Players rave and rant about the wonders of kernel level anti cheats, and how games like Valorant barely have any cheaters compared VAC secured Counter Strike...
Much like using a condom, the point isn’t a protection scheme that’s impossible to fail.
Valorant is the first FPS I’ve played where, after two years, I’ve never encountered a cheater. They’re there, you can find some clips… Until they’re banned. They’re rare. Counter Strike, Call of Duty, Titanfall, you name it, I would encounter cheaters with a much higher frequency.
So while Vanguard can be bypassed… I don’t worry about cheaters on Valorant, they’re rare and the cheats are expensive and annoying to use. Vanguard did its job.
It’s a rootkit. When it runs it basically has complete access to your system. You’re at the mercy of the guys at Riot and pray that no one breaches their system.
You’re missing the point of what he is saying. The anti-cheat itself runs in a level with extreme access to anything on your computer. The anti-cheat is like almost all software almost certainly exploitable. You are trusting that no one will ever crack Vanguard in a way that exposes your user data, and that Riot will never change it to collect more than you think they are.
It’s kernel-level control of your system, basically rootkit malware that you choose to infect your computer with. Keep in mind, it’s always running, whether you’re playing a game or not! By definition, it literally has more control of your system than you do signed in with your own private password. Ask yourself this: if the anti-cheat was compromised, sold, re-prioritized, bypassed by hackers or foreign interests, etc… How would you even know?
I understand that all this sounds paranoid, but remember that you chose to give it system-wide access! I likely hate online cheaters at least as much as you, but the potential security/privacy implications are far too great, not to mention the performance hit every single game with kernel-level anti-cheat suffers…
Keep in mind, it’s always running, whether you’re playing a game or not!
Not necessarily. You can close the software. You’ll need to restart your computer before launching Valorant, but it absolutely does not need to be running while you aren’t playing.
This isn’t really different from most software on your system. I can exfiltrate plenty of your data on Windows without root. And are you reviewing the source code of every application you run?
The burden of proof is on the accuser. Show Vanguard doing something shady and I might care. Keep complaining because “it could if it wanted to” and I won’t entertain conspiracy theories.
I’m not making an accusation, it’s kernel-level access. If I know where you live, have keys to your house, know your security code, can change anything in your home without you knowing, that’s a problem.
Why are you so dead-set on defending a company’s bad practices just because you like their game?
I’m dead set on playing online games without cheaters. If Vanguard worked on Linux, half of this community wouldn’t care and wouldn’t rely on a fallacy of assuming it will be turned into malware.
As for kernel level access to the machine… Oh no, just like the third party driver I had to install on Linux to use my Xbox adapter? Crazy! That must be malware!
Not only can it be bypassed, but anti cheat with kernel level access can be used to distribute malware or spyware if it is compromised. Whether your personal anecdotes reflect the actual statistics or not, these anti cheats are dangerous and are not impenetrable.
As mentioned, cheaters can already bypass it, so what’s the point? As for security, by definition it infects your whole system and has access to everything. That’s what kernel-level is.
Actually, a driver can be an infection, just like any other program can be malicious. But I do agree that from a system access standpoint, running the Vanguard kernel driver is not much different than using kernel-level EAC/BattleEye. Except the annoying starting at boot part.
A program without elevated privileges already has access to almost all important things on your computer anyway. Luckily flatpak supports sandboxing which protects from exploits in online games.
Seems like a bad faith argument, seat belts are so that your skull (hopefully) doesn’t detach and fly through the window if you get into an accident - a life and death safety measure. It’s way more dramatic to make a fuss about that. However, in both cases you can choose to just not drive (or play the game) which people are choosing to do.
Then again, none of your comments here seem like they’re in good faith, so I guess I shouldn’t be surprised.
Honestly a few cheaters in a game is way less of a problem than letting a company, especially one owned by tencent, have root access to my pc. Anyway in my experience with league the cheaters are either mostly nonexistent or subtle enough that it doesn’t impact the games. Also nobody in here’s going to have a rank that’s actually important and I don’t see why they can’t have the fun anticheat in tournaments and ranked but leave it out of the other things.
My sweet summer child, I will see you in 5 years when Valorant cheating is as bad as CS:GO cheating at its peak.
Kernel AC circumventation will only improve, as there’s many cheaters putting money in this technology. In 5 years this stuff will be commonplace and mean that these solutions will be ineffective.
Been hearing that since day 1 on Valorant, years in and that’s not the case. But sure bud, in five years if I’m wrong feel free to come to this post and reply.
Much like using a condom, the point isn’t a protection scheme that’s impossible to fail.
Valorant is the first FPS I’ve played where, after two years, I’ve never encountered a cheater. They’re there, you can find some clips… Until they’re banned. They’re rare. Counter Strike, Call of Duty, Titanfall, you name it, I would encounter cheaters with a much higher frequency.
So while Vanguard can be bypassed… I don’t worry about cheaters on Valorant, they’re rare and the cheats are expensive and annoying to use. Vanguard did its job.
You don’t mind giving up your privacy and system security to a company for a single game?
How is it giving up your privacy and security?
