My guess it that they were doing a "two birds with one stone" strategy - using this project as an excuse (and test-case) for the translation layer, hoping that some devs would take this opportunity to port their DX9 games to Linux because of it, thereby improving the value of SteamOS.
Another option is that they didn't write DOTA2 from scratch, but reused an existing engine. Which in turn was based on some previous works, and at some point Direct3D was used, and remained there the whole time.
A good question would be "is VAC running all the time, or only on a VAC-enabled game"...
However, DOSBox runs fine on Android. Just sayin'
In this case, with pictures, just opening one and saving it again might produce a different hash, just by recompression or changing the file format. How does all these "just check the hashes" solution works for that?
Finding duplicates image is not that easy.
I can understand why they want their ads to go through, but if some webmaster take aggressive action to force the hand of the user, there's a little side effect called "not going to this site anymore" that might hurt them somehow.
Is donating a large sum of money to a charity a good thing? Of course!
And the fact that they did it to buy themselves a better public opinion doesn't make it less than a good thing, but it's certainly not helping their reputation: "hey, we screw up big time, so we douse money left and right to fix it" usually don't works by itself.
The air gap is not the solution. Proper isolation, firewalling and virus/malware is.
No. Firewalling, virus protection, malware detection... all these techniques can be flawed, either by design, because of oversight...
It is acceptable for most system (because these issues get fixed after a while), but for a SCADA system you don't want a zero-day to be exploitable *at all*. Your system can have a ton of backdoor/vulnerabilities/exploits, if it can't be reached by any other mean than physical access they are not an issue.