tldr for anyone:
They aren’t fixing it. fuck y’all.
Also - it’s not a rootkit - it just loads at boot and has higher privileges than the userspace that you can’t contr… oh. it’s a rootkit. They don’t want you to call it that though. It’s not cancer… it’s a growth.
at this point i want to cheat on an approved, bare-metal windows machine, just as a fuck you.
but then i remember this game is awful and i dont wanna touch it anyway.
Funnily enough that’s how a lot of modern cheats work. it’s on a separate box. Good luck catching that automatically vanguard. Hard to out-ring the hardware layer.
If it’s not server based detection it’s exploitable.
I’m not in that line of work but make no mistake if it hasn’t been yet: a cheat vector will probably involve patching the anti cheat software or attacking how it communicates.
there are arduino-based cheats now, you dont even need an expensive box, it hijacks your mouse for aimbots and such. thinking of putting one of mine to use.
Yep, this is what I was referencing in other responses. Purely from a solution perspective it is positively the ultimate “get bent” from the cheat community. Add in some randomness and suddenly there’s zero difference between a ‘good session’ and scripting.
Next up: sorry you don’t have xyz brand mice you can’t play our games. Consumers get forced to buy shit they don’t want or need and meanwhile the cheat / hack community release a patch to emulate it.
It’s the same old cat and mouse game. There are solutions - but a rootkit isn’t it.
not looking forward to mice DRM of all things. but then it will be funny to see their games wilt because most people don’t own the xyz hardware they require. im willing to bet arduinos can fake hardware ids too.
Fuck Riot. Never playing their games again. If you’re going to have a shitty anticheat at least give people the option to play in anticheat disabled lobbies. Besides, they should be doing anticheat at the server level not spying on the boot sequence of client PCs. That shit is unnecessary for a fucking banking app let alone a goddamn game. It’s just a game, let us enjoy it rather than making such a ridiculously over the top response to cheating.
The issue with this entire statement is that despite the amount of system access they want, and the complexity of the software they’ve made, cheating is as rampant as it was before. The fact that they continue treating Linux as an issue, just as Ubisoft do with Siege, or Bungie with Destiny, just shows that there is a much larger issue at hand
Even worse, it proves that they themselves don’t understand the entire psycho-social scope and workings of cheating. Cheating is not an entirely technical problem. It’s multidimensional.
My main issue with this blog post is that rather than properly addressing concerns, they make fun of them.
It’s not a rootkit, journalists just spread misinformation for clicks
Why is it not a rootkit, then??
Because journalists.
A blog toxic as it’s community? Gasp.
A long while back riot used to be a fun sorta disruptive thing that was pretty healthy overall. It was awkward and fun. That was before it was purchased though. Now riot exists to make money for big china. It isn’t that company anymore. It’s a facade.
You can’t fix it, nor can the employees.
Riot is a skinpuppet that has no autonomy. Unlike the employees though, we have the choice to leave that failing franchise and move on. Rootkits aren’t acceptable and that needs to be the standard. It wasn’t okay when Sony tried it in the name of anti-piracy and it’s still not okay now. No person should be okay with installing a black box with greater admin rights than they have on their own machine. That is not okay. It is security heresy. That blog uses hand waving and bullshit to sell the concept to people that don’t know any better. And honestly? That’s almost just as bad as the rootkit itself.
A rough translation is:
Be a good drone and put the slave collar on. It’s good for you. Don’t ask questions, you don’t need to know why. Just do it. You are the product and you have no rights.
I disagree that they went downhill post-purchase. They were shit from the very start when pendragon decided to burn one community to promote his own in the name of capitalism.
They had their issues, sure. But most studios will have burned bridges in their wake. Not a hard and fast rule of course.
When I refer to downhill I’m looking directly at the slippery slope that is changing from profit as a target to profit above all else. When you sell a company regardless of who you retain - there will be a value shift as the head drives the body. The existing cracks got worse and new ones formed. People that care the most generally give up, leave, or both and the whole thing falls in on the void left by those support’s absences.
You may be right that a shift in ideal started then. I’m not terribly familiar with the story so I’ll defer to you on that.
because on windows it’s not considered a rootkit, it’s considered user obscured feature sets.
I guess the difference is in whether or not the victim was complicit with installing spyware in the kernel.
yesterday, there were just over 800 Linux users on League.
And how many of them were cheating? ರ_ರ
And Vanguard is already being bypassed by using external tools. IIRC I saw a video about it where the cheater had the hack running on a completely separate computer.
The number would be higher too, I doubt I was the only one who stopped playing months ago when Vanguard was supposedly going to be implemented imminently.
You and me both.
Fun fact: you could get an account locked in under an hour if you used a command line to close the league client. Not powershell - just good ol cmd. No reports needed. Reproduced it 4 times in 2 days… Lots of fun emails with initially the support teams and then the devs. Apparently “taskkill” is the most nefarious cheat known to the gaming industry.
A grade schooler with a “learn programming in 24 hours” book could probably produce better cheat detection.
deleted by creator
How far is the company willing to go to prevent cheating? Cameras in people’s homes to make sure they’re not using another computer that your anti-cheat has no access to?
