techrio expertly shits the bed again, from the linked article:
"This is hardly the first time that kernel level anti-cheat has been a security concern for the games industry."
Luckily he at least admitted that UAC is a thing.
Snap and Flatpak are widely considered a light weight form of virtualization, so called OS level virtualization: https://en.wikipedia.org/wiki/OS-level_virtualization
Of course the dude doesn't know that and expertly publicly errs again.
Lastly here's the staples of an actual OS:
An expert programmer who got almost everything wrong, can't provide relevant data or proofs and keeps asking for someone's rank as of it means anything.
"This is hardly the first time that kernel level anti-cheat has been a security concern for the games industry."
- Concern is a concern. It's not an automatically remotely exploitable vulnerability cause given the number of players who have kernel anti cheats, way more than 50 million, we'd have had a massive amount of hacked systems and again no data at all, just a concern, i.e. possibility. Well, using a complex os is already a possibility of getting hacked without any of that.
- This doesn't mean the system suddenly gets open wan ports for anyone to hack into.
- The article conveniently fails to mention how many systems have been hacked into. Again not a single data point.
- The article implies that in order to exploit this vulnerability one must actively download and run malware. LOL, what? If you run random software from the net you're fucked regardless. Malware may simply exist indefinitely under your user account.
Luckily he at least admitted that UAC is a thing.
Snap and Flatpak are widely considered a light weight form of virtualization, so called OS level virtualization: https://en.wikipedia.org/wiki/OS-level_virtualization
Of course the dude doesn't know that and expertly publicly errs again.
Lastly here's the staples of an actual OS:
- Long term backward and forward user space API/ABI compatibility. Linux doesn't have it. A program compiled for fedora 39 doesn't even work on fedora 38 (try upx - glibc symbol resolve error). Don't get me started on no compatibility between distros.
- The same applies to device drivers. The Linux kernel breaks compatibility pretty much each release, every three months.
- A way to distribute software with a gui installer. Loki did that 25 years ago, alas nothing like that exists in 2024. And what they did didn't always work because of point one above. Snap and flatpak could almost work as that except for some reasons a large swathe of Linux ISVs ignoring them. And then they are lightweight virtualization which is just LOL.
- Software assurance (QA/QC). Linux has too many regressions including those leading to data loss. Windows is not perfect but miles better considering 2 billion installations running a wild assortment of software and drivers.
- Software integrity. Windows allows to verify that the system is in a pristine state and all the binaries are trusted (signed). In Linux? Full reinstallation is the only warranty. There's no signature verification for user space.
An expert programmer who got almost everything wrong, can't provide relevant data or proofs and keeps asking for someone's rank as of it means anything.
Comment