@JessTheUnstill damn right

@JessTheUnstill@infosec.exchange looking at you lg ​:neocat_angry:​

@JessTheUnstill should be required by law to do this within 90 days of end-of-life

@JessTheUnstill I am really surprised this is not codified into law yet.

@JessTheUnstill more like forcing them to deposit unlock keys at state (or similar) actors

and auto-releasing those keys after $time without update

@JessTheUnstill if you were going to set up a foundation to enact this policy, what would you call it? Would you walk the sign-ups and logos path or the legislative path?

@JessTheUnstill needs an escrow system so that we can get the info even if the company just dies; and also do a court could order its release in some circumstances

@JessTheUnstill 👆 @EU_Commission

@JessTheUnstill nodds in agreement

Or they should be forced to not only take back the device and reimburse the full purchse price + interest but also pay the cost for a functional & technical drop-in replacement with equal or better terms and specs.

THAT is something @EU_Commission should work on instead of copying #Cyberfacism from #Russia and #China...
https://digitalcourage.social/@echo_pbreyer/112134693185106684

@JessTheUnstill Unrooting is not enough. You need documentation and open-source firmwares when a device is abandoned by the manufacturer.

Also you need to define "abandoned". I am sure device makers will never acknowledge the device is EOL. They will always find a good reason why a device will not receive update :)

@JessTheUnstill But then you Maybe don't need to buy their next generation device :ac_amazed:
That's not how our capitalism works(sadly)

@JessTheUnstill I would love this especially for older consoles. I have a perfectly functioning ps3 that would make a great multimedia box if I could only put my own os on it

@JessTheUnstill So true. At @edri we tried getting this idea into the EU's new #CyberResilienceAct, unfortunately without success. Political resistance against such forced exposure of #IP was too great because corporate #property apparently trumps everything, even digital #security 🙄

@JessTheUnstill@infosec.exchange

I recommend learning Assembly. Everything is open source if you can read Assembly.

@JessTheUnstill Of course, they won't WANT to do this because it means less NEW devices well be sold. They rely on the previous generation of electronics going to land fill to make a profit. Think of the poor execs and shareholders! #crapitalism

@JessTheUnstill I appreciate how Google released a firmware for their Stadia controllers after shutting it down. Prior to the update, they could only be used with the service over internet protocols. The update made them standard Bluetooth controllers. I still use mine.

@JessTheUnstill and escrow final source code and patches, drivers, hardware schematics, cad/cam designs for future spare part manufacturing. Stop offering support and spare parts available at a reasonable price, and it all needs to be public domain

@JessTheUnstill I wish!
My phone is perfectly fine but out of support, and if there were a free android port for it I'd flash it on a heartbeat, buts it's Huawei and not supported as all locked down 😔

I would totally buy up 1st gen Alexa or whatever and root them. All I need them to do is run timers and tell me the weather anyways.

@JessTheUnstill

The Google infestation called Android is so out of control, I've not been able to get updates for months. About ready to nuke the phone and get a real Linux OS so I can use it again...

@JessTheUnstill honest question: how do you do that without creating a security nightmare? I’m not a security expert but it seems like it would be just handing out blueprints for more exploits on newer devices built on the same stack.

@JessTheUnstill cc @Weld @malwarejake

@JessTheUnstill @linuxfiend I could totally get behind some regulation for that.

@JessTheUnstill SO MUCH THIS

@JessTheUnstill and all consumer devices should be required to have a service manual available for download and for any device over x value purchase should include a printed copy

@JessTheUnstill *stares silently at my beloved Blackberry Passport, which has sat in a drawer since 2019*

yeeeeup. agree. 100%

@JessTheUnstill Internet of shit is my new favorite term

@JessTheUnstill I get what you're saying but, of course, it misunderstands what the capitalist is doing when they make a device. What they are doing is obligating you to an ecosystem. Giving you freedom to manipulate that yourself (or even opt out of it) is totally contrary to their interests. They just want people forced to come to them. All capitalists do.

@JessTheUnstill Or they should be obliged to support their devices as long as there is even a single damn user. Then they will voluntarily opt for a more open usage.

I once bought a surveillance camera. It only ran through a cloud. The cloud got shut down, and the camera itself would still work perfectly fine... but now I have electronic waste. A waste of money and resources.

@JessTheUnstill @JessMahler And let us root the devices without losing data

@JessTheUnstill waving in agreement from a linux phone.

@JessTheUnstill

And how would that get you to buy a new phone?

#capitalism

@JessTheUnstill
Unfortunately, we're such laws enacted, those asshats would put in a kill code that would make the device unusable within so many days after EoL

@JessTheUnstill
Agreed!

Also: this thread reminds me so much of Cory Doctorow's story 'Unauthorised Bread'.

https://arstechnica.com/gaming/2020/01/unauthorized-bread-a-near-future-tale-of-refugees-and-sinister-iot-appliances/

@JessTheUnstill You’re missing the point. The planned obsolescence is meant to get you to buy a new one. They won’t make money if you continue to use the old phone.

@JessTheUnstill why is it even normal for phones and tablets to be jailed by default. it's a feckin' computer, let me do computer things with it as easily as on a desktop

like are you saying I can't install a different OS on a phone I've paid [4-digit amount of $] for? that's some bullshit of the highest order

@JessTheUnstill the problem is that vendors will never officially stop supporting anything, which would be even worse of a scenario because people who don't know better will be sold old products that barely work because they're still officially supported

@JessTheUnstill @Firlefanz NOw that'd be nice. It'd save us a whole hell of a lot of cash and keep E-waste down.

@JessTheUnstill @gocu54 Try telling that to Apple. the mere suggestion would kill Tim Cook.

@JessTheUnstill whatever brings more doom ports is fine with me

@JessTheUnstill for some of my devices that microsoft is hellbent on putting in a landfill, there is still Linux.

@JessTheUnstill
But then they might not be able to sell the owners new devices. Do you hate #capitalism ?

@JessTheUnstill @xxv

ngl, until I got to "...before they can stop supporting them", I thought this was the FBI/San Bernardino lawsuit stuff

@JessTheUnstill

This is such a good idea. It should be law.

@JessTheUnstill the malicious compliance companies would perform to not have to unlock anything would be both sad and infuriating

@JessTheUnstill I want a list of hardware vendors to use and which to avoid. I started one a while ago: https://trello.com/b/BXxe1Rf5/device-vendors-and-software-freedom

@JessTheUnstill that's not good enough for me. All devices by law, that their tampering would not pose a direct risk to human life (e.g., medical devices and heavy machinery), ought to be jailbreakable, period.

@JessTheUnstill no manufacturer will ever pay for that because they wont profit from it. And it would be shitty. I would be happy with full development docs instead.