←back to thread

Game launcher installs Root CA certificate on your machine (2024)

(github.com)
61 points vandalism | 2 comments | 07 Sep 25 01:13 UTC | HN request time: 0.407s | source
Show context
sneak ◴[07 Sep 25 01:39 UTC] No.45154582[source]
The entitlement of application authors to do whatever the fuck they want on your machine is astounding to me.

Root CAs, background processes 24/7, uploading of the full process list, clipboard spying, local network scanning, surveillance (aka telemetry) - when did developers decide that our machines aren’t ours anymore?

replies(5): >>45154600 #>>45154605 #>>45154643 #>>45154652 #>>45154741 #
chmod775[dead post] ◴[07 Sep 25 01:43 UTC] No.45154605[source]
[flagged]
1. hamandcheese ◴[07 Sep 25 04:25 UTC] No.45155392[source]
If I gave away free brownies that happened to be poison, but I really didn't mean to, I still probably should be held liable in some way.

If I was giving away free brownies, and someone kindly informed me that they were poison, and I continued to give them away, I belong in prison.

Edit: it seems like there's been no activity in the repo since before the issue was filed, so it's hard to say if the author can be considered to have been informed.

replies(1): >>45155477 #
2. vandalism ◴[07 Sep 25 04:49 UTC] No.45155477[source]
There has been a new GitHub release in April of this year, however, it seems to have been made by a member of the community along with the commit it includes, instead of the original creator.

Edit: There seems to be activity on the author's account which points to the conclusion that they are aware of the issue and are making (still at least somewhat questionable) changes for a new (unreleased?) version of the launcher to address the problem.

https://github.com/Zacam/SBRW.Launcher.Net/commit/f09d911fca...

As far as I am aware the launcher repo I linked in the original post is still the main launcher players use for the game, meaning people are still getting the certificate permanently installed.