so they'll do it, even if they don't actually expect this effort to lead to anything.

But even if they do implement such an API, companies won't start adopting this API until its capabilities are roughly comparable to the kernel-level solution AND it's available on most Windows systems in the wild. So, we're likely talking more than a decade before this sees sufficient adoption...

[-] Blxter@lemmy.zip 6 points 1 year ago

I just found this thread as well could not be a good thing for us Linux users.

https://x.com/tomwarren/status/1834863294730956803?s=46

[-] merthyr1831@lemmy.ml 2 points 1 year ago

A locked down Windows "gaming OS" is probably what Xbox wants to go towards in some respects. It gives Microsoft the walled garden that they want, can lock out Valve as much as they fancy, and will likely be paired with some new APIs to set back Proton/WINE a few years. Hell, they could even still release XBOX hardware for that niche.

load more comments (1 replies)
[-] lung@lemmy.world 5 points 1 year ago

I think I need more info. It seems like userspace is very hackable, so thus kernel level anti-cheat was born to control stuff like synthetic inputs and manipulation of memory / frame analysis. This anti-cheat would be held together by the fact that the kernel/drivers are proprietary and not very easy to edit. Obviously still possible because it's on your own computer, but challenging and invasive. Do I have that right?

In which case I don't see how going back to userspace would help. What is the solution? There probably isn't one outside of hardware (buying a hacking chip and soldering it in is annoying for most)

When I was doing game dev we focussed on AI-style analytics of user behavior. Of course a good enough bot could always look human. A real cat and mouse game wasting lots of time

[-] superkret@feddit.org 16 points 1 year ago* (last edited 1 year ago)

Does there need to be a solution?
Do E-Sports competitions on identical certified hardware and otherwise ban people caught cheating.
Root kits aren't necessary for having fun in a game.

[-] paraphrand@lemmy.world 14 points 1 year ago* (last edited 1 year ago)

lol, anti-cheat isn’t just about esports, or high level play. It’s not even just about cheating.

It’s broadly about harassment and griefing and just shitty behavior mediated by hacking in online games.

[-] ScreaminOctopus@sh.itjust.works 6 points 1 year ago

Removing 3rd party kernel access will probably also make cheating harder. Kernel anticheat is necessary largely in part due to cheat software using exploits in the 3rd party extension system to get kernel privileges itself and evade user mode anticheat.

[-] fhein@lemmy.world 6 points 1 year ago

What is the solution?

My guess is that Microsoft wants provide some kind of kernel level anti-cheat, possibly directly integrated with directx, and it will use cryptography which will make it impossible to emulate with Wine/Proton.

[-] merthyr1831@lemmy.ml 1 points 1 year ago

The same kernel software cryptography could certainly be marketed for single player games and proprietary applications as a solution to piracy.

Don't like kernel anti cheat in your multiplayer games? here's kernel anticheat for your single player games!

load more comments
view more: next ›
this post was submitted on 14 Sep 2024
311 points (100.0% liked)

Linux Gaming

20159 readers
12 users here now

Gaming on the GNU/Linux operating system.

Recommended news sources:

Related chat:

Related Communities:

Please be nice to other members. Anyone not being nice will be banned. Keep it fun, respectful and just be awesome to each other.

founded 5 years ago
MODERATORS