mstdn.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A general-purpose Mastodon server with a 500 character limit. All languages are welcome.

Administered by:

Server stats:

18K
active users

I remember trying to buy a TV that does not have "smart" functionality a few years ago. It was a chore. Today it seems impossible.

And not just TVs: ovens; refrigerators; dishwashers — all have "smart" options. In fact, it seems that more and more the available non-smart models are only the simpler ones, less performant in ways that are not related to any smart functionality missing.

My non-smart TV was available only with lower resolutions than "smart" models of the same brand.

1/🧵

This really annoys me. I am too well aware of security implications of smart devices.

I do not want to have to manage regular software updates for whatever number of appliances I have at home, or risk somebody using them in a botnet (or worse).

And no, I don't trust their "disable WiFi" menu options either. Seen this setting get enabled without my consent too many times.

I *could* put them on a special VLAN, but 99% of people can't. That's a problem, and not just for them.

2/🧵

In 2016 a router-based Mirai botnet took down Dyn, one of the biggest online infrastructure companies, and many well known websites with it:
coar.risc.anl.gov/mirai-attack

Mirai mainly targeted home routers.

As early as 2018 there were already botnets that… used CCTV cameras. But of course the predominant media narrative was "hackers attack" instead of "vendors put us at risk":
vice.com/en/article/9a355p/hac

But I digress.

With all this in mind, I started thinking of how could this be solved?

3/🧵

So here's my (silly?) idea: a regulatory requirement for / smart-appliance vendors to provide either:

a). similarly-priced models physically without the smart functionality but with other performance metrics on-par with their smart models;

or

b). a reliable, verifiable, physical way of disabling smart functionality in their smart-devices.

I want to be able to buy a damn refrigerator without worrying about it joining a botnet! Just ain't cool.

I wonder if this makes any sense!

4/🧵/end

@rysiek cannot help but think of a next step, for when some will be tired to wait after legislators to do their job uncorrupted, or for manufacturers to stop producing data-collecting-crap.. or for those who don't want to wait...

collecting information/manuals of where to drill, as safely as possible, to kill those chips, interrupt those "smart" circuits, etc?

@jz oh we should absolutely be doing that, no question about it!

But again, that's a solution for the hackers who can implement it, along with VLANs, Pi Holes, etc.

I want a solution for my Mom. It'll take longer, and it will be more difficult to get, but I want the conversation started at least.

@rysiek nono i am talking of one *physical hole*, with a drill, as small and non-destructive as possible, then patched down with pretty smooth-looking silicon or something.. To surgically kill the beast.

Just to know the very precise centimeter+millimeter position where to drill, and the exact depth... again: surgical.

Doable by anyone. One could hire a handyperson, if proper instructions are available.

Would au contraire take that power away from the exclusive hands of computers hackers.

@jz I understood perfectly what you were saying, but I stand by my statement that that is only a solution for hacky types that would be comfortable with implementing it.

For most people, this is scary beyond belief. Not only is this drilling holes in their "precious" electronics, but also it means loss of warranty, and other "unimaginable" consequences. Not to mention, if a device is being paid for in installments, it might be outright illegal.

I am not saying any of this is okay, of course!

Michał "rysiek" Woźniak · 🇺🇦

@jz so while I strongly agree with you we should totally be doing this and normalizing this, we also need to get a proper long-term solution for people, who do not feel comfortable with anyone wielding a drill anywhere near their home electronics, but would still be very interested in protecting their basic privacy.

And flipping a physical switch would be well within their comfort zones.

@rysiek One way is not incompatible with the other.

Sure, some could go and talk to whoever elected as whatever and ask them to do their job countering interests of mega-corps for the sake of human rights, interoperability, etc. As one who has done that, I wish luck to anyone willing to.

Yet at the same time we could revive a culture of owning one's things, like it's still the case with bikes and used to be with cars, that ppl do hack them and/or have ppl in their vicinity to do it for them.

@jz oh, absolutely. We vehemently agree, as we so often do. :blobcat: