Irenes (many)2d ago

when Intel introduced a cpuid instruction, around 1998 or so

there was a debate on the Linux kernel mailing list as to whether Linux should provide a way to call that instruction

you know, because of its potential uses for surveillance and how that was sharply at odds with the idea of computers being owned by their users

Show threadIrenes (many)2d ago
the resolution, at least for a while, was that Linux would implement an interface for programs to invoke the instruction, but would also add an interface that allows the user to instruct the kernel to lie and return a user-specified identifier instead
Show threadIrenes (many)2d ago
that was a reasonable approach, though it was only possible because cpuid did not have the force of law. that's how you resist surveillance through technology, when you have to.
Show threadIrenes (many)2d ago
we haven't followed up on it since then. we kind of suspect everyone forgot about cpui and some DRM patch in the 2010s quietly made it a "real" surveillance feature and nobody noticed, but ... who knows, you know?
Show threadIrenes (many)

at any rate, it's really startling to us to see people complying in advance with this current wave of surveillance stuff

many of them are people we have ideological differences with, but we would have at least hoped that libertarians (in the modern, US-centric sense, not the historical one) would understand when someone is seeking to control them, and resist it

Mar 19 at 9:07pmWeb
Show threadIrenes (many)2d ago

like, if you're not based in California, and are willing to say "people in California are prohibited from using this", this current law does not apply to you

and that would be the correct form of resistance, for the record

Show threadIrenes (many)2d ago
the only reason anybody disagrees is that they're part of an organization that decided to make itself dependent on money, and losing money on a matter of principle feels impossible and unacceptable
Show threadIrenes (many)2d ago
this birth date stuff is ... you all understand that once your hands are in the handcuffs, the cuffs tighten, right? don't do this thing of finding specific ways the law is better than some alternatives and convincing yourself it'll be fine. people are fooling themselves on that count.
Show threadRho2d ago

@ireneista personally we are torn, the birthdate stuff is bad. legislating that any age verification need to trust the data provided by the adult responsible for the device does seem correct, vs giving up way more data to 3rd party services.

also os data version actually supports emancipated people under 18 who generally get fucked by society

Show threadIrenes (many)2d ago
@rho it's important to understand this sort of thing as putting in place one piece of a system, on which other pieces can rely. it's not appropriate to say, well, clearly nobody will ever build anything oppressive that goes beyond the scope of the law, and clearly the courts will always interpret the law in the most favorable possible way. we don't know that, we don't know the future.
Show threadIrenes (many)2d ago
@rho we do agree that it's, like... it looks as if somebody at least tried to defer the worst aspects of it to a later bill, we're just highly skeptical that they succeeded. anyway, children are not property!!!! if disinformation on social media is a danger to society - and it is - then the specific social media features that actively promote its spread need to be illegal for anybody, and then we don't need surveillance
Show threadRho2d ago
@ireneista yes, we would say not just defer but disable the surveillance things happening elsewhere. in our opinion social media legislation is related but distantly to the specifics of age verification.
Show threadRho2d ago
@ireneista our state (colorado) is currently working on something similar to the california law but has pulled back a little after a lot of folks got in touch to say what a problem it would be for opensource specifically but community run things in general
Show threadIrenes (many)2d ago
@rho yes, we're tentatively hopeful there will be some sort of carve-out.... fingers crossed...
Show threadIrenes (many)2d ago
@rho we've been following the Colorado bill, though not closely. actually we were heavily focused on Washington state for a while and that's how the California one slipped past us :(
Show threadJon1d ago

Yeah, I'm somewhat baffled why they didn't try to bring this OS-level signal approach to Washington this session, instead basing stuff on the Mississippi and Texas laws and doubling down on the "addictive feeds" silliness. It's exactly what you say, this approach seems relatively benign in the age verification spectrum, but it's laying the groundwork for the inevitable future tightening of the handcuffs.

