Printable Version of Topic

Posted by: Jonny Reload May 24 2008, 04:13 PM

I'm trying to help one of my players make a Hacker and he brought up the point that why are most of the Hackers in the setting all using Hot Sim Hacking and putting themselves at risk of getting Dumpshock, being targeted by Black IC, etc... When it only gives you a +2 Dice Bonus and extra initiative. Mind you, he's trying to make a more subtle and careful Hacker with the idea of "try to avoid as much cyber combat as possible and get the information."

I mean besides the +2 to all your tests to Hacking, Computer, and other online checks, and the Initiative Boost.... Is there anything else that Hot Sim Hacking grants you that I'm missing here?

Posted by: Teulisch May 24 2008, 04:28 PM

hot sim is cheap. for only 750 you can get a jack and hot sim, giving you 3 IP for your hacking/rigging. a hacker with a novatech airwave(3/3) running iris orb(3/3) with hot sim would only be paying 3000 , leaving the rest of his budget for programs. most hackers cant afford whiz ware. shadowrunners can, so they dont have to risk hot sim to get the job done.

aside from cost, look at 'probing the target' on page 221 of the main book. intervals of 1 hour in VR, or 1 day in AR. this can give you a backdoor that you can use repeatedly. the system only gets one roll to detect you each time you intrude in that system. that right there is why you need sim, but you can probe in cold sim and then use the expoit in AR.

Posted by: ornot May 24 2008, 04:40 PM

You still get dumpshock and can be targeted by black IC in cold sim. Hot sim gives all the advantages of cold sim plus those extra two dice, which can be handy, but if you do come a cropper, you take physical damage.

The only way to avoid dumpshock and Black IC is to hack through AR. According to RAW you can use the extra IPs from physical initiative boosts (from magic or 'ware or drugs to get extra initiative in AR, but that's a much greater BP investment, and makes probing for exploits far slower.

Posted by: Jonny Reload May 24 2008, 04:45 PM

Sorry, I meant to say the player was leaning towards Hacking through AR.... And you bring up another good point as well about Augmented Reflexes via Cyberware, Bioware, Magic, etc... If that's the case, your only missing out on the +2 to doing everything in the Matrix?

Posted by: Leofski May 24 2008, 05:12 PM

AR Hacking also increases the interval in the probing extended test, which is the kind of hacking a careful precise guy would probably use to 24 hours. In VR, its 1 hour.

So you can hack a lot faster safely in VR.

Posted by: ornot May 24 2008, 05:26 PM

That ruling is in the FAQ. It does mean that someone with a good meat initiative is as fast (or faster if they have 4 IPs) as a VR hacker risking his neurons via hotsim, for all purposes except probing. It's not something I like personally (and have houseruled to my personal preferences in my game), but both sides have argued the issue to death, if you fancy doing a search for the thread.

Posted by: WeaverMount May 24 2008, 10:09 PM

Neither is really better. If you have a low hacking job on a low risk node that needs to happen ASAP hotsim is the way to go. Likewise if you want the call logs from a comlink you just looted, but it's guarded by nasty IC AR just might be the way to go. If you are GMing I encourage you to make both choice viable so the play gets to make choice in game and test there characters values, not just running there A-game 24/7 and seeing if there paper tiger is big enough.

Posted by: FrankTrollman May 25 2008, 06:24 AM

AR hacking is so equivalent to VR hacking that there's pretty much no reason to actually use VR for hacking purposes. You're better off just having a pile of commlinks and switching from one to the other whenever anyone damages or inconveniences the icon generated by the commlink in your hand in any way. Even better, you can load an Agent onto the icon of every commlink in the pile and have them all do stuff on your behalf. Beats the pants off of +2 dice so hard it isn't even funny and there is no risk to you and yours.

Techniques are called hackastack and Agent Smith.

-Frank

Posted by: ArkonC May 25 2008, 09:23 AM

Just to give you an idea of possible house rules, we've house rules it so that AR matrix actions are limited to 1 per round, no matter how many IPs you have...
While this makes little sense from a realism point of view, it does make hackers go cold or hot VR if they need things done quickly...

Posted by: kzt May 25 2008, 05:57 PM

Nah, they just have their agents act for them.

