Comment

Comment on Battlefield 6 cheats day 1 of early access. Depite kernel level anti cheat, forced secure boot TPM 2.0

<- View Parent

9tr6gyp3@lemmy.world ⁨1⁩ ⁨day⁩ ago

Why?

source

Sort:hotnew top

brezel@piefed.social ⁨1⁩ ⁨day⁩ ago
some people run more than 1 OS

some people actually program and need to load unsigned shit all the time

some people have legacy hardware that doesn't run with secureboot

it is my decision and my decision alone how i boot my operating systems. not EA's.
source
- muusemuuse@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
  You can run more than one OS with secure boot enabled. It’s just a pain in the ass.
  
  you can run unsigned code on a secure boot enabled system.
  
  its 2025, what the fuck do you have that can’t secure boot by now?
  
  THIS is your winning argument.
  
  source
  - Alaik@lemmy.zip ⁨17⁩ ⁨hours⁩ ago
    I don’t think he needs a winning argument. I think EA needs to justify this kernel level AC, not the other way around.
    
    source
    muusemuuse@sh.itjust.works ⁨11⁩ ⁨hours⁩ ago
    I’m agreeing with point 4.
    
    source
  - Truscape@lemmy.blahaj.zone ⁨1⁩ ⁨day⁩ ago
    
    Yeah, well the secure boot keys needed for Linux distributions expire in September (tomshardware.com/…/microsoft-signing-key-required…), so that seems like a sustainable solution, sure buddy.
    
    What’s your income? What region of the world do you live in and what hardware is available to you? I’m still using an am4 platform PC as my daily driver because I can’t burn money. One of my buddies has an AM3 PC. Many people use modified surplus office PCs (especially in developing nations like South America or SEA), which don’t have secure boot as an option. Check your privilege, and maybe donate some of your spare hardware to those who need it, if you want to make this “a non issue” for everyone.
    
    Yeah. I own my hardware, I configure my software. I gut Windows like a fish and keep it on a leash for these games, and use Linux for my work and for the games that respect the ecosystem.
    
    source
    muusemuuse@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
    
    New keys have already been released and you can always just create and enroll your own damn keys. This is sensationalist nonsense.
    
    “Check my privilege” over secure boot? Calm down, Karen.
    
    I think gaming on PC is going to get interesting in the coming decade as Microsoft kicks third parties out of the kernel (thanks crowdstrike!) and more and more people just stop putting up with windows. Enterprise in the US is hooked but everyone else? Na, they are gonna drop it.
    
    source
    -> View More Comments
  - Kazumara@discuss.tchncs.de ⁨17⁩ ⁨hours⁩ ago
    
    You can run more than one OS with secure boot enabled. It’s just a pain in the ass.
    
    Weird, for me it was just flicking the switch in UEFI and now Grub and trough it Windows 10 and Fedora 43 boot in Secure Boot.
    
    source
- 9tr6gyp3@lemmy.world ⁨1⁩ ⁨day⁩ ago
  Im fairly certain any legacy hardware that doesn’t have secure boot as an option is going to struggle loading BF6 regardless.
  
  The first two points are not related to secure boot at all.
  
  source
  - brezel@piefed.social ⁨1⁩ ⁨day⁩ ago
    you think loading my own kernel modules is not related to secure boot? i guess you don't work in IT then.
    
    source
    Miaou@jlai.lu ⁨17⁩ ⁨hours⁩ ago
    Most people who work IT don’t even know what a kernel is, tbf
    
    source
    -> View More Comments
    9tr6gyp3@lemmy.world ⁨1⁩ ⁨day⁩ ago
    It doesn’t matter which kernel modules are used, as long as you have signed those changes before rebooting.
    
    source
  - pathief@lemmy.world ⁨1⁩ ⁨day⁩ ago
    You can’t install most linux distributions with secure boot enabled.
    
    source
    muusemuuse@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
    This is outdated information. Linux has supported secure boot for quite a while now.
    
    source
    -> View More Comments
Kyrgizion@lemmy.world ⁨1⁩ ⁨day⁩ ago
Needlessly intrusive. Can obviously be circumvented by cheaters anyway, so quite possibly superfluous. Apart from that it protects against the kinds of attacks that typically require physical access to the computer. If you have physical access you have full access anyway. Etc.

source
- 9tr6gyp3@lemmy.world ⁨1⁩ ⁨day⁩ ago
  
  If you have physical access you have full access anyway. Etc.
  
  You know secure boot was specifically made to protect users for this exact use case. Any tampering of the system will prevent the system from booting.
  
  source
  - Eggymatrix@sh.itjust.works ⁨1⁩ ⁨day⁩ ago
    I get your pc, “tamper” it, then i install a fake bios that tells you all is well and that your tpm and secureboot and whatever else bullcrap they invent is still happy.
    
    See the problem?
    
    source
    Corngood@lemmy.ml ⁨1⁩ ⁨day⁩ ago
    It won’t boot though, because the keys to decrypt the system are stored in the TPM.
    
    Sure you could replace the whole OS, but that’s going to be very obvious and won’t allow you access to the data.
    
    source
    -> View More Comments
  - Limonene@lemmy.world ⁨1⁩ ⁨day⁩ ago
    A person with physical access can tamper with the OS, then tamper with the signing keys. Most secure boot systems allow you to install keys.
    
    Secure boot can’t detect a USB keylogger. Nothing can.
    
    source
    9tr6gyp3@lemmy.world ⁨11⁩ ⁨hours⁩ ago
    The signature checks will immediately fail if ANY tampering has occurred.
    
    Adding a USB keylogger that has not been signed will cause a signature verification failure during boot.
    
    source
    -> View More Comments
- Tanoh@lemmy.world ⁨1⁩ ⁨day⁩ ago
  
  If you have physical access you have full access anyway
  
  No, encrypt your drives.
  
  source
SoupBrick@pawb.social ⁨1⁩ ⁨day⁩ ago
It fucks with Linux. I literally just disabled it to resolve a driver install issue before this announcement was made.

source
- 9tr6gyp3@lemmy.world ⁨1⁩ ⁨day⁩ ago
  Linux can run with secure boot just fine though. Use your distros documentation to set it up.
  
  source