How do I know who to trust on cs.rin.ru?
I was looking for a pretty niche indie game, but I wanted to try it out before purchasing... The only link that still works is made by a user who made their account 4 years ago and about 700 posts, but also 1 warning.
How do I know whether or not I should trust this link?
Is the game older, that no active links remain? In that case any up to date antivirus should find whichever malware might be embedded in the game easily.
Better yet, launch it in a VM with an antivirus
If you want to be very sure: no Internet connection. There are some ways to escape a VM, but its not very likely.
I'd believe that such a malware with those zero days would target higher value targets than gamers looking for 60€ entertainment.
Yep, was just meant as a "I want it 100% secure" way. Not saying its likely.
Depends. Smart people have children who do stupid shit lol.
True.
It's not that old, just a bit niche.
700 posts is usually fine. I tend to trust repacks less though.
Or run it in Linux with proton. Same as VMSo it seem I was mistaken to feel safe using proton/wine. I stand corrected.
Wine is not an emulator. Windows malware works on wine/proton
I didn't knew, thanks
Most don’t actually because Wine Is Not an Emulator. It’s a stripped down windows environment that likely doesn’t have the necessary DLLs installed or the file structure to run it. Moreover, WINE doesn’t really do things by itself. If anything did run under it, you’d see a wine-server process spin up.
It’s definitely not 100% safe, but it’s also not a gaping hole either.
It really isn't, malware still can easily break out as wine nor proton were never designed for isolation in the first place. Easy example is the Z drive giving program access to the whole Linux filesystem.
Ho I see, I stand corrected. Thanks
Proton is not the same as a VM. It has direct access to your filesystem. It could delete your entire home directory if it wanted to.
Although, as a practical matter it provides some protection in the sense that most malware is probably not designed to do that and will, at worst, fuck up the Windows environment created by Wine / Proton. It's not something to rely on but it is a bit safer than running something directly on your home machine as a practical matter.
(Although I guess that depends what the malware does. If it searches every document on your system for credit card numbers and sends them to Albania, that would probably still work.)
Here is a comment I made in another thread:
For pirated games, I recommend Bottles installed as a flatpak. That's because it has a per-game toggle for sandboxing the app, not giving it access to your complete home folder and optionally no network access or audio output.
Even when using trusted sources, you can never be safe enough. Bottles with sandboxing will at least protect your files from crypto trojans and prevent you from becoming part of a botnet. It should not have any impact on performance.
Remember to put all installer files anywhere inside the prefix folder, otherwise sandboxing denies access to them. After creating an empty game entry in Bottles, check the 3 dots menu for the option to open it in your file explorer.
As an extra layer of security, always run wine / proton as a separate user, for example via sudo, or even better via schroot, which won't let the "Z:/" drive see your entire filesystem.
I find Z drive seeing my filesystem a useful feature, for mods for example.
Never player with Chroot need to look into it.