Posted by: Jaid May 25 2008, 06:31 PM

imo, if you're going to use VR to hack, may as well make it hotsim. if you're not going to use VR, well, you're not worried about effectiveness, you're clearly worried about safety instead. so really, it's all about where you place your priorities.

Posted by: hobgoblin May 25 2008, 07:04 PM

i just wish that they had extended that to doing data searches as well. it would make sense
(as as much sense as the SR matrix rules makes, anyways)

Posted by: Aaron May 25 2008, 08:16 PM

Yes. It aslo gives you more Addiction (Simsense) Tests.

Posted by: kzt May 25 2008, 11:16 PM

And the ability to have your brain spray out your ears when an AR hacker has his agents hit you with black hammer.

Posted by: Sir_Psycho May 25 2008, 11:56 PM

Just jack in and burn it, wussies.

Posted by: Cthulhudreams May 25 2008, 11:58 PM

Welcome aboard the matrix rules train: Next stop, burning hatred!

Posted by: kzt May 26 2008, 12:07 AM

No, that stop isn't available until after Unwired. Hope still exists, despite all evidence, that they might fix the madness....

Posted by: Jackstand May 26 2008, 01:18 AM

I like that way, too. I figured that AR is a lot like turtling in SR3. You can use all of your passes, but you can only use one of them on AR.

Posted by: Jaid May 26 2008, 02:43 AM

they can do that anyways, if you're in cold sim. the difference is that you can run as many agents as he can, but you yourself are in all probability going to have superior dice pools. he can keep on booting up a new commlink from his hackastack, but every time he shows up you can just defeat him. the only way he can be instantly back in the fight is if his next commlink in line is also logged in to the same node, which can only happen if he is logging into the same node once for each commlink (requiring a number of actions equal to the number of commlinks, and facing a number of detection checks equal to the number of commlinks). hackastack is crazy good for getting a lot of attempts at one thing, but sometimes you just need to succeed the first time. hackastack does absolutely nothing for that situation; hotsim does.

also, nobody houserules hotsim into uselessness, whereas almost everyone you meet is gonna nerf hackastack (and probably agent smith too, and in some cases multiple meat IPs). but mainly, it's the fact that hotsim actually provides you with a boost to your ability to hack. one that makes the difference when you need to succeed on the first attempt, and succeeding on the 2nd or 3rd or 50th or 100th etc is just not gonna cut it. for example, when you're trying to block the alarms of that secure facility you're in so that you don't have a couple of firewatch teams waiting in ambush when you step outside said secure facility. but hey, it's up to you. the concept of an AR hacker is certainly workable, but yes... there is a reason to use hotsim.

Posted by: Cthulhudreams May 26 2008, 05:49 AM

If wound penalties didn't exist, your argument about being materially better might be interesting. But he has to just get lucky once and suddenly you're doing worse, while he can never actually loose. Plus he could very well have an extra IP thanks to magic, cyberware or whatever, and that would just make him flat out better than you.


And it's not like initiative enhancing cyberware/magic wouldn't help him massively the rest of time. (Consider you're gunslinger character, would you trade 2 dice for an extra IP pass? err, yeah?)

Posted by: kzt May 26 2008, 08:54 AM

Yeah, the part where you can KILL him and the most he can do is force you to reboot your comlinks tends to suggest that this doesn't bode well for the VR guy. You'll eventually get a good roll and fry his brain while his good rolls just annoy you.

Posted by: Sir_Psycho May 26 2008, 12:59 PM

I know that by RAW there's not much other than the Probe time that it effects. But if I'm GM'ing, I wouldn't let an AR hacker get the same use of his IP's as a hot sim VR hacker gets.

I'd probably rule it like this:
1 Meat IP / 1 Matrix IP
2 Meat IP / 1 Matrix IP
3 Meat IP / 2 Matrix IP
4 Meat IP / 2 Matrix IP

Or perhaps with 4 Meat Ip / 3 Matrix IP, to gimp it less.

Posted by: kzt May 26 2008, 06:45 PM

It really doesn't matter, because your agents all act at the same speed, and an agent can kill someone in hot sim too.

