27.08.2011, 10:23
(
Последний раз редактировалось Gamer_Z; 19.09.2011 в 21:30.
)
Why I never will use "SA-MP Live"
by Gamer_Z
This topic is only to make you aware of the dangers (and possible dangers) of using "SA-MP live"
_________________________________
Well, you may think it's a cool tool but let's take a look behind the minds of a few people.
But before we are going to take that look, let's first glance at the application:
"This application requires Administrator rights to run";
Which means the application can
-take control of our whole computer
-do ANYTHING it wants with our system
And that means it can be a vulnerability, but it shouldn't be yes? Because it's already downloaded to our PC
and it's 'only' "186KB".
So I fire up VMware
And have examined the app further and you don't need to be a genius to see that it's DOWNLOADING
something from a remote web server (WHILE it still has the Administrator Rights!),
But when downloading with such high privilidges it makes your PC very vulnerable,
Making a FUD (Fully Undetectable [ Scantime + Runtime ]) virus or keylogger is nothing hard in this times and let's
say that a virus doesn't need to be bigger than 50 000 bytes (50 KB).
And Even if the authors of SA-MP Live don't want to virus us, then their web server can be compromised and an attacker could
upload his virus or include it into the sa-mp live application. - Nothing hard for a amateur hacker/script kiddy.
Also after installing it into a fake GTA directory I noticed it takes up to 55 MB of space, hell of a lot!
Note that they did not let you know that it will take 55MB, the application states it will only need '200KB' (which is the live updater itself)
and after the updater launches it won't say how much it needs, it just keeps going on without asking users permission.
Their FAQ doesn't answer my question too: "What are the (free space) requirements?".
We are now going into the 'psychologic' part.
Now I think you are aware you can EASILY be virused, trojaned, whatever or even an part of a Bot-Network
(Which is illegal in most countries, even if you don't know you are you can be arrested just because your PC is part of it)
So if the authors want a BotNetwork they can have it, If the authors won't it then an attacker (hacker/script kiddy) could easily do it.
It's just a matter of time before anti virus software detects it but if it takes one month to detect that the virus exists
then it will take another month to examine it and make removal procedures (without having to reformat your PC).
Now just because the authors are "Trusted" people doesn't mean they are 'Approved'.
I even think most people who are aware of the dangers don't really trust them.
Firstly of all, the developers are running 'SACNR' - a sa-mp server, so that is concurency.
Let's say they made a 'plugin' for their own server to do something the user doesn't know it will happen.
For example download a file, scan users documents, extract passwords from internet browsers, whatever.
This is Closed source software so the authors have the possibility to do anything in their application they want to.
Including making us not aware what they created in they software, maybe they made sa-mp live but maybe it's not the
software they intend to make, like I said, it's easy to make a bot network, virus, password extractors, etc.
And because this application uses an installer and uninstaller the behaviour can be seen as CLEAN software even by modern norton antivirus software.
Or even maybe they did make something to get our harware ID's, MAC Adresses? Just to make a ban system on their own server,
So users which don't have sa-mp live installed can change ip and get on the server but cheaters using sa-mp live will just be banned forever on sacnr.
Easy right?
Well I made you aware of the dangers, I hope you make a wise choise using this software.
Again: This is not meant to NOT use the software, This topic is only to make you aware of the dangers.
in short:
1)I won't recommend it until the installer will include the whole software, so you can check MD5, SHA-1 sums to check if nothing has been modified in the installer.
2)Until it will be open source, so they cannot do anything behind our back
if you have your own reasons why not to use this software please post in this topic ;]
Kind regards,
GZ
Also JernejL posted something, and I want to add a reason by me too why it's so suspicious:
Most software is meant to make money OR be open source,
this software (SA-MP Live) isn't meant to make money, advertise, or even be open source so that's also a reason why it's suspicious.
Take a look:
SA-MP is meant to make money, and closed source.
FireFox is meant to make no money but is open source.
