this post was submitted on 18 Aug 2025
87 points (97.8% liked)

Technology

75494 readers
2827 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws
87
Secure Boot, TPM and Anti-Cheat Engines (andrewmoore.ca)
submitted 1 month ago by Pro@programming.dev to c/technology@lemmy.world
21 comments fedilink hide all child comments
 

cross-posted from: https://programming.dev/post/35893414

Comments

Anti-cheat engines are now requiring users to have Secure Boot and a fTPM enabled in order to play online multiplayer games. Will this decrease the amount of cheating, or is it a futile attempt at curbing an ever-growing problem?

you are viewing a single comment's thread
view the rest of the comments
[–] LainTrain@lemmy.dbzer0.com 4 points 1 month ago (2 children)

Great article.

Probably a dumb question, but my mobo has an option in the setup utility to "enroll hash" and it seems to let me pick an .efi executable.

Can I just use that to sign any bootloader (or efi executable for that matter) I want, e.g. HackBGRT, GRUB2, and if so, would that allow me to play Battlefield 6, or would the other features like TPM attestated logs indicate the chain loading and flag me for a ban (or simply not let me launch the game) ?

[–] deur@feddit.nl 6 points 1 month ago (1 children)

No, Windows anti-cheats will check specifically for Microsoft's keys in use.

[–] LainTrain@lemmy.dbzer0.com 1 points 1 month ago* (last edited 1 month ago)

Shame. Someone needs to steal these.

EDIT: Battlefield 6 Open Beta launches for me when I enrolled the HackBGRT hash into my mobo's SecureBoot lol. But I think I am shadowbanned.

[–] WhyJiffie@sh.itjust.works 1 points 1 month ago

if that function is for signing custom efi binaries, you can still only sign it using your own keys. that would work to attest that you trust it and approved running that thing with secure boot enabled, but anticheats are looking specifically for the approval of microsoft, for which microsoft would need to sign it with their own key.

you probably wouldn't get banned, the game just won't launch. but be sure that you are not runnig the "process hacker" task manager along with the game, neither similar tools inname because formerly garbage anticheat was triggered to the "hacker" name in the process name. I don't know if that would trigger a ban though, or they just wouldn't allow connecting, but since this is niche software and they won't have any recourse for false positives maybe I wouldn't try my chances unless I wanted help in stopping playing that game forever.