If I have an encrypted Linux partition and a Windows partition that I use as a bootloader into Riot’s games, what are the drawbacks of installing their kernel level anticheat?
If I have an encrypted Linux partition and a Windows partition that I use as a bootloader into Riot’s games, what are the drawbacks of installing their kernel level anticheat?
Also note that even a dual boot system is leaky. A kernel level anticheat has enough power to do firmware upgrades on peripherals or the UEFI, so a badly behaving kernel level anticheat could easily take over your entire system in a way that can never be gotten rid of.
Anything kernel level can theoretically modify anything in your TPM too, so Linux programs that use it (admittedly I’m not sure any user program use it) could be manipulated in weird ways
In what ways? The worst it could do to the TPM directly is invalidate your secure boot unless I’m missing something.
for me that’s enough of an inconvenience to wash my hands of the whole dual-booting scenario.
Interesting. It’s weird that a kernel level program can upgrade UEFI. We run a lot of closed source kernel level stuff already. Do you have any links for further reading?
There definitely is upgrading of UEFI/disk firmware from a running Windows. So if Windows can…
Removed by mod
Realistically a good starting point to read up on could be about admin privileges. Or ring 0 in software. It basically boils down to the fact that anything that is running as root ( or with admin privileges) can read and write to ANY file it wants to. Effectively having full control over the system.
In other words it could be used to do anything they want with your pc. An example of that actually happening is the anti Cheat that genshin impact is using because that was exploited in that way already.
I know about ring 0, I just assumed UEFI would be off the disk and inaccessible to any software.
Removed by mod
Do you have some further reading on the active exploit of Genshin Impact’s anti-cheat?