- cross-posted to:
- Technology@programming.dev
- hackernews@lemmy.bestiver.se
- cross-posted to:
- Technology@programming.dev
- hackernews@lemmy.bestiver.se
cross-posted from: https://programming.dev/post/35893414
Comments
Anti-cheat engines are now requiring users to have Secure Boot and a fTPM enabled in order to play online multiplayer games. Will this decrease the amount of cheating, or is it a futile attempt at curbing an ever-growing problem?
Great article.
Probably a dumb question, but my mobo has an option in the setup utility to “enroll hash” and it seems to let me pick an .efi executable.
Can I just use that to sign any bootloader (or efi executable for that matter) I want, e.g. HackBGRT, GRUB2, and if so, would that allow me to play Battlefield 6, or would the other features like TPM attestated logs indicate the chain loading and flag me for a ban (or simply not let me launch the game) ?
if that function is for signing custom efi binaries, you can still only sign it using your own keys. that would work to attest that you trust it and approved running that thing with secure boot enabled, but anticheats are looking specifically for the approval of microsoft, for which microsoft would need to sign it with their own key.
you probably wouldn’t get banned, the game just won’t launch. but be sure that you are not runnig the “process hacker” task manager along with the game, neither similar tools inname because formerly garbage anticheat was triggered to the “hacker” name in the process name. I don’t know if that would trigger a ban though, or they just wouldn’t allow connecting, but since this is niche software and they won’t have any recourse for false positives maybe I wouldn’t try my chances unless I wanted help in stopping playing that game forever.
No, Windows anti-cheats will check specifically for Microsoft’s keys in use.
Shame. Someone needs to steal these.
EDIT: Battlefield 6 Open Beta launches for me when I enrolled the HackBGRT hash into my mobo’s SecureBoot lol. But I think I am shadowbanned.