It seems that you're using an outdated browser. Some things may not work as they should (or don't work at all).
We suggest you upgrade newer and better browser like: Chrome, Firefox, Internet Explorer or Opera

×
I know that but my question is more : how being able to run said installer through Wine like Truido mention render the official argument for locking moot ?
Password? Really?

2015 best movie title is
The fall of GOG: In the beginning.

:(
Post edited January 06, 2015 by yukiai01
I can't believe this.

If this is real, then this is a huge disappointment. I thought GOG was 100% supportive of DRM-free gaming.
avatar
Regios: I can't believe this.

If this is real, then this is a huge disappointment. I thought GOG was 100% supportive of DRM-free gaming.
Welcome to the club of disappointed GOG users who liked it for being DRM-free :)
avatar
ssokolow: It'll probably also help to keep up the inertia that's holding this issue at the top of the "Most voted (this week) wishes in Site Features" list.
Yeah, keeping those on top of wishlist improves visibility and makes it harder for GOG to ignore.
Post edited January 06, 2015 by shmerl
high rated
avatar
shaddim: ...Let us focus on making the severity for us of the core aspect "locking of content" to GOG clear. ...
avatar
Trilarion: But they made their point about this. Locking the content means a bit less hassle for them. Not much we can do about it, can we?
We can stop buying things from them until they start treating us with some respect. I've grown rather tired of them being patronizing and outright lying to us. And the more sick of it I've gotten the less I've bought. Whereas in the past I bought a ton of games here, now I think I've only bought like 2 in the last several months.

Since whenever it is I got pissed off at them for lying about the Wasteland 2 patch situation. And even before that I had throttled back my purchases, but things like that make me not want to spend money on games from companies that are spoiled rotten.
And yet people will still insist that this isn't DRM. If they were concerned wtih malware and whatnot, they could just post the SHA256 and MD5 checksums for the files on the site, then people could verify not just that they hadn't been tampered with, but that the files haven't been corrupted either. Seems to me that this is more of an excuse for DRM than something that requires it.
Post edited January 06, 2015 by hedwards
avatar
hedwards: If they were concerned wtih malware and whatnot, they could just post the SHA256 and MD5 checksums for the files on the site
Brilliant idea... Because average Joe that downloads app or game from a store or from a pirated source, by default goes to legal content owner website and searches for checksums before installing...

Please get real. Outside of how absurd this flow sounds, average user doesn't even know how to calculate a checksum. Average user, if a product does not work, goes to support and complains stuff doesn't work.
avatar
hedwards: If they were concerned wtih malware and whatnot, they could just post the SHA256 and MD5 checksums for the files on the site
avatar
d2t: Brilliant idea... Because average Joe that downloads app or game from a store or from a pirated source, by default goes to legal content owner website and searches for checksums before installing...

Please get real. Outside of how absurd this flow sounds, average user doesn't even know how to calculate a checksum. Average user, if a product does not work, goes to support and complains stuff doesn't work.
The EXE is already signed so Windows will complain if it's tampered with. Last I heard, the whole point of RARs over InnoSetup bundling was so they could be modified by the GOG installer devs without rebuilding the entire multi-gigabyte file set. As I understood it, as it relates to malware prevention, the password was supposed to substitute for a hash check embedded in the EXE.

However, since the RARs don't appear to contain any kind of digitally-signed manifest of expected contents or other verification mechanism based on asymmetric crypto, that means that anyone who can get the password can inject malware without the EXE signature doing anything to stop it.
Post edited January 06, 2015 by ssokolow
avatar
hedwards: If they were concerned wtih malware and whatnot, they could just post the SHA256 and MD5 checksums for the files on the site
avatar
d2t: Brilliant idea... Because average Joe that downloads app or game from a store or from a pirated source, by default goes to legal content owner website and searches for checksums before installing...

Please get real. Outside of how absurd this flow sounds, average user doesn't even know how to calculate a checksum. Average user, if a product does not work, goes to support and complains stuff doesn't work.
The logic here is sound, you're just not terribly bright.

If the average Joe is going to be downloading random things off a pirate site, and can't be bothered to verify that the file hasn't been tampered with, he deserves whatever he gets. If he doesn't know how to do it, then how on earth is he managing to download things off of pirate sites via torrent?

Seems to me like you haven't thought your objection through thoroughly enough and are hoping that I won't notice.
And still no official statement.

Come on GOG, don't let us down...
avatar
3316V: And still no official statement.

Come on GOG, don't let us down...
+1.
Well, I submitted my support ticket today. Any of you do this 'social media' thing? Does gog.com have a presence that could do with being publically asked what gives?
avatar
Rixasha: Well, I submitted my support ticket today. Any of you do this 'social media' thing? Does gog.com have a presence that could do with being publically asked what gives?
They have a bunch of links in the site footer.
high rated
avatar
Rixasha: Well, I submitted my support ticket today. Any of you do this 'social media' thing? Does gog.com have a presence that could do with being publically asked what gives?
I'm not sure if many of you realise this, but over here today is pretty much the first day when many people are finally back in the office after new year's break / holidays (it was a public holiday here yesterday too btw) - it's not like we did not reply earlier on purpose. We do need a moment to actually read this topic and discuss it internally (among other topics we have on the plate as well :) before getting back to you.

In the meantime, while you can contact our support or social media people about it (which will not help other than prolonging time for other users to receive tech support / other answers), I'd like to ask you for a bit more patience - these installers are on GOG for over 6 months now, it's not like GOG "broke them" over Christmas and is hiding head in the sand :)
Post edited January 07, 2015 by Destro
avatar
Destro: We do need a moment to actually read this topic and discuss it internally (among other topics we have on the plate as well :) before getting back to you.
It is great to finally hear from you, and I agree that this came out at the worst possible time of the year for everyone concerned. Please don't let us down.
GOG is a bit unlucky here. If you claim that you want to protect GOG customers of people who can insert malware (which anyway can never happen to a customer who only downloads from GOG ;) ) then you cannot also say that you won't make it harder. A lock that is not the hardest possible lock is next to useless and should rather be abolished. The neither one thing nor the other situation is a bit unsatisfying.