Hi everyone! I’m new to Lutris, I’ve installed some old games from CDs and they work fine, but I want to try old DEMOS found on the internet.
My question with this is if there is any risk of malware on the system with untrusted executables, is there any sandbox inside Lutris? any difference to using WINE directly?
I’m on Linux (Kubuntu) but I don’t want to take any risks
Are you referring to old Windows games that you want to run on Linux trough Lutris?
If yes then there is an elegant method to confirm these games are originals and not modified by bad actors to insert malware into them…
First step is to install osslsigncode
package which is used to verify digital signatures of Windows executables:
sudo apt update
sudo apt install osslsigncode
Next step, assuming your game executable which you want to install is in ~/Downloads/game.exe
you will run the following code to verify signature:
cd ~/Downloads
osslsigncode verify ./game.exe
This will output digital signatures if any is detected, if it is the game is safe, otherwise it’s a risk and may contain malware.
Don’t listen to people who will tell you that Windows malware doesn’t run on Linux so it’s OK to run pirated or unsigned Windows programs or games in WINE, that’s totally false!
Reason it’s false is because malware writers can easily detected if their code is running in WINE and can launch Linux specific code to perform their planned malicious things.
Therefore no, there is no sandbox of any kind in either WINE or Lutris.
That’s why using osslsigncode
is important to verify signatures to determine if executable is safe to run in WINE or Lutris.
I hope this helps.