Ask HN: Why can't anti-cheat software work on Linux?

Valorant and the like use kernel modules. They run along side the most critical portions of the OS, just like many hardware drivers. This allows them to detect anything happening on the system.<p>Kernel modules need to be written for the operating system, so this means there would need to be a userbase present on Linux&#x2F;macOS to justify writing such a driver (writing kext for macOS is even more difficult as Apple has more or less banned them).<p>You don&#x27;t want these types of anti-cheat. I would encourage anyone looking into games that use kernel modules for anti-cheat to avoid them.<p>Unfortunately user-mode anti-cheat has been defeated time and time again.

You&#x27;re mistaken, anti-cheat (some of them) <i>do</i> work on Linux[1], such as Easy AntiCheat, BattlEye, nProtect GameGuard etc. But not every game using these will work, since some of them require the developer to enable Linux support - which is usually as simple as ticking a box. Unfortunately, many game studios &#x2F; publishers don&#x27;t want to support Linux, for various reasons. Some of them even are even biased against Linux, such as Epic&#x27;s Tim Sweeny, who has made several unsubstantiated nonsensical claims against Linux. Unfortunately there&#x27;s not much you can do about these people &#x2F; studios, besides boycotting their products and services.<p>There&#x27;s also a second category of anti-cheat (kernel-level), which will never work on Linux, as @p_ing elaborated. I second their opinion that you shouldn&#x27;t run games which use these, even on Windows. The Crowdstrike incident has shown us how dangerous such programs can be (causing BSODs and instability). Kernel-level anti-cheat programs are even <i>more</i> dangerous, since they monitor everything on your PC, actively sabotages any inspection tools, and protects itself from being uninstalled - which is behaviour very akin to malware&#x2F;rootkits. You should _never_ install such programs on your PC. Once again, the solution here is to vote with your wallet and boycott games and studios which use such solutions.<p>[1] <a href="https:&#x2F;&#x2F;areweanticheatyet.com&#x2F;" rel="nofollow">https:&#x2F;&#x2F;areweanticheatyet.com&#x2F;</a>

Technically, anti-cheat requires control over the system (computer being used, room and network where the test happens).<p>An open source operating system could be used to block or circumvent the control check points of said spyware. So installing it on your Linux workstation may not provide enough guarantees.<p>But... the unasked question, but important one is: why install one on _your_ computer? If someone (school, org, whatever) needs you to pass a test, they can provide the whole package if they want to exert control over the whole context of the test.<p>But submitting in advance to their own requirement (it&#x27;s not _your_ requirement), by compromising your own computer?<p>This may as well be a hidden purpose test, where refusing to install said software is the &quot;good&quot; answer. And if the employer doesn&#x27;t accept&#x2F;understand that, that&#x27;s... problematic for them on a whole other level.

Be psyched that it doesn&#x27;t. Anti-Cheat software is spyware at it&#x27;s finest.

There&#x27;s more variation. Every Windows system is basically alike. Anything unusual is a cheat. Every Linux system is not alike.<p>You could make one that works for Ubuntu.<p>Anti-cheat often tries to detect suspicious modules, for example. On Linux, that suspicious module could be a buggy or obscure driver for some obscure piece of hardware. On Windows, at least it&#x27;s signed by Microsoft saying &quot;this is a real driver for an obscure piece of hardware&quot;.

Namespaces allow to fake filesystems, processes, users, devices. selinux, apparmor, ... can deny access for the anticheat.