Kuribo64
Views: 19,852,612 Home | Forums | Uploader | Wiki | Object databases | IRC
Rules/FAQ | Memberlist | Calendar | Stats | Online users | Last posts | Search
03-28-24 10:29 PM
Guest:

0 users reading Street Fighter V comes with a giant security hole. | 1 bot

Main - Computers and technology - Street Fighter V comes with a giant security hole. Hide post layouts | New reply


Arisotura
Posted on 09-24-16 12:44 AM (rev. 2 of 09-24-16 12:48 AM) Link | #77886
http://www.theregister.co.uk/2016/09/23/capcom_street_fighter_v/


Street Fighter V installs a driver (capcom.sys) to prevent players from cheating. The driver allows any program to run code in kernel mode.

It's a giant security hole.

A hefty price for keeping people from cheating.


People are cheating in multiplayer games? Implement the cheat protection in the goddamn server. They don't get it. You never trust the client. Installing shady software on the client's machine is NOT the way to go.

People are cheating in single player games? They play their game however the fuck they want. Don't like it? Fuck off. This kind of dictatorship gets on my nerves.


Anyway, the update that brought that security-hole driver is being rolled back.

____________________
NSMBHD - Kafuka - Jul
melonDS the most fruity DS emulator there is

zafkflzdasd

Sparsite
Posted on 09-24-16 01:38 AM Link | #77888
What the hell.

It's amazing to see what some companies think is "innovative".

____________________
ASMR:
*quietly whispers*
move r0 r7
push r4 to r14
load register r4 into r0
POP

Splitwirez
Posted on 09-25-16 02:47 AM Link | #77968
I'm not even sure whether or not this is worse than online-only.

LeftyGreenMario
Posted on 09-26-16 10:16 PM Link | #78006
It's Capcom, what do you expect?

Also, how can they know if you're cheating or not? What if you're setting up a specific server specifically made for cheats (has its own rules) and just screwing around?

Arisotura
Posted on 09-26-16 10:51 PM Link | #78010
the driver probably monitors the game's process memory and detects 'bad' changes. dunno.

____________________
NSMBHD - Kafuka - Jul
melonDS the most fruity DS emulator there is

zafkflzdasd

Hiccup
Posted on 09-27-16 08:07 PM Link | #78030
Even if client monitoring is really annoying, you can still do it way better than it was done here. This is basically worst case scenario.

Arisotura
Posted on 09-27-16 08:09 PM Link | #78031
Client monitoring shouldn't even be. You don't trust the client. Ever.

____________________
NSMBHD - Kafuka - Jul
melonDS the most fruity DS emulator there is

zafkflzdasd

Hiccup
Posted on 09-28-16 08:44 PM Link | #78061
Yeah. I'm not saying client monitoring is foolproof.

C-lector
Posted on 09-29-16 04:40 AM Link | #78072
It"s shocking to see how companies are doing things like that so often, at least they are going to revert this.

MusiMasta
Posted on 10-01-16 07:08 AM Link | #78129
Posted by C-lector
It"s shocking to see how companies are doing things like this


I wouldn't be surprised if companies do this to attain your personal info and email and stuff like that while fulfilling their "designated" functions.


____________________
MusiMasta - YouTube Channel Currently 374 subs! Help support me by subscribing! Thanks! :)
Featured Videos: I PLAY POKEMON GO EVERYDAY IN 300,000 NOTES
Pokémon Theme Song 260K Notes Remix


C-lector
Posted on 10-02-16 12:56 AM Link | #78163
Well to be honest I wouldn"t be surprised too, but it"s still shocking even so.

Arisotura
Posted on 10-02-16 01:40 PM Link | #78177
let's not get into data leak conspiracy theory, kay?

____________________
NSMBHD - Kafuka - Jul
melonDS the most fruity DS emulator there is

zafkflzdasd

Sparsite
Posted on 10-02-16 04:56 PM Link | #78180
I really dont see what problem they have with cheating in single player. Besides, its a fighting game, so cheating should be very limited and unentertaining besides maybe a moon jump.

____________________
ASMR:
*quietly whispers*
move r0 r7
push r4 to r14
load register r4 into r0
POP

C-lector
Posted on 10-02-16 11:02 PM Link | #78185
Yes, anyways they always and should manage cheating from server side not from the client side too.

NintendoFan
Posted on 10-12-16 09:20 PM Link | #78638
Almost as bad as how the 3DS eShop handles security.

Almost.

____________________
A nobody.

poudink
Posted on 10-13-16 01:06 AM Link | #78666
What's eshop's problem?

____________________
Nothing to say, so jadnjkfmnjamnfjkldnajfnjkanfjdksan jsdnvj m.

NintendoFan
Posted on 10-13-16 01:13 AM (rev. 3 of 10-13-16 01:14 AM) Link | #78667
This is offtopic, but I heard from an acquaintance of mine that the list of games that you own are saved client side on the actual handheld, not server side to an NNID or something like that.

So you could change it to make it that the client says that you own every game, and then, well, you would be able to download any game on the eshop without paying for them.

____________________
A nobody.

poudink
Posted on 10-13-16 01:28 AM Link | #78668
Oh, in that case it's their problem, for street fighter V, the problem is for the players.

____________________
Nothing to say, so jadnjkfmnjamnfjkldnajfnjkanfjdksan jsdnvj m.

Arisotura
Posted on 10-13-16 07:41 AM Link | #78680
Still shows that even major companies don't follow good security practices.

Not that it's surprising.

____________________
NSMBHD - Kafuka - Jul
melonDS the most fruity DS emulator there is

zafkflzdasd


Main - Computers and technology - Street Fighter V comes with a giant security hole. Hide post layouts | New reply

Page rendered in 0.042 seconds. (2048KB of memory used)
MySQL - queries: 28, rows: 234/234, time: 0.012 seconds.
[powered by Acmlm] Acmlmboard 2.064 (2018-07-20)
© 2005-2008 Acmlm, Xkeeper, blackhole89 et al.