This is NSA's reverse engineering tool that they released not too long ago.
It should do the job :)
We are looking into what information the Epic launcher collects from Steam.
The Steam Client locally saves data such as the list of games you own, your friends list and saved login tokens (similar to information stored in web browser cookies). This is private user data, stored on the user's home machine and is not intended to be used by other programs or uploaded to any 3rd party service.
Interested users can find localconfig.vdf and other Steam configuration files in their Steam Client’s installation directory and open them in a text editor to see what data is contained in these files. They can also view all data related to their Steam account at: https://help.steampowered.com/en/accountdata.
Per user. They will make their own copies for each user.I'm not sure that this is important but I'm curious: do any of you guys happen to know whether Epic are collecting this info on a per-PC or per-user basis?
If, for example, a PC has three users, all of whom have a Steam account but only one of them has signed up to the Epic Games Store, will all the Steam accounts be scrutinised or just the one belonging to the person with the Epic account?
Well, at least they seem to have some scruples...
..or maybe not.
Are you being sarcastic?
I was feeling lazy so thanks for the code. Had to recompile but otherwise it worked. I was also able to verify that indeed it is a full backup but Epic has already admitted that this is the case anyway.Here's no warranty decode tool + source code if someone wants to try figuring out file contents:
Just drag file into it and it will write decoded version with .dec extension.
Well probably the small site was the only one that bothered to ask ValveNow what I want to know is, why in the hell has none of the major game publications gotten or even asked a response from Valve or Epic directly?
And why is smaller site that probably has a fraction of the traffic of those others getting out Valve’s response instead of the major ones
And in this case it wasn't necessary at all because Valve provides API.
When, how, and where do they ask for this permission?Additionally, in response to user concerns that the company's launcher also gathers info on "how long someone played a steam game and last time played," Vogel argued that while the Epic Games Launcher will make "a local copy of a Steam file that contains Steam friends IDs" which also contains play time info, this data will not be parsed or delivered to their servers.
Vogel also insisted that "We only look at your Steam friends’ IDs in that file after you grant us permission and only then send a hash of those IDs back to our servers to allow us to make friend suggestions" and that Epic Games will only import the list of Steam friends after receiving "explicit permission."
Going to be even worse if Valve expose Epic for what we suspect.
Now they are spinning it as something that was on their long "to do list" of things they needed to upgrade and features that they needed to create. Suddently when they got caught, it became an 'unfortunate temporary kludge job', a completly unecessarey kludge job when the Steam API exists.
I think enough evidence exists to make a reasonable assumption that they are purposefully hiding the truth about this.
I wasn't giving them the benefit of the doubt to begin with, but now they've been caught out as lying? Not a good look at all. I'm glad I've never installed their Launcher now. It's going to take a lot of explaining before I even consider supporting them on this platform now.
They said all they wanted was to find the friends list (disregarding the fact that these files are not for third party use) but they decide to package ALL our avaliable user data, including the games list and time played into the file, and they 'promise' us that only the friends list is send to Epic when we link our accounts to Epic.I wasn't giving them the benefit of the doubt to begin with, but now they've been caught out as lying? Not a good look at all. I'm glad I've never installed their Launcher now. It's going to take a lot of explaining before I even consider supporting them on this platform now.
The fact that they are even collecting this data without user permission, even if it never leaves the host machine (which if I was a betting man, I would bet it has) should be enough for people to distrust them, as Valve have said, this is private information and Epic have no reason to be collecting it.I wasn't giving them the benefit of the doubt to begin with, but now they've been caught out as lying? Not a good look at all. I'm glad I've never installed their Launcher now. It's going to take a lot of explaining before I even consider supporting them on this platform now.
Uh you are like over a day late, this thread is not even about that original reddit thread, if you read the OP, you can see how the OP got his information and you can do it your self.Don't mean to break up the mob, but r/programming actually looked at the client and disagreed with the fear mongering. Looks like the original Reddit thread was created by some amateurs, many of whom seem to be in this thread as well!
Forgive me if I believe he’ll just be contrarian and take Epic’s side on this solely to get attention.Still waiting for Jim Sterling to address this, I know how much he hates corporations behaving in an anti-consumer fashion, would be very weird for him not to take issue with what Epic are doing here.
Unless of course he thinks it’s ok just because it’s not Valve...
Probably makes sense since they likely don't know which user ID is yours. If they did this going the opt-in route they wouldn't need to shotgun blast the info, plus they probably want it all anyways.
And why are you believing "Random Internet Person #2" over "Random Internet Person #1"?Don't mean to break up the mob, but r/programming actually looked at the client and disagreed with the fear mongering. Looks like the original Reddit thread was created by some amateurs, many of whom seem to be in this thread as well!
That thread quite literally proves nothing, the reality still remains that Epic taking private data that they are not entitled to, it’s not fear mongering at all, evidence exists proving it.Don't mean to break up the mob, but r/programming actually looked at the client and disagreed with the fear mongering. Looks like the original Reddit thread was created by some amateurs, many of whom seem to be in this thread as well!
Valve has clearly stated the file is not intended to be used by 3rd party service that includes not making copy of the file, which Tim has admitted Epic was doing without user's permission, and OP has shown proof of. Uploading it or not is another matter.
I would be very surprised if the guy who did a video a few weeks back about how capitalism is strangling gaming would so haphazardly support a company; even in his previous video his big argument about the value of the Epic Game Store was that they weren't giving Rape Day the time of day, which is so narrow of a bar to clear I wouldn't consider it even remotely a ringing endorsement. And it's not like there aren't obvious digs to be made in Valve's direction either (why is something that can be marked private on the server side so easy to access by anything on the user's side?). I'd be very surprised if he doesn't complain about this.