If players tolerate that then competitive gaming is going in a deeper dark pit of proprietary spyware in the name of fighting cheating, an arms race with no end.
So basically, “it’s too hard, and our engineers are not good at their jobs.”
It’s Harder to solve than you think. I came upon a documentary a while ago where they go a bit more in depth on the subject and what cheaters can do nowadays.
No company has solved the problem tbh. Even games like counter strike are riddled with cheaters and even on faceit there’s plenty of people that are dodgy AF and likely cheat.
It’s not an easy problem to solve and it is, AFAIK, still an unsolved problem in shooters. So your comment is a bit salty. Might as well claim every game engineer worldwide isnt good at their job because nobody has solved this yet. Not that I’m defending riot.
The rootkit “solution” is complete bullshit. It is completely disproportionate and a massive security/privacy risk. And to top it off it’s not even a solution that’s good enough.
This is the documentary I saw: https://www.youtube.com/watch?v=RwzIq04vd0M&
It did remove my appetite for playing PvP shooters for a while.
The rootkit isn’t a solution. It’s a bandaid - and a bad one at that. Moba and FPS hacks have already moved outside the hardware of the PC or into the virtual space. It’s a beware of dog sign on the fence meant to scare users… while ultimately doing very little (besides providing a vector real hackers and tools can exploit to gain access to your system.)
Seriously anyone willing to install a rootkit on their system that that company is behind deserves whatever comes their way next.
I fully agree with that. It’s why I quoted “solution” in the first place.
Given the user always has a deeper access to the client (i.e. hardware access) than the anticheat dev does, eliminating cheating is probably unsolvable.
Best bet is probably always going to be a decently funded team dedicated to find and ban cheaters, rather than attempting to prevent them all with a rootkit.
I’m sorry but I just don’t buy that.
First of all, you can’t solve a problem you’re not willing to work on.
Second, no one is expecting a solution that bans 100% of cheaters and has zero false positives. We all know that’s unrealistic. So saying no one has solved it yet is kind of misleading. There are existing solutions that work well enough for most people.
Third, there are solutions that can run entirely on the server side that would work for every system. Riot just isn’t willing to use them.
My comment stands. Bad engineers that can’t solve a problem other people have already come up with solutions for.
DotA 2 works right? Just upgrade to DotA 2
Yeah, but what if I want:
- pre-2010 graphics
- a free rootkit
- a single ugly stagnant map with no skins
- a single and unchangeable and uninspired drone of an announcer
- a game whose bug-ridden, laggy client leaks memory and processes
- a game whose client prevents you from spectating pro games, past and present
- a pro scene rampant with match fixing and ads injected into the horrendous casting
If not League of Legends, where else am I gonna get all of that from?
I love that you mentioned that abomination they call a client. Something so bad a developer solo wrote a better one only to have them hire that person and quietly kill the project.
But what if I want to turn without waiting?
WINE
Is
Not
(an)
EmulatorWhat makes you think they are referring to Wine in that particular case, and not the emulation of the kernel level anticheat on userland? It’s also arguably not an entirely correct use of the word there either, but it’s fine.
What makes you think they are referring to Wine in that particular case.
Them talking about Lutris and Wine in that same paragraph and using the phrasing “even allowing” implying it’s what they’re currently doing. But looking again, you’re right. They were referring to VMs.
I don’t believe that only 800 people played on Linux. It makes no sense to me in the grand scheme of things. I have a personal YT channel with only 108 subs and my random low effort video on how to get League running on Steam Deck has almost 70k views which is nuts and there are many other much better videos than mine with many more views. If only 0.1% of those people are active players that would still make a lot more than “800” figure. I know this is just a random speculation but 800 is just waaaay too low.
Those 70k views are probably people like me:
Want to try it and bounce violently off of the toxic ass community
So that 800 might actually be a believable number given you go through some hurdles just to get, well, LOL players
The devil is in the details: 800 on a single day.
“linux does not allow us a good enough ability to confirm boot state”
Skill issue, L for riot games.
Realistically, if this is true, it’s because of security. Shocker on that one really. Also, there are probably only 800 players on linux because the anti cheat doesnt fucking work. But that doesnt count apparently
Kernel anticheat is just like gaming piracy, where developers are constantly fighting ghosts rather than tackling the social issues that encourage the behaviours they want to avoid.
I can’t believe they made a shitty Dota clone based off the Arcane animation on Netflix.
Good riddance, spent several years hooked to League. That being said, the fragmentation argument is bullshit, they could ship a read-only container in a flatpak and it’d run everywhere.
Kernel level is a huge risk and it doesn’t guarantee anything, especially in the age of Ai cheats and network mitm cheats
You can’t do shit with flatpak as a kernel level anti cheat.
That’s the point. A read only container to keep low hanging fruit at bay, and flatpak to distribute without having to repackage to every distro under the sun.
I don’t fuck with the game, the game doesn’t fuck with my system.
That doesn’t protect the game in any way, that’s the issue. If you don’t fuck with it, it doesn’t mean that everyone else doesn’t as well.
Their anti cheat rootkit doesn’t protect the game either.
How do you know?
Because cheaters still exist, and we’re well aware of the methods they use that would never come close to interacting with your operating system.