Posted by: Jaid May 26 2008, 08:03 PM

and the hotsim hacker can use the same amount of agents.

the fact remains that sometimes, "eventually" succeeding isn't an option. if i am a street sam who is relying on your ability to take over the security systems for the building i'm about to physically break into, i'm not going to accept the assurance that "eventually" those sentry guns will stop shooting me, or that "eventually" the alert will be cancelled. i want it done, and i want it done now. the *first* time. you know, the time *before* lone star gets called in, for example.

in a hacker vs hacker fight, there is no "eventually". there is only 1 active account for that hacker at any given time. unless he has already hacked in with each and every separate commlink, and logged in with each and every commlink (generating a lot of traffic and looking suspicious, especially if he's bringing along an agent horde as has been suggested... not to mention now instead of facing 1 detection test or 1 series of tests if he hacked in on the fly, he's now facing one per commlink in the hackastack) by the time he gets hacked into the node again he is facing a node on active alert with all of the bad stuff that entails.

Posted by: WeaverMount May 26 2008, 08:14 PM

An agent smith army is an army. A Hacker is a shadow runner. There are things runners can do that an army can't, like sneak. If you try to flood a node with IC some of them will be seen. Most matrix runs are already failed if they are detected.

Posted by: kzt May 26 2008, 09:09 PM

In the case you have you are essentially allowing the AR hacker to run around with a real gun with real bullets that will kill you, and your team has netf guns, which if you shoot the other guy really good he has to go run back and tag his base, then comes back and shoot more real bullets at you. How would this work out?


Why are you assuming that the guy trying to stop you from hacking a computer system that doesn't belong to you isn't supposed to be there? He and his agents don't have to hack into anything, they LIVE there. Hence, he won't get attacked by ice, etc. And 21 black hammers per turn will tend to help them stop you.

Posted by: Jaid May 26 2008, 09:27 PM

if the agent army and the unkillable target are on the defense, that just makes hotsim even more important, because if that's what's gonna be waiting for you in the event that you fail/are detected, it simply becomes even more important that you don't fail or get detected... which makes the +2 dice a whole lot more desireable.

like i said, hackastack is great if succeeding "eventually" is an acceptable outcome. if you have to succeed right now, on this attempt, and failure is not an option, you want every little edge you can get to help you out. sure, you might have someone standing by to yank the plug out of your head if you start twitching and squirting blood out of your eyes (or better yet, someone who can see what you can see in the matrix, but is watching from AR... i think there was a piece of 'ware like that in earlier editions... my brain wants to call it a hitcher jack for some reason?) but ultimately, you need that +2 dice, because if you fail, you're screwed either way... if you fail your brain might get fried (assuming they are even using black IC, which isn't terribly likely since it does absolutely nothing to nonliving targets, or even targets who aren't using simsense), but then again if you fail and are in AR you're probably going to get shot, burned, stabbed, bitten, drugged, or otherwise harmed anyways. when it's a choice between "better chance of success with death being the result of failure" and "worse chance of success with death being the result of failure", that's when you choose hotsim. the thing is, for shadowrunners that can happen pretty often.

Posted by: Cthulhudreams May 27 2008, 12:34 AM

Again, nice in theory. In practice those +2 dice are

A) Worse than a 4th IP. I'd much rather have that than two dice.

B) Only so good as long as you don't ever sustain a wound penalty

C) Not really that significant in terms of actually accomplishing things. On average it is less than 1 success. 56% of the time those two dice will be meaningless.

Maybe we should throw down some cybercombats just to illustrate the point.

Not only this, the AR hacker has other cool features

A) Three IPs all the time makes him a much more flexible character when the chips are down

B) He can actually move/sprint! around while hacking, vitally important while you are trying to open the door that's 600 meters down the corridor.

So, I'm not so sure it's as clear cut as you are thinking.

Posted by: Jaid May 27 2008, 12:54 AM

A) a 4th IP is not mutually exclusive. there's always the simsense booster

B) wounds can be healed, and with crazy shadowrun tech and magic coming into play, it may not even take long.

C) a 46% chance of making a difference vs a 0% chance of making a difference. gee, i wonder which is better?

A) can have 4 IPs all the time with a simsense booster and a rigged vehicle that he rides around in. better yet, he can give control of said vehicle to a pilot which has it's own 3 separate physical IPs which do not use up the hacker's actions should he need them in the matrix. who's laughing now?

