the simple solution would be to put every game into a sandbox by default
Every program ideally should be in a sandbox and if it wants permission to access something it should have to ask for it.
Kind of like Android or iOS.
Flatpak tries to accomplish this on Desktop, and it works, but isn’t as comprehensive as something like Android or iOS.
On the extreme side, there is QubesOS, which runs every app in a dedicated virtual machine, including the networking stack.
I’ve never seen a flatpak prompt me for permissions. If it needs something it didn’t have it just silently fails for me and I have to guess what permission it needed manually using flatseal. Is that normal or am I setup wrong?
That’s normal.
Its also the most annoying as fucking problem…
Is that what proton does on Linux?
No, that’s just to make Windows programs/games run on Linux. But you can e.g. use the Flatpack version of Steam to Sandbox Steam and its games (https://docs.flatpak.org/en/latest/sandbox-permissions.html)
Joke’s on them. I just put games in my library and never install them.
And compaines wonder why we have trust issues.
When is valve removing windows 11?
They can’t. It’s not sold through Steam.
When you buy a Steam Deck or Steam Machine.
Isn’t that exactly what SteamOS is doing?
Yikes!
Well, that’s pretty horrifying.
dad, that you?
Shouldn’t Valve be scanning for these types of things!? The alarming part is that players had to find it
There are so many games on Steam and every day a few hundred more are added. I assume there are automated checks and rudimentary malware scans in place but those aren’t fault proof.
When I first published a game on steam, valve kept blocking it because I had checked “controller support” and they tested it and said it didn’t work with controllers. I tried to find any controller that didn’t work, asked a lot of people to test it for me as well, no issues whatsoever. Gave up and unchecked that option. Game got approved. Players used controllers just fine, I went back and checked it and never heard anything from valve again.
This appears to have originally been published as a totally different non-malware game. Either the original dev got their account taken over or turned heel, because the entire game was replaced with the malware game as an update to an existing game rather than a new published game.
I’m only speculating as I don’t know much about the Steam publishing process, but I wonder if that helped the malware sneak past more rigorous checks which would happen on a totally-new upload.
Couldn’t they just put the malware in encrypted compression files that the game unpacks on the client end?
laughs in proton
Proton does not protect you from harm. It’s not a sandbox.
what about bazzite set to immutable?
That does not stop things from stealing your data.
Would that even help? Windows malware can run on Linux precisely thanks to Wine and Proton.
You don’t actually believe this, right?
Hey PieFed user, posting a 5-minute meme video where the guy struggles to make a custom virus do something through Proton isn’t the own you think it is. It literally corroborates my point. Windows viruses and malware will not work through Proton.
