A new game has been released for the Mac. As you play, it deletes files. Symantec is describing it as malware.
Malware? How is that? When you run the program, at startup it supposedly tells you that it’s going to delete files while you play!
Well, that’s how Symantec describes it. Supposedly someone else could modify it to be a real threat.
If I try it, I’ll create a new user account for it.
You could modify it, sure, but then again you can easily write your own program to do a bunch of malicious stuff (if you’re a programmer). The tricky part is convincing someone to download your program and run it.
I seem to remember, many many years ago, a Hypercard stack that would show you black and white pictures of naked women (this tells you how long ago that was) and while you were viewing the pictures it would be silently deleting files in the background.
A friend of mine linked me to the PC version of this a few weeks ago. Sounds to me like some pretentious college student shooting for profound insight and missing by a mile.
I haven’t seen the “game” in question, but perhaps people simply wouldn’t take the warning seriously? There have been numerous (actual) video games over the years that threaten to “delete your save file” (Banjo-Kazooie, for instance), and of course they don’t.
Actually, Banjo-Kazooie would delete your save file if you put in too many cheat codes at once, though it would warn you. Not that big a deal though, since it isn’t deleting non-game files on your computer that would be important.
As for this game, what’s the point? Why would anyone play a game that deletes their files? If the game’s meant as a statement and not meant to be played, then…okay, but…why??
Ye gods, reading that alledged “news article” gives me The Rage. How is this piece of software “attacking” anything, when the author tells you quite openly what will happen if you run it? This kind of shite masquerading as journalism and getting accepted as the norm, is a much bigger threat to everyone than some random guy’s art project.
"Multi-Level Buildings Attack Unsuspecting Citizens! - Buildings with multiple floors can conceivably be used to commit suicide. "
Also,
rm -rf ~
If typed in a local terminal window, that line will delete everything in your home directory on your Mac, without asking for confirmation. Better alert Symantec, since it’d take someone only a few seconds to make a script file out of that and use it for some Unspeakable Devilry.
Speaking of Lose/Lose itself, I suspect Mr. Cage can count it as a success. Some people seem to be mightily annoyed by the fact that they’re given the option to shoot the enemies, but are being penalized for it. Which shows how narrowly we view what computer games should be like.
I found this quote delicious, given the shitstorm the game has caused by doing something that people can’t immediately categorize, but somehow feels negative, considering that it’s their preshus files we’re potentially talking about, even though nothing forces them to even download the game:
I personally think all games should be sandboxed in such a way that they can’t write files outside of their preferences/save game folder. There’s no reason for the game to even see anything else in my home folder.
In fact, this should go for all programs. Except maybe that should be limited to “overwrite”, and exclude the document you are explicitly opening (although that should have an automatic backup.)
For that matter, games shouldn’t create anything outside their own damn folder. I hate hate hate hate hate games that create their own folder deep inside MyDocuments, and C:/Program Files (I don’t use that folder. DON’T USE IT EITHER, especially after you’ve prompted me where I wanted to install the gorram game, and I answered “not in C:/Program Files.”)
What you two ask isn’t feasible. The way that operating systems and applications work these days is so complex that you’re asking the impossible.
Edit: And how do you not use the program files folder? There’s shit in there right from the get go from the Windows install. Since those things have to be there, might as well put all your other applications in there that want to be, right?
Delicious? I can’t even parse it. I have no idea how what he said links up to his game at all.
Ages ago, there was a mod for Doom (or maybe Doom II) where every time you killed an enemy, it killed a process on your computer, with the final boss corresponding to the process for the game itself. This is nothing new.
Essentially he’s asking “Have we gotten to the point where something so precious to us is contained in things we don’t really understand?” Which is kind of silly, in my opinion. There’s quite a bit we put our trust in that we don’t always understand.
For example, I’d be surprised if the average Joe could tell you how air bags, anti-lock brakes, and other car safety features work, and yet we for the most part trust them to keep us safe.
I remember that, too. It was actually for Unix, and a “tool” for system administration. Each baddy represented a process and they were labeled, though. Here’s a link
My app folder is not on c:, and neither is MyDocs - in fact, as little as possible is on c:. It’s a habit I took up when I worked as a sysadmin. Makes it much easier to scrap and reinstall the OS if (or rather, when) it craps over itself.
So, when it does, I hardly think about it, format the system drive and reinstall a clean Windows from scratch… only to find that all my saves have disappeared, because the game used the general c:\MyDocs folder instead of X:\Kobal2\Documents which is the default on this machine. Or because half of the game was in c:\ProgramFiles, or whatever. It’s just bad form.
I think you are misunderstanding me. Have you used a Mac? All the files for an app are in one folder (that ends in .app). Even on a PC, the only time a program usually WRITES outside of it’s directory (or the appropriate AppData directory, now that we are being more careful with account restrictions) is when it is installed. And all it really needs to write are shared DLLs, which should be signed anyway. You need to know they are safe to install, so you won’t mess up some other program that needs it.
Once a game is installed, the only time it needs to write to disk is when you save or modify configurations. Other apps may need to edit a shared document, but that allowance could be explicit by letting the OS handle file selection. It wants to overwrite a file? The user has to specifically tell the OS which file it’s allowed to touch.
And of course there would be exceptions, like antivirus software, that really need to have access to the whole system. I would also expect these to be signed. The user should get a dialog box like “This Antivirus Software has been signed by XYZ company. If you trust this company, click Install. If not, click Cancel.” And allow only an Administrator to edit the allowed list. Yes I realize this would require a complete overhaul of how OS’s currently work. But, right now, the best security model we have was designed over 11 years ago.
I used to do that, back before I realized I’d have to wind up reinstalling most of those programs anyways. (I could try to keep track of registry changes, but that’s a lot of work.) But, instead of changing the default directories, I turned them into Junction Points (aka folder symlinks before the stupid Vista implementation). That way, any program that tries to write in the wrong folder still gets redirected. Vista on up comes with a command line program to do it, but Windows XP doesn’t. There are two different programs for this (one command line, one an Explorer extension) in the external links section of the Wikipedia link above.
I still do this for MyDocs, as there are still some programs that expect it to be on the C drive. I probably should do it for my entire profile folder.
You can run any program in it’s own little sandbox and it can’t run amok trashing your computer or leaving crap laying around everywhere. Just delete the sandbox and you delete everything the program created or changed.
I have no idea why windows does not do something like this automatically, or at least have a built in option for it.
What bothers me about this game is not the security hazards it poses but the lofty airs the developer puts on claiming he wants to make people “think about what it means to be the aggressor in a video game”. Utterly pretentious tripe.
I really don’t feel that I have a narrow view of how computer games should be like but honestly, but randomly destroying system files would definitely be on the list of what computer games should not be like. Beyond that, I’m open for discussion.