@ireneista @rho

Show threadIrenes (many)2d ago
@rho we do need to do a close read of the bill for ourselves, and have not yet done so. we've done enough tech policy work that we have come to feel that other people's reads of it always end up oversimplifying things, and every civil-society organization's statements summarizing it reflect their own perspective which is never going to be quite the same as ours.
Show threadIrenes (many)2d ago
@rho er by "it" we mean any legislation, really
Show threadRho2d ago
@ireneista it's very worth reading the california one for sure, there may be a draft of the colorado one online
Show threadJon1d ago

Here's the Colorado bill -
https://leg.colorado.gov/bills/SB26-051

@rho @ireneista

SB26-051 Age Attestation on Computing Devices | Colorado General Assembly

Show threadRho2d ago
@ireneista a lot of those pieces already exist unfortunately, we don't actually know how many countries have laws and regulations for children by age with respect to technology and communication but it does seem very common. what's new is things like the social media ban or us states trying to put the liability on services individually, these are both surveillance state measures that are very up front about it in our opinion(ignoring the mess that is the uk)
Show threadENIGMATICO  2d ago
@ireneista The birthdate thing doesn't worry me because it's made just to please the law enforcement at these places. You can bypass it very easily and you don't need to know anything about computers to do so. You can straight up lie about it and they can't do anything about it.

What bothers me is that this is clearly in preparation to more follow-ups where they request more data later, like also requiring your ID or some sort of certificate that can be back tracked to you.

But nobody is doing anything to stop it so yeah, that's going to happen. The kids sure are going to be very protected...
Show threadIrenes (many)2d ago

@enigmatico we think you perhaps aren't considering it in the full context of how organizations are complying and how those systems will interoperate with each other, but we understand your point

the practical reality is that the best opportunity to oppose oppression is when it is NEW, because it is far more difficult to galvanize public action around something that feels like a tiny incremental change

Show threadENIGMATICO  2d ago
@ireneista Yes, but if they don't comply then they get sued and get themselves in legal trouble. And that's a lawsuit they can not win, which would get them into a lot of financial trouble and might even get them to run out of business. I can understand if they fear that and decide to place a half-assed age verification check rather than have to face legal action against them.

The alternative would be to stop being "free" and disallow using their distro in these places, but we all know age verification is coming globally because it seems like it is the trend now among political parties worldwide. They'd run out of countries where it is allowed to use their software.

If you want to fight then the best way to fight it is by making it so that it's going to be more problematic to the governments to implant those measures than it is to not do so, until they give up. How do you do that? I'll leave that to your imagination.
Show threadIrenes (many)2d ago
@enigmatico these organizations chose to structure themselves in ways which rely on influx of money. that's why they're unwilling to pull out of California, and why they need to be understood as closer to industry than to civil society. that really is what it comes down to.
Show threadLisPi2d ago
@enigmatico @ireneista > The alternative would be to stop being "free" and disallow using their distro in these places, but we all know age verification is coming globally because it seems like it is the trend now among political parties worldwide.

They don't have to, they can just recommend against and tell the user they're taking their non-compliance with their local laws at their own risk.

Freedom 0 includes ignoring stupid laws.
Show threadDavid Smith2d ago
@ireneista I do have some quibbles with “decided” as the verb here. The default predicament of all humans under capitalism is that if they don’t get money they’re indirectly murdered by the state.
Show threadIrenes (many)2d ago
@Catfish_Man that's fair. we have more to say but we burned through all our spoons for the day on a failed laptop upgrade, so we'll leave it at that
Show thread0xC0DEC0DE07EA2d ago
@ireneista “people in California are prohibited from using this […] this website does not retain records of its users, or their geographic location *wink wink*”
Show threadIrenes (many)2d ago
@c0dec0dec0de we would advise people to not go out of their way to do the "wink wink" part, but we're not a lawyer and this is not legal advice
Show threadCassandra is only carbon now2d ago

@ireneista Not everyone can afford to take the risk, but I applaud those who can and then do.

https://agelesslinux.org/

Ageless Linux — Software for Humans of Indeterminate Age

Show threadcthos 🐱2d ago
@xgranade @ireneista thank you for bringing this to my attention
Show threadIrenes (many)2d ago
@xgranade for sure
Show threadVile Lasagna2d ago
@ireneista honestly, libertarians seem to only understand control and oppression when it's taxes or the age of consent. They're extremely eager to lick every single actual boot that comes their way
Show threadIrenes (many)2d ago
@VileLasagna yes, that does seem true. it's unfortunate.
Show threadAda Worcester 🏳️‍⚧️2d ago
@ireneista at some point, linux got a corporate takeover in effect, and it's truly bewildering given how many of the same people are still involved. it's like the _mindset_ got a corporate takeover and from that all else followed
Show threadIrenes (many)2d ago
@pikhq yes exactly :( we can even see some of the major milestones in how it happened...