Why would you need to spoof your SteamID? Just make a new Steam account?
As for the issues with the screenshot:
someone in the discord server could rat them out
it confirms that those specific crashes were attacks and not accidents
it confirms that specific attacks were done by the same person. This could further narrow down who it could be (who was there on all of those occasions).
Yes, that is easy to do but its also relatively easy to combat from a server admin end: You can just go to a SteamID allow list approach and only let people join the server after some kind of application or interview process, or they could make a module that runs SteamIDs through one of multiple available online APIs that will output probably enough info to determine the account is basically a smurf account.
That being said, as I type this out I realize that probably these server admins are a bunch of 15 year old Nazi morons and they are not capable of doing the API thing I just mentioned as it involves coding, and they probably wouldnt want to go AllowList mode on their server because they presumably want idiot randos to be able to join so they can indoctrinate and or bully them.
Yeah I’ve seen online communities go full paranoiac with the vetting, it just kills it. If you can persuade an adversary to go that route that’s probably a win in itself.
You are correct that if you can make them go paranoid the community will likely eventually die, and your edits to your above post are correct as well.
I was thinking more about all the technical details and overlooked the obvious: the info you can ascertain from the actual stated message in its context.
Why would you need to spoof your SteamID? Just make a new Steam account?
As for the issues with the screenshot:
Probably more I’m not thinking of
Yes, that is easy to do but its also relatively easy to combat from a server admin end: You can just go to a SteamID allow list approach and only let people join the server after some kind of application or interview process, or they could make a module that runs SteamIDs through one of multiple available online APIs that will output probably enough info to determine the account is basically a smurf account.
That being said, as I type this out I realize that probably these server admins are a bunch of 15 year old Nazi morons and they are not capable of doing the API thing I just mentioned as it involves coding, and they probably wouldnt want to go AllowList mode on their server because they presumably want idiot randos to be able to join so they can indoctrinate and or bully them.
Gmod is bad. Its just bad.
Yeah I’ve seen online communities go full paranoiac with the vetting, it just kills it. If you can persuade an adversary to go that route that’s probably a win in itself.
You are correct that if you can make them go paranoid the community will likely eventually die, and your edits to your above post are correct as well.
I was thinking more about all the technical details and overlooked the obvious: the info you can ascertain from the actual stated message in its context.