The wild speculation and naitivity in these threads are out of this fucking world.
Isn’t this ignoring the whole thing in the link about negative responses being removed?
Sure you can’t have mods being vigilant 24/7, but the link seems to be arguing they’re being vigilant in keeping the bad link up.
Uploads are disabled for new accounts
This is simple to bypass. Accounts must be 30 days old to upload?
Create an account or 3 each day.
Post using the newly mature accounts till they get banned and move on to the next one.
how can it be so hard?
A simple solution to a complex problem is usually wrong.
You know it’s bad when the almost constantly unhinged ‘Empress’ is the one speaking sense.
You looked at that screenshot and said, “Ah yes, here’s someone speaking sense” ?
This is also a TVTropes article, of course.
Yeah, except EMPRESS was just complaining that her own torrents got deleted, not that others were unsafe
It’s one torrent that’s not safe. That doesn’t make the entirety of the website unsafe!
If the admin are in cahoots with the crypto mining douchebag, then no part of the site is safe.
what evidence is there that this is the case?
edit: oh, I see. that’s… pretty damning!
1337x mod response on Reddit, seemingly confirming the existence of the torrent: https://i.imgur.com/ij4CXIm.png
They appear to be implying that it was only checked, verified to be malware and deleted… after the listing was vigorously defended by mods and users complaining that it was malware were banned. Very odd.
EDIT: Found an archived copy of the listing before it was taken down by 1337x mods. Includes some comments (up to yesterday).
User comments provide proof that malware was uploaded (and 1337x mods themselves admitted it was malware in the Reddit response), yet VitaminX remains unaffected on the site: https://1337x.to/user/VitaminX/
There are preserved comments from the 1337x mods, such as:
Ex0duS5150: the next user posting, “Trojan found” is getting the ban hammer. Stop it with the n00bishness. this torrent is not dirty if you dont know what your doing stop DLing torrents.
reply:
IGGGAMESCOM: @Ex0duS5150: thank you so much for this reassurance buddy, now I can breathe a sigh of relief instead of having to “fight” with those guys, lol.
I wouldn’t trust anything from a P2P site that purports to be:
- A cracked game / application for desktop and mobile platforms. Maybe it’s legit but assume it is malware.
- A serial number generator. If you absolutely must run one of these do it from a throwaway VM, or via WINE emulation to mitigate what it might do.
- An encrypted archive with a README. It’s a scam designed to make people sign up to other scams to release a non-existent password.
- A movie / audio with an extension such as .scr, .wma, .com, .exe etc. It’s malware.
Movies, audio & books are generally safe providing they use a recognized extension - mp3, mp4, pdf, mkv, aac, flac, epub etc. Stuff that runs under emulation like console games is generally safe. I say “generally” because an exploit could still be crafted to escape a popular media player or emulator and cause actual harm to your computer.
All the ads and 3rd party scripts should be considered malicious too and should be erased with an adblocker, or even better use Tor.
So basically use some common sense and if you really want some game or app, just buy the damned thing or wait for it to go on sale.
WINE is not safe to run malware in, it’s not a secure sandbox. AFAIK, anything expecting it can do anything a Linux binary can. (Also, not an emulator, it’s in the original name - WINE Is Not an Emulator)
I know what WINE is and the gist of “Wine is not an emulator”. I have used it extensively and for a while it even contained some of my code (not sure if it still does). But it is still emulating but not in the way people think. WINE is not emulating the operating system but it is emulating the interface that an executable interacts with Windows, aka the Win32 APIs and other DLLs.
They even touch on this in their FAQ - *That said, Wine can be thought of as a Windows emulator in much the same way that Windows Vista can be thought of as a Windows XP emulator: both allow you to run the same applications by translating system calls in much the same way. Setting Wine to mimic Windows XP is not much different from setting Vista to launch an application in XP compatibility mode. *
As far as a potentially malicious executable is concerned, you can create a throwaway wine folder to run the thing and delete it as soon as it is done, e.g.
e.g.
export WINEPREFIX=~/tmpwin
winecfg
# disable wininet from libraries tab, remove Z:, unlink all desktop integration folders
wine keygen.exe
# when done...
rm -rf tmpwin
It doesn’t matter if keygen.exe is evil because it can write anything it likes to the fake C: and the fake registry and it’s blown away. As a precaution disable networking so it can’t reach out either. In the extremely unlikely event that keygen.exe had code to detect it was running under WINE, it would still be subject to the permissions of the uid you had run it as, so you could take even more precautions if you felt so inclined. You could even use a dockerized WINE if you felt like it.
On the topic of whether or not it’s an emulator, sounds like semantics in the end - fair enough, I disagree but you make a fair point.
That said, in terms of security I think it’s very important to point it out that it isn’t any more secure than running a random Linux executable. In my view, the original comment is advocating for running unknown executables under wine as a security measure, and the further argument is that it’s more secure because most attacks don’t target that.
Sounds like if people rely on that for security, malware will just start targeting that after people get used to assuming it’s safe.
Read their own FAQ. It’s not an emulator in the classic sense of emulating the OS. It is however emulating the API of Windows. I quoted the pertinent line of the FAQ elsewhere and made my point clearer
Not sure what the thumbs down is about. It’s right there in their own FAQ.
In fact it ends by saying - “Wine is not just an emulator” is more accurate.
](https://lm.madiator.cloud/pictrs/image/46fa2d88-10a1-4ec6-81ee-c487321a15e1.jpeg){kind=link}