B) see above.

i'm not saying hotsim is always the right choice, here. i'm saying that it can be a good choice, the right choice even, for many situations. considering a decent hacker is gonna be dropping close to 100k credits on a good commlink and programs, being able to pick up 3 IPs for the cost of a hotsim module is nice. being able to pick up a 4th for only 65k credits and .5 essence is way nicer than the cost for picking up wired 3 as well, never mind synaptic booster 3. and for another 10k and .5 essence, he's got a net of +4 to all vehicle actions when rigging in hotsim (including gunnery, which allows him to use any weapon provided it's vehicle mounted, a much better deal than the firearms group) and reduces all thresholds for vehicle tests by 1. seriously, i understand where you're coming from when you say that hotsim has it's drawbacks. my point is simply that there are times when those drawbacks are worth it, even the ones that can't just be skipped over entirely (the aforementioned supposed lack of mobility, for example, can be negated relatively easily)

Posted by: Cthulhudreams May 27 2008, 01:25 AM

Yeah, but we clearly think the 'default state' is different. I think that the guy who is unkillable (thanks to AR), undisruptable unless you fully damage him in one IP (thanks to logging into multiple nodes with one persona and medics with the agent program) is the best place to start because your defense is literally unbreakable for a minor increase in attack power.

Imagine if you could have a covert ops character who fully regenerates all boxes of stun and wounds every turn and resurrects himself every new combat turn. In return you have to sacrifice two dice off your 'stealth' group. This is a no brainer.

You think the 'slightly better attack' is worth sacrificing the 'unbreakable defense,' whereas I don't, and in fact think that in the general case the 'slightly better attack' will lose every single time in any 'whole of life cycle comparison' to the unbreakable defense guy.

Mobility cannot be negated as easily as you think. For example, the 'use a vehicle' plan is defeated by the cunning device known as 'a ladder' It is also defeated by any need to 'hide'

I'll do a worked example later on against knassers sample systems.

Posted by: WeaverMount May 27 2008, 01:42 AM

>Maybe we should throw down some cybercombats just to illustrate the point.
----
>You think the 'slightly better attack' is worth sacrificing the 'unbreakable defense'

Cyber combat is not all that hackers do. If you want to kick someone off your team's PAN, yeah AR and IC all the way. If you need to access a file and you know that the node is programed to shut down rather the second it spots an intruder those +2 dice to your stealth roll are rather nice and don't put you in any more danger.

I think the different assumptions about 'default state' have a lot to do with assumptions about 'default tasks'. At my table once a hacker is IDed they are almost worthless, so stealth in paramount. Cybercombat is rare, for exactly the reasons you are describing. Anyone who is smart about it can make it a relatively moot issue with AR and IC.

Posted by: Cthulhudreams May 27 2008, 02:01 AM

Sure, but things only have to go wrong once for you to attract IC. It's almost certain in a hack on the fly that you will have some unwanted attention heading your way.

If it's just an unattended system most hackers can just widdle on it from a great height anyway, so I'm not sure thats an issue.

Posted by: WeaverMount May 27 2008, 02:36 AM

This is coming down to how a GM runs the matrix. There isn't really a cannon answer to what systems have security decks in them at what frequency. AR-IC is hands down the best way to beat beat stuff in the matrix. Hot sim + metahuman only buffs is the best way to sneak (fully aware I'm ignoring TMs, Threading, and Spirits). I'd say your augment is very similar to saying that riggers are just better than sams. Riggers can get way more attacks than a sam possibly can have, without a huge drop in DP. This doesn't mean riggers strictly dominate Sams. Some times one shot is all you will get. Some times you'd much rather have only person risking infiltration rolls.

The point is it's situational and that comes down to how the matrix run at your table what the default state should be. If you GM likes deckers being keyboard cowboys constantly locked in cybercombat: AR-IC. If your GM likes deckers being sneaky ghosts in the machine agent smithing it will draw to much heat for you to do your job. Playing along will get with your GM will get you further than anything and THAT should set your 'Default state' for runs.

Pointing out another assumption, I was thinking 'default state for a run' which I feel is an open question. If you were thinking truly 'default state' being untouchable via AR-IC while living your life, eating, sleeping, watching trid, and other down time activities then I see where you are coming from. There is no reason to expose yourself if there isn't something you need to being actively ninja-ing

Posted by: kanislatrans May 27 2008, 02:54 AM

The hacker in the game I'm running goes hot sim most of the time. prefers the digital world in all its splendor to the real one. But then he dresses like a clown. No, really...red nose, size 35 shoes,the works.

