Comment on Battlefield 6 dev apologizes for requiring Secure Boot to power anti-cheat tools
BrikoX@lemmy.zip 4 weeks agoSecure Boot is not the rootkit, the anti-cheat software that requires kernel level access (Secure Boot) to operate is the rootkit.
9tr6gyp3@lemmy.world 4 weeks ago
Secure boot won’t let your kernel be modified though.
Their anti cheat software just makes sure that you haven’t tampered with the kernel at all. It just monitors for any changes after the system has booted.
It does not modify your kernel.
BrikoX@lemmy.zip 4 weeks ago
Not entirely. The actual anti-cheat software that have access to the kernel with Secure Boot can be modified to either intentionally the developer or unintentionally by a hack. It’s unnecessary attack vector among many other non-security related issues.
9tr6gyp3@lemmy.world 4 weeks ago
My point stands. The anti cheat doesn’t modify your kernel though. Its not a rootkit.
Quatlicopatlix@feddit.org 4 weeks ago
No the anti cheat is just very intrusive and does wild stuff to look at what other process3s are doing and checks system calls etc. The fact that bf6 wont run if you have the riot games anti cheat running (wich alsso is very bad) is telling. If one company cant trust that the anticheat of another company may break something when it interferes with yours is bad. Look at the crowdstrike incident.
Microsoft itself wants all this stuff gone from the kernel after crowdstrike. If your anticheat needs root acess to look at every file, process and syscall to check if you are hacking it is a desaster waiting to happen. Look at all the anti virus programs that were hijaacked to get root acess before.