To be fair, if it was actually malware it could easily have done it hidden and in the background with no need for it to open cmd
it opens automatically for programs without guis that forget to set the "please don't show cmd" flag. i made a program for my grandmother to automatically sort her photos and it would always flicker that damn window because i couldn't figure out how to set the flag from Go :(
Now, that's sweet
go build "-ldflags -H=windowsgui"
Or do you mean with exec?
that is what i used but i could not get it to work, possibly because the program did not have a gui either. it was just supposed to be a "button" in the file explorer.
Huh, strange. That sounds really annoying if every time I press a button a terminal flashes on screen.
for a poweruser yeah but this is my grandmother we're talking about. she only used the program once every six months, when her camera ran out of space and she emptied it onto the computer.
You wrote an add-on for your grandma? That's cool
I have many non pirated games that do that, too.
I hope WINEPREFIX is thick enough for a condom.
Now say it with me, WINE IS MALWARE COMPATIBLE
Run wine with sudo. Yolo
Not if I don't give it access to my Linux files
Not exactly true but for simple malware yeah
I think wine maps at least your home directory into prefix, so your data would be in danger.
yup, home (or was it root actually?) is commonly mapped to the Z: drive, and it's writeable too. Wine isn't meant to be a security layer.
Wine, in Bottles, in Flatpak. Worst IKEA experience I've had.
is that some kind of newfangled swedish fetish?
There's a Bubblewrap wrapper for wine: https://github.com/hartwork/sandwine
Windows applications can still access the Linux functionality when running under Wine, though of course that has to have been purposefully coded in.
However you can run wine itself inside something like firejail to properly sandbox the whole thing - I have Lutris in my Linux gaming machine configured to do just that for all games by default (my firejail config even blocks networking).
How do you configure that by default?
There is a launch configuration option under each game (under System Options tabs, if I'm not mistaken) called "command prefix" were you can put the firejail stuff (so if you put just "firejail -someoption" there your game gets launched with, for example "firejail -someoption wine ...") or whatever other sandboxing command you want to use (such as bubblewrap).
In the main Lutris options, there's a section with the default values for all those launch options for games, so if you put it in the "command prefix" there, all games get launched with that command prefix unless you override it in that game's launch options (so, for example, if you're blocking networking for all games but want to run a game for multiplayer over the net, you override the sandboxing wrapper options in that game's launch options specifically, which won't affect any other game).
I dont pirate games, and I see them sneaky command windows opening and closing a bit. Mainly on startup
Same, on Windows 11. Not sure what causes it. Someone should make a utility that logs every time a cmd window was opened.
You know you can check the actual windows logs right?
Edit: you can also enable CMD logging, you don't need someone to write you a program
I tried to learn how to do that with event viewer and then some other power tool thing but I could never figure out.
Malware installation tool crashed, because call not supported in Wine. Good.
Important: https://wiki.archlinux.org/title/Wine#Prevent_Wine_from_creating_filetype_associations
They should really create a simple cli switch for that.
The fuck should I care? I already installed Windows entirely with informed consent.
The fact they are collecting telemetrics and are constantly monitoring them. My laptop sped up considerably when I debloated Windows.
That's my point. If I'm already cool with Windows, what should I care about other, lesser, malware?
My windows is installed on separate ssd and snapshotted regularly, opening browser on windows without ad blocker probably is more dangerous.
Unless you have the other SSDs physically disconnected, you're still running the risk of having your other installations affected by ransomware.
Probably, yeah, but I have exported snapshots and backups for such cases, and data itself is encrypted. So at worst a few hours lost. They can be easily disconnected i just never actually do it.
Many malicious actors don't trigger their payload that you would notice until after data has been mined.
I've visited businesses to help put together basic infrastructure after their systems were encrypted and ransomed. We would bring up a backup from the night before only to find the system still infected. We would go back a week, 2 weeks, a month.
These things lie in wait and only as the final nuclear option do they get noticed.
It would still need ti be an immutable install
Same, I just threw windows on a 1tb ssd and it does nothing but play pirated games. Go ahead and collect what you want lol
yeah, that’s all good until your pwned pirate PC roots your router and printer and baby monitor, and your LAN becomes a DDoS source.
Jokes on u I can't afford internet
Why would I connect it to the Internet?
How are you downloading the games
Amd over clocking tool thing does that and I hate it
Lol Windows
Malware would explicitly have to be executing a terminal for a window to popup. They can just call a shell directly.
Thats why you virtualize. I have a program that I must use from time to time because of legacy issues, and much content in their propietary format. The solution was either pay out the wazoo for accesing my own content a few times a month, or arrr it. A download, and a VM does the trick. And bonus, I can use it in Linux, too.
Fortunately, ours is a world in which virustotal.com exists.
!gaming is a community for gaming noobs through gaming aficionados. Unlike !games, we don’t take ourselves quite as serious. Shitposts and memes are welcome.
1. Keep it civil.
Attack the argument, not the person. No racism/sexism/bigotry. Good faith argumentation only.
2. No sexism, racism, homophobia, transphobia or any other flavor of bigotry.
I should not need to explain this one.
3. No bots, spam or self-promotion.
Only approved bots, which follow the guidelines for bots set by the instance, are allowed.
4. Try not to repost anything posted within the past month.
Beyond that, go for it. Not everyone is on every site all the time.
Logo uses joystick by liftarn
