598
this post was submitted on 09 Jan 2025
598 points (94.9% liked)
linuxmemes
21748 readers
1405 users here now
Hint: :q!
Sister communities:
Community rules (click to expand)
1. Follow the site-wide rules
- Instance-wide TOS: https://legal.lemmy.world/tos/
- Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html
2. Be civil
- Understand the difference between a joke and an insult.
- Do not harrass or attack members of the community for any reason.
- Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
- Bigotry will not be tolerated.
- These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
3. Post Linux-related content
- Including Unix and BSD.
- Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of
sudoin Windows. - No porn. Even if you watch it on a Linux machine.
4. No recent reposts
- Everybody uses Arch btw, can't quit Vim, <loves/tolerates/hates> systemd, and wants to interject for a moment. You can stop now.
Please report posts and comments that break these rules!
Important: never execute code or follow advice that you don't understand or can't verify, especially here. The word of the day is credibility. This is a meme community -- even the most helpful comments might just be shitposts that can damage your system. Be aware, be smart, don't fork-bomb your computer.
founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
We need the game publishers to face more consequences for shoving BS kernel level anti-cheats and not focusing on where it actually matters, server-side.
(Which would also solve the Linux AC problem by extension)
Game publishers: but server-side anticheat is ~~more expensive~~ HARDDDDDD
Most games I know about do both, but my understanding is it's hard to stop some of the client-side stuff server-side.
Look, we've been here before. I'm not super invested in multiplayer stuff, so I don't care that much, but I am old enough to remember when gamedevs would not even try crossplay and just let the PC be the wild west when it comes to cheating.
I didn't necessarily hate it. I lived in a world of dedicated servers where moderation and security came down to some kid in his underpants being pretty sure he didn't like you and kicking you out. I'm guessing there's a bit too much money and too much of an expectation of free-form matchmaking for the mass market to go back to that.
But hey, I'm not a security software engineer and I'm not excessively involved in competitive shooters, which seems to be where most of the problem happens. My interest in this is having enough PC security for crossplay to make matchmaking in fighting games less of a hassle than it used to be in the Street Fighter 4 days. You sweaty FPS nerds can do whatever, as far as I'm concerned.
You're right on all accounts, I oversimplified for humor. Server-side IS more expensive and does exist in limited ways. Rolling matches on dedi servers are highly profitable, unfortunately the old school days of matchmaking are over for everything except indie companies that want to replicate the nostalgia
how do you actually tell in server side if a client is e.g. actually good at a game vs playing recorded moves with a bit of randomisation when you don't have access to into on what's actually happening on the client device?
as much as I love Linux this sounds like purposeful partial blindness from hopium/copium
You'll never catch all cheaters no matter what you do. All the kernel access in the world won't stop someone from having a secondary device hooked into the monitor output and faking a dumb keyboard and mouse.
A solid robust server-side solution and well architected server-client system will stop 99% of cheating. And no, Kernel AC is not part of a "well architected" system.
It's, at best, a bandaid for a shitty server-client system that introduces a shit ton of privacy and security issues for everyone that uses it. Shit needs to stay out of the kernel unless absolutely necessary, and that goes for Linux, Windows or MacOS kernels.
Almost every blue screen/Kernel panic I've dealt with was traced back to some shit hooking itself into the kernel where it didn't belong. And absolutely fuck third-party antivirus that hooks into the kernel too.
I guess that's true, but that'd be a lot difficult to program and expensive to use compared to a simple program that can read data straight from the game's memory in machine readable format and send inputs straight into the system's input framework. by raising the entry bar you're effectively decreasing the amount of people that will cheat in the game
it's ultimately the user's decision if they want to sacrifice the purity of their kernel for a game like this, and I think it's their problem if their kernel panics for them wanting to play slop made by AAA studios
I mean DMA (direct memory access) devices are only like 170 bucks now:
https://www.dma-cheats.com/dma-cards
These are almost impossible to do anything about even client-side because they operate on a hardware level.
In general state-reading hacks (like invisible walls and Gameworld state information hacks) are almost impossible to do anything about, to the point where when companies are able to find a way to defeat one of these things it's huge news.
In addition to what @homicidalrobot@lemm.ee covered on the first part of your response
That's absolute horseshit, the average gaming consumer doesn't know shit about the kernel, what it even is or the implications of running Kernel AC. They might know their game has AC, but chances are they won't even know what kind to make this kind of informed decision.
This is becoming less true for FPS every month - the described method of cheating (off-device reading and input simulation) is becoming more accessible as more cheat makers are selling premade devices that do this. Huge problem even for new shooters like rivals - someone was already caught doing it in one of their ingame tournaments. It's the primary way people cheat in League of Legends, and it would not surprise me to see evidence of it in dota 2(though I haven't personally, I haven't been paying attention to it for some years and it isn't as frequent that a variety streamer or youtuber plays it compared to lol).
As mentioned before, kernel anticheat won't catch these guys anyway, so it's largely just a way to alienate your user base. There's a new problem it does nothing special to solve.
One part would be to run a shadow client that takes the user's input and sees how much the game state diverges. There will be a certain amount of it due to network latency, but if there's some cheater using an engine mod/hack to fly around the map, this will catch that. Though something like that should be caught by a lower level check that makes sure the players are following the laws of physics in the game (like max speed, gravity applies, no teleporting).
Another one would be to see if the player follows things they shouldn't be able to see. If a player hides behind something they can shoot through but can't see through, do they somehow seem to always know they are there? Do they look around at walls and then beeline for an opponent that was hidden by those walls?
Another one would be if their movement (view angle) changes when they are close to targeting an enemy or if they consistently shoot when the enemy is centre of target, then it's a sign they are using a device that even kernel mode anti cheat won't catch to cheat (it plugs in to your input between your mouse and PC, also plugs in to somewhere that would allow it to act as a video capture device, then just watches for enemies to get close and sends movement or clicks to aim or shoot for you). Though this one is pretty difficult to catch, due to network latency. But those mouse movements might defy the laws of physics if the user was already moving. Natural movement is continuous in position and its first derivative (always, by Newton's f = ma, though sample rate complicates that), and the way we generally move is also continuous in the second derivative, but banging your mouse into your keyboard can defy that and it's even more sensitive to sample rate.
Imo these techniques should be combined with a reporting system and manual reviews. Reports would activate the extra checks for specific players (it would be pretty expensive to do it for all players), then positive matches from the extra checks would trigger a manual review and maybe a kick or temp ban, depending on how reliable the checks are.
That said, I believe there will eventually be AI-based bots where detecting them vs other skilled players will be impossible. And those will be combinable with some infrastructure that allows players to take certain amounts of control, maybe even with an RTS-like interface that could direct the bot to certain areas. Though adding an LLM and speech to text and vice versa could allow it to just respond to voice commands, both from other teammates and from the player.
I think at that point, preventing cheating in online games will be impossible and in person tournaments will probably involve using computers provided by the organizers (tbh I'm kinda surprised this isn't already the case and that some people have been caught using cheats during these kinds of tournaments).