It’s a rootkit. When it runs it basically has complete access to your system. You’re at the mercy of the guys at Riot and pray that no one breaches their system.
IIRC Genshin Impact uses a similar system and a breach has already happened.
It’s a driver.
Here the attacker installed the driver after gaining remote access.
So it’s not actually anything to do with having the game installed.
But it’s still a massive problem.
You’re missing the point of what he is saying. The anti-cheat itself runs in a level with extreme access to anything on your computer. The anti-cheat is like almost all software almost certainly exploitable. You are trusting that no one will ever crack Vanguard in a way that exposes your user data, and that Riot will never change it to collect more than you think they are.
It’s kernel-level control of your system, basically rootkit malware that you choose to infect your computer with. Keep in mind, it’s always running, whether you’re playing a game or not! By definition, it literally has more control of your system than you do signed in with your own private password. Ask yourself this: if the anti-cheat was compromised, sold, re-prioritized, bypassed by hackers or foreign interests, etc… How would you even know?
I understand that all this sounds paranoid, but remember that you chose to give it system-wide access! I likely hate online cheaters at least as much as you, but the potential security/privacy implications are far too great, not to mention the performance hit every single game with kernel-level anti-cheat suffers…
Not necessarily. You can close the software. You’ll need to restart your computer before launching Valorant, but it absolutely does not need to be running while you aren’t playing.
This isn’t really different from most software on your system. I can exfiltrate plenty of your data on Windows without root. And are you reviewing the source code of every application you run?
It’s a problem when Riot does it, but not Nvidia?
Otherwise known as a driver hehe
But they’re all valid points.
The burden of proof is on the accuser. Show Vanguard doing something shady and I might care. Keep complaining because “it could if it wanted to” and I won’t entertain conspiracy theories.
I’m not making an accusation, it’s kernel-level access. If I know where you live, have keys to your house, know your security code, can change anything in your home without you knowing, that’s a problem.
Why are you so dead-set on defending a company’s bad practices just because you like their game?
I’m dead set on playing online games without cheaters. If Vanguard worked on Linux, half of this community wouldn’t care and wouldn’t rely on a fallacy of assuming it will be turned into malware.
As for kernel level access to the machine… Oh no, just like the third party driver I had to install on Linux to use my Xbox adapter? Crazy! That must be malware!
Yup, so you don’t care. Lmao you literally gave away the key to your house for an uninteresting video game. Pitiful.
Not only can it be bypassed, but anti cheat with kernel level access can be used to distribute malware or spyware if it is compromised. Whether your personal anecdotes reflect the actual statistics or not, these anti cheats are dangerous and are not impenetrable.
Do you have any sources on this happening? Or is it a personal anecdote hehe
There was a security vulnerabilitiy in the genshin impact anti cheat awhile ago.
That’s exactly the sort of source I was asking for
Edit: the driver file was used after gaining access to the pc. So quite an involved attack but still really bad.
Edit 2: so actually it’s nothing to do with having it installed. As the attacker installed it.
It was already done through genshin impact anti cheat. It will be done in Vangard.
With that the attacker installed that driver after gaining access. So having the driver installed wasn’t the issue.
What do you think ‘gaining access’ entailed?
Nothing to do with the game.
As mentioned, cheaters can already bypass it, so what’s the point? As for security, by definition it infects your whole system and has access to everything. That’s what kernel-level is.
By definition a driver is not an infection.
Actually, a driver can be an infection, just like any other program can be malicious. But I do agree that from a system access standpoint, running the Vanguard kernel driver is not much different than using kernel-level EAC/BattleEye. Except the annoying starting at boot part.
A program without elevated privileges already has access to almost all important things on your computer anyway. Luckily flatpak supports sandboxing which protects from exploits in online games.
“my aunt used a seat belt and died in a crash anyway! So what’s the point?”
More like my aunt pointed a loaded gun at the back of her seatrest and it went off when she hit the brakes too hard
Seems like a bad faith argument, seat belts are so that your skull (hopefully) doesn’t detach and fly through the window if you get into an accident - a life and death safety measure. It’s way more dramatic to make a fuss about that. However, in both cases you can choose to just not drive (or play the game) which people are choosing to do.
Then again, none of your comments here seem like they’re in good faith, so I guess I shouldn’t be surprised.
Cool beans. I’ll play ranked matches without cheaters, thanks.
Honestly a few cheaters in a game is way less of a problem than letting a company, especially one owned by tencent, have root access to my pc. Anyway in my experience with league the cheaters are either mostly nonexistent or subtle enough that it doesn’t impact the games. Also nobody in here’s going to have a rank that’s actually important and I don’t see why they can’t have the fun anticheat in tournaments and ranked but leave it out of the other things.
My sweet summer child, I will see you in 5 years when Valorant cheating is as bad as CS:GO cheating at its peak.
Kernel AC circumventation will only improve, as there’s many cheaters putting money in this technology. In 5 years this stuff will be commonplace and mean that these solutions will be ineffective.
Been hearing that since day 1 on Valorant, years in and that’s not the case. But sure bud, in five years if I’m wrong feel free to come to this post and reply.