Posted by: ornot May 27 2008, 08:54 AM

Cthulhu Dreams: I agree that by RAW AR does heavily dominate VR in cyber-combat stakes. But you do have the high cost of meat IP enhancements, which does play a role in character budgeting. Yes, the meat IP is widely useful outside of the matrix, but it still costs a lot, thus limiting what you can spend on gear and programs, which are vital for a good hacker.

Posted by: Cheops May 27 2008, 02:33 PM

While Hacking on the Fly in Hot VR you get +2 dice to your Hack + Exploit test but the system still only gets Firewall + Analyze. So a VR hacker is better at Hacking on the Fly and faster at Probing. Basically, the rules give a fluff reason for "True Hackers" to use Hot VR to get in, and then afterwards you can switch to AR while fiddling with the system.

Posted by: Jaid May 27 2008, 04:24 PM

apparently that has been errated. you can no longer take actions while the medic program is being used on you.

also, like i said, that option could easily be available to the hotsim hacker; if your agent army is packing black hammer/blackout, they do nothing to an opposing agent army, IC, etc. it's much more likely for them to pack the all-purpose attack program if they're on the offensive, or the track program if on the defensive (it's more important that they know where you are if they want to stop you from trying again than it is to blow up your persona).

of course, this is once again assuming that the agent army is even an option, which it likely won't be for a shadowrunner trying to get into an opposing system. who is going to want the best chance possible to succeed, because failure means that your target knows you're coming for them, and will respond with security forces coming to your location.

seriously, i'm not arguing that most people are going to use hotsim. but from a shadowrunner's perspective, hotsim does make sense. it makes sense because if you are detected, you are screwed anyways, and the only difference between hotsim and AR is that in hotsim they might be killing you with black IC (but more likely will be using other programs, i would suspect, unless you're in some place extremely secure that's worth using illegal black IC) whereas in AR they're going to be killing you with real life bullets.

and sure, ladders might stop a vehicle. then again, depending on what you need the ladder for, it might not... consider a lockheed sparrow with the LTA mod on it (technically you can do that with any vehicle, but that just feels wrong... at least the sparrow is a flying vehicle to begin with). it's human-sized roughly, and infiltration(vehicle) would allow you to hide with it. especially if you put ruthenium coating on it (and yes, i know you can only put so many mods on it, but i'm merely pointing out there are options to make your vehicle usable for these purposes).

Posted by: FrankTrollman May 27 2008, 10:06 PM

Sure you can. You just have to act through any of your other commlinks.

-Frank

Posted by: Jaid May 28 2008, 12:10 AM

in which case we are back to hacking in and logging in X number of times, where X is the number of commlinks you want to hack in with. which increases the probability of you being detected, which increases the probability of you getting shot in the face by angry security guards.

hackastack works great for a security hacker guarding a system. it does not work well for joe shadowrunner.

Posted by: FrankTrollman May 28 2008, 06:49 AM

It's just an action to create as many legal accounts as you want. Once any of your commlinks have hacked in, all of your commlinks can be logged in.

-Frank

Posted by: ornot May 28 2008, 08:20 AM

But surely in order to create accounts you'd need to hack in as an admin the first time, and subsequent accounts would have a lower clearance of security or just user. Even then, a sudden succession of accounts being generated would surely attract attention from a security hacker who, upon realising that he was outnumbered, could reboot the system, kicking all your comlink personae offline. If there is no security hacker, then having your big stack o' comlinks would be pointless.

Posted by: Emperor Tippy May 28 2008, 08:28 AM

...no.

Once you have an admin account you do the following: Lock out all other users, create an admin account, disconnect, log into your newly created admin account, and do whatever you want. Once you have an admin account on a system you can create any account you want, erase any account you want, change any account password you want, change security protocols, and generally do anything else you want.

As for rebooting the system, thats why you upload that nice agent to an admin account and alter the systems settings so the first program loaded on reboot is said agent. They have to hack into their system to get it back, which includes getting treated as the invader as far as IC is concerned.

Sure, its not a quiet way to do things. But it is a sure way to do them.

Posted by: Cthulhudreams May 28 2008, 08:30 AM

Admin accounts can typically create all levels of account - including other admin accounts.

So you can have multiple admin accounts.

The point about the security hacker noticing is interesting, but him not noticing is exactly what the stealth program and scrubbing the logs is supposed to accomplish.

