@same@tech.lgbtIntroducing Windows for GAMERS !!! Everything will be run as Administrator by default.
@sameAlso disables Windows Defender and mitigations for Spectre and Meltdown lol
@same EVEN MITIGATIONS????
@same "this protects you from really nasty shit. anyways we disabled it"
@foxxo no clue tbh but this is moreso meant to run on your host pc
@chfour @same So… I guess “Microsoft tried”.
macOS sandboxed execution environments, code and asset signatures, System Integrity Protection, layered filesystems to protect system resources, …
Apple seems to be doing.
(Though, admittedly, I can still redirect memory management via Mach VMM functionality; it’s a bit more of a PITA today. :cough: I totally don’t write competitive game hacks. :cough:)
@DarcMoughty @chfour @same honestly, yes. But this shouldn't be the default! disabling mitigations on linux is next to trivial for experienced users with wiki access, but the average user is downloading random files from the internet and IS going to be affected by this. At least if enough people are doing it so hackers bother to exploit it.
@Riedler @chfour @same I absolutely agree that they should default to 'on'. Heck, I leave mitigations on for my Windows machines because of how programs are downloaded and installed on that platform, and it's much riskier for typical gamers. My son is constantly asking me to install things on his machine that make my scalp tingle when I think of what they might be capable of.
@same This is why I always steer clear from custom Windows versions most of them are sketchy as hell.
@same@tech.lgbt > No spectre mitigations
Ohhhhhh boy, this one's bad. Then again, since everything runs as administrator, do you even need vulnerabilities to read private information? 
@benaryorg@catcatnya.com@scarlett @same Ah yes, finally a system where I don't feel the need to enable KASLR because doing so would be pointless. Finally a Windows installation where I don't feel the need to check that one checkbox that breaks 90% of anti-cheat and DRM systems causing many games to be unable to run.
Finally.…?
@same Everything for those extra FPS 
@same this was my exact impression when watching the LTT video..
@same to be fair, I don’t think a ton of gaming PCs are being targeted by timing side-channel attacks - I always thought the big risks were on VPSs
@sameMaybe an attack that could be prevented with mitigations is not likely to happen, sure.
Running literally every executable as an administrator out of box and not having any sort of antimalware software is the bigger security issue here.
Maybe you can determine a malicious executable just by looking at it, but I bet a large majority of the target audience for this can't, and probably will just download something very sketchy.
They can still run something like Malwarebytes and scan suspicious executables before running them. Microsoft recently patched an issue where the Anti Malware service was reducing Firefox performance by 75% by triggering too often. That's an interesting patch note given how often people were saying that scanning has no effect on performance.
@Riedler if someone knows enough about a system and has enough access to successfully run a side channel Spectre, the machine has already been owned
@nkizz to be fair, I don't know enough about cpu exploits like this to comment further.
But I will say that industry standards exist for a reason, and I know both windows and linux have mitigations enabled for default, so…
but yeah, no point discussing this further, I really just don't know.
@Riedler fair enough, people overreacting to spectre is my own pet issue
disabling UAC is just silly tho, esp bc it has no performance gains
@rastilin @nkizz @same There's a good chance the people using this are also downloading cracked executables from the internet without even checking if they're safe. If you're not careful, it might be bundled with stuff like cryptomining software or worse.
Or all it might take is a USB with a virus on it, Windows sees it and autoruns some code on it and boom, your desktop is compromised.
So maybe intentional attacks won't matter. But unintentional ones do.
@Foxhack windows hasn’t auto run code from removable devices for over a decade, it isn’t the era of stuxnet anymore. I’d be interested to see if anti-virus deals with crypto mining, I’d imagine it would be pretty easy to detect? but it wouldn’t even need admin to run since it’s not accessing system files
disabling UAC is dumb since it doesn’t affect performance but there’s always a line. the only secure computer is one that’s turned off and buried underground lol
@nkizz This exploit was found and reported less than two years ago. It's luckily already been patched out. As you said, it's not Stuxnet, but that Razer software was installed in a lot of systems so it could have been a problem.
Windows is a pain, haha. :(
@Foxhack oh god yeah, once you have vendor addins it’s all over, but it’s not as if using the software that came with ur mouse is some wild, out-there use case
I always wonder how much of window’s reputation is due just to its widespread use. like are kernel modules a better way of doing things? it seems like no to me, but who knows
@nkizz I am not smart enough to understand most of what you're saying :D
But I've had to deal with computers getting bricked because someone did a thing they're not supposed to - often times by myself - and when I see warning signs I let people know.
I apologize if I sounded preachy or something, I'm bad at writing things online.
@same
And even updates gets delayed until they launch a new version, saving precious time installing useless security patches.
@same …well, hey, at least you’re getting better frames, right? at least until the virus you downloaded disguised as a “PC optimizer” starts mining crypto on your GPU
and then oh dear, looks like you also downloaded some ransomware, and ran it as admin no less, if only you had the option to not do that
@same I wanted to use this, but... That's a few steps too far. There is plenty of crap that can be disabled, but uh.. not security.
@sameI mean to be completely fair, you can enable the mitigations and UAC post install, but i'm not sure about Windows Defender, and Windows Update definitely is broken so you'll need to rely on the AtlasOS team for those.
There are far less nuclear options to make Windows better by disabling Telemetry and uninstalling bloat.
@same @ArchyD yes. And for a bit of positivity:
I recommend O&O shutup10++
it's mostly antispy, but you can generally disable some annoyances and bloats too.
https://www.oo-software.com/en/shutup10
I'm not too versed in windows fuckery (I haven't even started my windows PC in several months), so maybe this is surface level or even bad, but it's miles better than whatever atlas is doing.
comment your own recommendations and maybe we'll start a thread or something idk. I'll boost stuff I like.
@KitRedgrave@treehouse.systems@same this is horrifying
@same The whole list of stuff they disabled is pretty shockingly bad. At that point, I might as well just hope over to Linux on an older PC and stick with that's available via Steam/Proton.
@Aglaia89@norden.social@same i'll bet that all of this "performance boost's" are in the ballpark of maybe 1% more FPS.
And than installed several programs for the RGB nonsense
@same@tech.lgbt Now, to be fair, it's not like gamers would care. Online games today include anti-cheats that run in kernel mode which jeopardizes any permission control you have in userspace. And they will refuse to run if you don't allow the kernel-mode anti-cheats to run.
@chjara@snowdin.town @same@tech.lgbt I personally just classify them as malware, period. I'll only allow proprietary games to run if they work over Wine, which also means no kernel mode anti-cheats. But even that is probably too weak of a security model compared to what they are willing to do.
@PeterCxy@comfy.social @chjara@snowdin.town @same@tech.lgbt Fun fact: Windows Defender will flag anti-cheat drivers as malware, when exploit mitigation is turned on (rightfully so)
@same@tech.lgbt ANY program is allowed to load kernel drivers to make anti-cheat setup easier!!!!11
@same "we have decided to turn off every security feature known to man so you can become a gamer" - atlasos
@twann@same it's like using root user for daily tasks on UNIX
