this post was submitted on 03 Jun 2024
40 points (95.5% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

54746 readers
222 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others



Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):


💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 1 year ago
MODERATORS
 

I was looking for a pretty niche indie game, but I wanted to try it out before purchasing... The only link that still works is made by a user who made their account 4 years ago and about 700 posts, but also 1 warning.

How do I know whether or not I should trust this link?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] -5 points 5 months ago* (last edited 5 months ago) (5 children)

~~Or run it in Linux with proton. Same as VM~~

So it seem I was mistaken to feel safe using proton/wine. I stand corrected.

[–] [email protected] 6 points 5 months ago* (last edited 5 months ago)

Here is a comment I made in another thread:

For pirated games, I recommend Bottles installed as a flatpak. That's because it has a per-game toggle for sandboxing the app, not giving it access to your complete home folder and optionally no network access or audio output.

Even when using trusted sources, you can never be safe enough. Bottles with sandboxing will at least protect your files from crypto trojans and prevent you from becoming part of a botnet. It should not have any impact on performance.

Remember to put all installer files anywhere inside the prefix folder, otherwise sandboxing denies access to them. After creating an empty game entry in Bottles, check the 3 dots menu for the option to open it in your file explorer.

[–] [email protected] 2 points 5 months ago (2 children)

As an extra layer of security, always run wine / proton as a separate user, for example via sudo, or even better via schroot, which won't let the "Z:/" drive see your entire filesystem.

[–] [email protected] 3 points 5 months ago

I find Z drive seeing my filesystem a useful feature, for mods for example.

[–] [email protected] 1 points 5 months ago* (last edited 5 months ago)

Never player with Chroot need to look into it.

[–] [email protected] 24 points 5 months ago (1 children)

Wine is not an emulator. Windows malware works on wine/proton

[–] [email protected] 9 points 5 months ago (1 children)
[–] [email protected] 3 points 5 months ago

Most don’t actually because Wine Is Not an Emulator. It’s a stripped down windows environment that likely doesn’t have the necessary DLLs installed or the file structure to run it. Moreover, WINE doesn’t really do things by itself. If anything did run under it, you’d see a wine-server process spin up.

It’s definitely not 100% safe, but it’s also not a gaping hole either.

[–] [email protected] 21 points 5 months ago (1 children)

It really isn't, malware still can easily break out as wine nor proton were never designed for isolation in the first place. Easy example is the Z drive giving program access to the whole Linux filesystem.

[–] [email protected] 8 points 5 months ago

Ho I see, I stand corrected. Thanks

[–] [email protected] 10 points 5 months ago (1 children)

Proton is not the same as a VM. It has direct access to your filesystem. It could delete your entire home directory if it wanted to.

[–] [email protected] 4 points 5 months ago

Although, as a practical matter it provides some protection in the sense that most malware is probably not designed to do that and will, at worst, fuck up the Windows environment created by Wine / Proton. It's not something to rely on but it is a bit safer than running something directly on your home machine as a practical matter.

(Although I guess that depends what the malware does. If it searches every document on your system for credit card numbers and sends them to Albania, that would probably still work.)