Rebooting the system every time you detect its been compromised is an intresting approach, but allows you to be DDoSed forever - I just repeatedly try to log in, you reboot ever time, you cannot run a track action to find me because you cannot get onto the node.

That and rebooting takes time so I might have done whatever I want to do

Posted by: Emperor Tippy May 28 2008, 08:39 AM

What's real fun is to have an encryption IC running around set to start acting as soon as anything is detected. It's to just go around and encrypt anything and everything in the system. Another fun one is what I call lazy IC. It just keeps opening multiple programs in the node until it is slowed to response 1.

And if you are the hacker its fun to load a databomb IC that just runs around databombing anything in site and broadcasting to anything that connects to the system "All programs will be erased when the system is next started up".

Posted by: ornot May 28 2008, 09:17 AM

I'm pretty sure that generating enough accounts for your stack o' links would attract attention regardless of your stealth program rating. They might not spot your icon doing it, but the results would be glaringly obvious. The security hacker that notices this sudden influx of users could well be credited with the sense to realise that he was outnumbered and probably outgunned, so he pulls the plug on the system. Pulling the plug is a big deal, and would only be pursued if there was no other option.

Alternatively you leave your stack o' comlinks and agents behind, hack in as an admin anyway, do what you need to do without being noticed, and without the system being shut down.

You could take over the system as described by Tippy, but the physical location of the system is still in the hands of the company, and if it has been compromised as described the smartest thing they could do is shut it down, and fix it while it's offline, and they can deal with the boot sector agent in isolation.

This does impact on productivity and efficiency, but having your network stripped by a plague of agents is not a good outcome.

Posted by: FrankTrollman May 28 2008, 09:40 AM

Wait, are you telling me that the Stealth Program doesn't actually keep people from noticing that you are there?

What the hell man? What the hell?

-Frank

Posted by: ornot May 28 2008, 09:46 AM

I'm suggesting that the stealth program makes it harder for others to spot your icon, but there's no way it would have an impact on stuff you do.

If you crash some IC (or any programme) while you're running stealth, the IC is still crashed, and anyone paying attention would spot that their IC is no longer running. Or are you suggesting that a crashed programme appears to continue to run when crashed by a 'stealthed' icon?

Posted by: Ryu May 28 2008, 11:21 AM

The bot-net issue is not fixed. Unwired is supposed to work on that.

As for the original question: Why should I forego +2 dice (if I can go VR in the first place)? If combat will hurt, I´ll log off if I´m detected. If I can handle said combat in AR/cold VR, I can change modes and come back. The statistical +1.33 increase to initiative (while in hot mode) makes this strategy even more viable.

Posted by: Aaron May 28 2008, 11:52 AM

But aren't most of those actions fairly obvious to a security hacker or a cleverly-configured IC program? To use the warehouse analogy, a lot of those things are kinda like walking into the building, showing a badge to the guard(s), and then smashing up somebody's office. It's fairly clear that what you're doing is not according to proper procedure.

And spirits save you if they've got some sort of challenge-and-response protocol.

Posted by: Aaron May 28 2008, 11:56 AM

I was under the impression that the Stealth program makes you look innocuous, not invisible. I mean, if you're trying to access a node, and its System software doesn't think you're there, it's not going to send you anything, including what's in the node, etc., so you're basically disconnected. To use a modern example, if you have no ssh session on a box, you're not going to get jack from it, no matter how many commands you try to send it.

I've always thought the Stealth program didn't say "I'm not here," but rather "I'm a data packet, not a persona," or "Oh yeah, I'm totally supposed to be here," or "I am a hedge," or something.

Posted by: Sir_Psycho May 28 2008, 02:05 PM

But as a data packet doesn't fly around breaking encryptions and stealing files, I'd assume that Stealth also disguises your actions as part of the package, making your actions appear as innocuous and random memory allocation errors.

Posted by: Aaron May 28 2008, 02:20 PM

I'd believe it. Even if Wrong Things are happening in a node, I reckon the IC/security hacker still has to be able to discern the right icon to smack.

Posted by: Emperor Tippy May 28 2008, 09:02 PM

Sure, but you are the person who gets to write procedure. A legit admin account (which you can create after hacking admin access) makes you essentially god on the system. You can boot off the security hacker, lock him out so he can't get back on, and tell the IC that what you are doing is perfectly ok. Or to just turn off.

