> If you don't want an unlocked bootloader, just don't unlock your bootloader. T...

hamandcheese · 2025-01-13T02:43:43 1736736223

> I am happy my iPhone doesn't allow Meta to say "to use WhatsApp, you must install the MetaStore®, give it root and install it from there".

I think the inverse is a much more credible threat, though. "Sorry, you cant sign in to your bank because you are using Linux. Please try again on windows 11 with secure boot turned on" doesn't seem far fetched at all.

cesarb · 2025-01-13T14:26:05 1736778365

> "Sorry, you cant sign in to your bank because you are using Linux."

That's not an hypothetical for us here in Brazil: online banking was Windows-only for quite some time, because there was no Linux version of the invasive "security plugin" banks require for online banking (the current version of that "security plugin" has a Linux version).

jmb99 · 2025-01-13T09:07:40 1736759260

Not that I would agree with such a policy (I currently do online bank using Linux), but why is it not within the bank’s rights to make that restriction? If they determine (with whatever degree of accuracy) that online banking from Linux/rooted androids/jailbroken iphones is too risky, why should they be required to allow it?

hamandcheese · 2025-01-13T18:35:11 1736793311

I don't think I asserted that it isn't within their rights. But this is the direction things are headed, and it is a threat to free and libre computing.

alex7734 · 2025-01-13T03:05:41 1736737541

> I am happy my iPhone doesn't allow Meta to say "to use WhatsApp, you must install the MetaStore®, give it root and install it from there". I would not be happy with those restrictions on my desktop.

You fix that by making root access inconvenient enough that companies can't rely on the average random user having it enabled.

For example force you to wipe the device to unlock it as another person said in another comment. Or make it so that if you don't unlock it within 7 days of the device purchase and first boot, you cannot unlock it anymore.

jmb99 · 2025-01-13T09:11:40 1736759500

> You fix that by making root access inconvenient enough that companies can't rely on the average random user having it enabled.

AI TikTok voice “Hey guys, if you just bought a new iPhone, make sure you remove Apple’s restriction locks so they can’t control what you install. Just follow these easy steps, but make sure you do it as soon as possible, since you’ll have to set up your phone again!”

With the comments filled with people talking about how terrible Apple is for locking down their phones, everyone’s an idiot for buying such a locked down phone so they better at least unlock the bootloader, etc.

This is not a far-fetched scenario based on some videos I’ve seen sent to me by friends.

ziml77 · 2025-01-13T14:48:46 1736779726

Don't forget in the video to tell them that it will allow them to install apps that get them more performance, better battery life, better cell signal, etc.

mixdup · 2025-01-13T02:16:45 1736734605

I would also be happy with those restrictions on a traditional PC-class computing device (laptop or desktop). Would I personally buy one? Probably not, but I'd feel a whole hell of a lot better if my non-techie wife or mother or brother were using one and they were no more susceptible to some kind of exploit on their PC device than they were on their phone

That's the whole thing--there should be choice

cwalv · 2025-01-13T03:22:59 1736738579

I could see Microsoft saying "we're only allowing apps installed through our 'store', for safety/security reasons, unless you opt out (gated by some scary warning that doing so is unsafe).

Even if they never charged a fee for running the store, I bet this would raise a lot of eyebrows.

mixdup · 2025-01-13T03:26:53 1736738813

Microsoft has been going in the opposite direction. Nowadays you can post any win32 app to the store, they are loosening not tightening

cwalv · 2025-01-13T03:47:02 1736740022

I haven't used it in ages, but last I looked their store was entirely pointless. I wouldn't be surprised if they just got rid of it altogether.

My point was more about how people would react if MS did such a thing (i.e. installs to come from the store by default).

stavros · 2025-01-13T02:37:14 1736735834

Those restrictions aren't on your desktop, where you do have root. Why would they be on your phone if you had root on that?

jbombadil · 2025-01-13T06:05:35 1736748335

They are on your desktop. Have you tried installing any game you bought through Steam lately? They all install a custom launcher / updater / stuff that ends up in startup.

jmb99 · 2025-01-13T09:13:51 1736759631

Literally 0 games I own on steam have any startup items. Custom launchers yes, but not startup items. A few games have kernel anticheat, but they all start with the game.

The exception is FaceIt for counter strike, but that’s not distributed through steam and is entirely third-party.

bigstrat2003 · 2025-01-13T06:39:01 1736750341

What? No they don't. I'm not saying that no game does this, but I play lots of games on Steam and none of the ones I play do it.

zzo38computer · 2025-01-13T06:32:20 1736749940

I think that making a suitable operating system design can help with avoiding some of these problems (and others mentioned elsewhere) (I had mentioned some of my ideas about operating system design before on Hacker News). In combination with this, there is also hardware design to consider (including considerations having to do with the instruction set), and you can also have a package manager with a package repository where whoever manages the package repository will verify them (something that is already done in many systems, although the verification that is already done is often not good enough in some ways); this package repository management is not actually necessary for the security features of the system but makes it more difficult for authors of programs to work around these security features.

cwalv · 2025-01-13T03:17:49 1736738269

> And I think both types can coexist.

E.g. macos