this post was submitted on 05 Sep 2024
942 points (99.6% liked)

Technology

59623 readers
3313 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] 2pt_perversion 160 points 2 months ago (12 children)

I'd be a fan of a law that companies who drop support of their product would have to release code that lets 3rd parties or users themselves offer alternative support. If you want to fully abandon a product opensource it. If you're a big company that doesn't want to do that release a feature for users to self host before you cut ties. I know it's not a simple thing to do in the current world but if laws mandated it then tech would have no choice but to adapt.

[–] [email protected] 55 points 2 months ago (3 children)

Effective [some future date], in order to sell any device connected to the Internet (or Bluetooth, or whatever), you must register your entire codebase and all internal documentation with the FTC, and keep it updated, along with any signing keys to lock bootloaders. The day you abandon support, if you haven't provided everything required for end users to take complete control of their device, your code base and any other IP enters the public domain, and the FTC uses their discretion on release of keys.

It would take new laws, and you'd have to be careful with language and structure to prevent abuse of "third party" code and abuse of corporate structure to try to prevent old devices from being usable, but you could do it.

[–] whatwhatwhatwhat 1 points 2 months ago (1 children)

This sounds like a security nightmare though. A central repository of all code and keys is a gold mine for exploitation. Don’t get me wrong, I would really want this to work, but if it was compromised it could he catastrophic.

I do think there should be regulations in place that are clearly and easily enforceable by the FTC though. I’d love to see companies be hit with fines and/or compulsory refunds if they stop supporting devices and don’t provide some path forward for customers to keep using the device. That doesn’t solve for startups that go out of business, but it would at least cover the tech giants who are doing this garbage.

[–] [email protected] 1 points 2 months ago

The government holds loads of confidential information, including keys. It's perfectly fine.

Anything short of the code already existing and being ready to release allows bankruptcy to kill devices and isn't good enough.

load more comments (1 replies)
load more comments (9 replies)