Posted by: Aaron May 28 2008, 09:42 PM

This is all very true, but probably only useful in certain situations. For example, the security geek that just got booted is now quite aware of what's going on, and more than likely a lot closer to the hardware in question than you are.

Posted by: Emperor Tippy May 28 2008, 09:44 PM

Agreed, agreed. It's not a stealth approach (I think I already said it once this thread). It's just that sometimes the system being turned off or disconnected is just as good as you hacking it.

Posted by: Cheops May 29 2008, 01:46 AM

I totally agree with this viewpoint on Stealth. I treat it exactly like a combination of Physical Stealth and Etiquette.

I also like to run systems that have a browse utility set to continuously scan the user list, compare it to the employee access list, and report to the spider and the spider usually has to complete a dump/scan of the datalogs every period of time (1 hour for crappy security, 1 minute for high end security). Program detects n+1 admin accounts when there are only supposed to be n accounts according to HR? Alert. Log on as an inactive admin, the spider gets to make a memory test to see if he remembers that that guy isn't working right now (and follow up according to procedures).

None of this applies of course to the original Exploit attempt. That one you get for free in interest of keeping the game fun.

Posted by: Detharin Jun 2 2008, 11:15 AM

As a GM, if one of my players were to decide to delete all the accounts. Which would lock everyone out of the system, and raise a bunch of red flags instantly putting the system into full on red alert it would end rather badly. First that security decker is going to log in with his back door account. Which you did not find because its designed to not be found. Hey maybe if you spent a couple hours probing the system in hot sim you might have found it. Instead you decided to brute force in, and have now alerted security to your presence. Perhaps suddenly you find every node full of tracer IC tracking your comlinks. Which is going to result in a hit squad on route to your location.

The run you were undertaking is likely going to go south. They are now aware of you, and will be more prepared for your return. If you survive the hit squad. Your team which was counting on you to open the doors, and disable the auto guns is now kinda stuck.

The point here is that if your on the network and you do things that are going to alert everyone to your presence do not just expect that security hacker to just shrug his shoulders. He knows the same dirty tricks shadowrunners use and its his job to prevent those from working. If you enter a hostile system, and start taking actions that will automatically set off alerts its going to end badly.

Which is why hot sim is important. Sometimes you need more initiative passes and those extra two dice. Other times you do not.

Posted by: Cheops Jun 2 2008, 02:46 PM

however, the OP was wondering why you'd use VR as opposed to AR + Wires/Drugs/Spells/Adept Powers that results in VR IP = AR IP.

Again, it comes down to which is more important for the hacker, speed or safety? Honestly I think that for "real" hackers the speed is more important for breaking in.

Posted by: Zaranthan Jun 3 2008, 01:31 AM

If I was GMing, and my player wanted to perform AR hacking while doing anything in the meat world, I'd give him a -2 to -3 penalty for self-inflicted AR spam. Hacking isn't just a chatroom, it's probably dozens of info feeds and several script control panels. I'd probably offer to clear the penalty with a Free Action, but that would preclude the player from performing any hacking or receiving any feedback on his persona until he spent another Free Action to bring it all back (with the AR spam penalty, of course). On the flip side, his hacking would likely receive distraction penalties as well if there was anything important or distracting hitting his meat senses (combat, navigating a corporate maze, listening to a security patrol walk down the next hallway).

The VR hacker would face none of these problems, though he would of course have his own obstacles (namely, he needs a place to collapse in a heap to do his thing, but once he's there, he's golden). The rules are written with the intent of being used in nasty, gritty situations. If you have firefights in open terrain, the rules fall to pieces because the shooters will nearly always be throwing far more dice than the dodgers. To claim balance in such a dry situation is just silly.

Posted by: Ryu Jun 3 2008, 12:04 PM

There is a -2 mod on perception tests both for being distracted and for "bad conditions". AR hacking may invoke both. I would not extend those mods to other tests, as the number of IPs you get entitles you to do more things per round.

Posted by: Zaranthan Jun 3 2008, 08:06 PM

Sure, you can act mad crazy fast, but that doesn't change the fact that your vision is blanketed with your Browse progress bar, the feedback from your Exploit program keeping you in the node, the alert from your Scan program telling you that a patrolling IC just entered the node, and the flashing status report from your Agent that just took six boxes of damage. Either you put the hacking on hold, or it's really REALLY distracting. Or do you think it's easy to aim a machine pistol with a quarter of your vision overlaid by a remote command panel?