****** Chrome is and free closed source web browser, it doesn't need to make money because it's a billion money corporation which earns on Advertisement.
by Gamer_Z
This topic is only to make you aware of the dangers (and possible dangers) of using "SA-MP live"
_________________________________
Well, you may think it's a cool tool but let's take a look behind the minds of a few people.
But before we are going to take that look, let's first glance at the application:
"This application requires Administrator rights to run";
Which means the application can
-take control of our whole computer
-do ANYTHING it wants with our system
And that means it can be a vulnerability, but it shouldn't be yes? Because it's already downloaded to our PC
and it's 'only' "186KB".
So I fire up VMware
And have examined the app further and you don't need to be a genius to see that it's DOWNLOADING
something from a remote web server (WHILE it still has the Administrator Rights!),
But when downloading with such high privilidges it makes your PC very vulnerable,
Making a FUD (Fully Undetectable [ Scantime + Runtime ]) virus or keylogger is nothing hard in this times and let's
say that a virus doesn't need to be bigger than 50 000 bytes (50 KB).
And Even if the authors of SA-MP Live don't want to virus us, then their web server can be compromised and an attacker could
upload his virus or include it into the sa-mp live application. - Nothing hard for a amateur hacker/script kiddy.
Also after installing it into a fake GTA directory I noticed it takes up to 55 MB of space, hell of a lot!
Note that they did not let you know that it will take 55MB, the application states it will only need '200KB' (which is the live updater itself)
and after the updater launches it won't say how much it needs, it just keeps going on without asking users permission.
Their FAQ doesn't answer my question too: "What are the (free space) requirements?".
We are now going into the 'psychologic' part.
Now I think you are aware you can EASILY be virused, trojaned, whatever or even an part of a Bot-Network
(Which is illegal in most countries, even if you don't know you are you can be arrested just because your PC is part of it)
So if the authors want a BotNetwork they can have it, If the authors won't it then an attacker (hacker/script kiddy) could easily do it.
It's just a matter of time before anti virus software detects it but if it takes one month to detect that the virus exists
then it will take another month to examine it and make removal procedures (without having to reformat your PC).
Now just because the authors are "Trusted" people doesn't mean they are 'Approved'.
I even think most people who are aware of the dangers don't really trust them.
Firstly of all, the developers are running 'SACNR' - a sa-mp server, so that is concurency.
Let's say they made a 'plugin' for their own server to do something the user doesn't know it will happen.
For example download a file, scan users documents, extract passwords from internet browsers, whatever.
This is Closed source software so the authors have the possibility to do anything in their application they want to.
Including making us not aware what they created in they software, maybe they made sa-mp live but maybe it's not the
software they intend to make, like I said, it's easy to make a bot network, virus, password extractors, etc.
And because this application uses an installer and uninstaller the behaviour can be seen as CLEAN software even by modern norton antivirus software.
Or even maybe they did make something to get our harware ID's, MAC Adresses? Just to make a ban system on their own server,
So users which don't have sa-mp live installed can change ip and get on the server but cheaters using sa-mp live will just be banned forever on sacnr.
Easy right?
Well I made you aware of the dangers, I hope you make a wise choise using this software.
Again: This is not meant to NOT use the software, This topic is only to make you aware of the dangers.
in short:
1)I won't recommend it until the installer will include the whole software, so you can check MD5, SHA-1 sums to check if nothing has been modified in the installer.
2)Until it will be open source, so they cannot do anything behind our back
if you have your own reasons why not to use this software please post in this topic ;]
Kind regards,
GZ
Also JernejL posted something, and I want to add a reason by me too why it's so suspicious:
Most software is meant to make money OR be open source,
this software (SA-MP Live) isn't meant to make money, advertise, or even be open source so that's also a reason why it's suspicious.
Take a look:
SA-MP is meant to make money, and closed source.
FireFox is meant to make no money but is open source.
****** Chrome is and free closed source web browser, it doesn't need to make money because it's a billion money corporation which earns on Advertisement.