Posted by: Ryu Jun 3 2008, 09:52 PM

Hacking and fighting at the same time is a dangerous proposition anyway, no real need to pile on negative mods. I assume that activating the smartlink will automatically minimise your (other) matrix windows. Thats really just an interface question. Where you would hurt is on the perception test to notice an incoming attack. But the right technology can take care of that problem, too (attention coprocessors).

Posted by: Cthulhudreams Jun 3 2008, 11:09 PM

I'd assume that unless you were retarded, leveling your rifle to use your smartgun would clear your AR display aside from the smartgun - because clearly if you've decided that you need to turn away from hacking to shoot at someone you'd want to concentrate on that.

Posted by: hobgoblin Jun 4 2008, 06:31 AM

most matrix action that have any real say are complex actions anyways. meaning that they eat up a whole action to be performed.

so if your splitting your time between matrix and a gun fight, your missing out on 2 attacks pr matrix action...

heh, even hacking on the fly is a extended action with a roll time of 1 initative pass. so if you dont get in on the initial action, you have to use 1 or more additional passes to get in. and thats passes where you could be sending quite a bit of lead in the general direction of the enemy...

trying to crash a os is even nastier. it has a extended action period of 1 turn!

and so is decryption...

so if the hacker wants to get into the coms or smartlink system of a enemy, and the enemy have a encrypted system. it will take time. and in that same amount of time his sammie partner may have put a couple of clips of lead into the same enemy...

Posted by: Ryu Jun 4 2008, 02:15 PM

Agreed. Hacking will take all your IPs, no matter how many. AR hackers have less dice and more expensive gear, all for the option of spending some IPs not on the matrix. So Hacking should be done from hot VR whenever possible. AR hacking seems more safe, but is so only if you can afford to raise an alert.

What AR is good for is combat support. You basically fight in the meat-world, but occasionally command previously hacked nodes and drones to aid your team. Thats either shooting twice or sending two orders like "attack my target" or "activate fire alerts". This setup handles matrix security via IC and agents.

Posted by: hobgoblin Jun 4 2008, 08:32 PM

at least switching mode is a free action. so you could find cover, drop into VR, do your stuff, and when its time to move, drop back out to AR and haul ass...

that is, as long as you dont run into any black ice...

hmm, i wonder if unwired will hold some AR psycotropics...

Posted by: Cthulhudreams Jun 5 2008, 12:46 AM

If so, prepare for an outbreak of blackhammering mums!

Posted by: Cheops Jun 5 2008, 01:25 AM

I believe that it was the mums who were to be blackhammered.

Psychotropics are easy to introduce already since the mania/phobia rules exist in Augmentation. Just treat them like a toxin with a Power equal to the rating of the IC. If the player doesn't make his Willpower + Biofeedback (Psycho Rating) test then he picks up the negative quality.

Posted by: Jaid Jun 5 2008, 01:36 AM

i would think they'd maybe be affected as if by those qualities temporarily, but actually getting the quality seems a bit harsh for AR.

Posted by: hobgoblin Jun 5 2008, 04:52 AM

heh, something like that. basically i have some insane fondness for the idea of hitting people with the right colors, sounds, smells or whatever to get their brain to temporary go "pretty colors".

if that can be done, one can even mess around with AR people in much the same way as black hammer can with VR people.

as in, sec spider finds hacker in system. hacker uses AR. spider hits him with trigger pattern to make him go "drool". spider launch a trace and call a security team or lone star (or maybe we should call them loan star? ).

right now the worst a spider or ic can do is black hammer the persons connection open. and for a AR user, that means tossing the comlink in the nearest bin and walk away. after spraying it with thermite or something similar first, that is

Posted by: Cheops Jun 5 2008, 02:35 PM

Sorry, I didn't notice the "AR psychotropics," and thought that the poster was referring to VR users. I would not allow psychotropics against AR users. Especially since Black Attacks cannot target AR users at all.

Posted by: Cthulhudreams Jun 5 2008, 11:54 PM

Or pulling the battery out and saying 'hahaha'

Posted by: hobgoblin Jun 6 2008, 02:22 AM

heh, that may be a option...