FRESH

Hacker News

Home

Age verification on Systemd and Flatpak

146 points by londonanon

by uyzstvqs

10 subcomments

People need to understand the difference between age indication and age verification. Two very different things. Age indication is a completely private and realistically as-effective alternative to the invasive age verification.
Age _indication_ means that when you set up your device or create a user account, you enter a date of birth for the user. The OS then provides a native API to return a user's age bracket (not full date-of-birth). If the user is a minor, the OS will require parental authentication in some way to modify the setting again. This can all be done completely offline. It works because parents almost always buy the devices used by children, and can enter the correct date-of-birth during setup.
Age _verification_ means that some online service has to verify your age, and collects a bunch of (meta)data in the process. This is highly problematic for privacy, security, and the open internet.

by ekr____

2 subcomments

OP is certainly right that a lot of this legislation is written in ways that are hard to interpret and that often seem like they would have undesirable side effects even under the assumption that the basic idea is good (whether that's actually true is a whole different question).
In the specific case of CA AB1043: (1) Systems are required to ask the user for their age and just trust whatever they say (2) Applications are required to query the system for the user's age range. Other enacted and proposed device-based age assurance mandates have different properties.
This post goes into quite a bit of detail about the various points of concern: https://educatedguesswork.org/posts/device-based-age-assuran...

by renegat0x0

1 subcomments

Article asks what next. I know what's next.
It is similar with crypto wars. They try and try until they have backdoor everywhere.
About verification they will try to implement WEI on browsers, and verification on os.
It is a crusade to make you always identifiable. Companies and governments want it so much because it is so valuable to them, it adds so much power over people.
So what's next. They will move borders here, and there. Every year.

by nout

1 subcomments

It's interesting that the package managers become choke points that can be used for government overreach. Luckily Linux is open source so I expect there will be options that just don't do this from principle.
Otherwise my Intel NUC server with Debian is 2 years old, so I expect the honest age would be 2 years? I may have parts for some old PCs to put together that could get adult software I guess...

by jmclnx

3 subcomments

This is a no win situation and I think systemd is making this change too early. But I have read that field is optional.
But my main concern with this is applications like Firefox will eventually require this systemd age specific field and a standard systemd function to call. That means this age field will need to be populated and thus locking out the *BSDs and non-systemd Linux.
If that happens, this makes the systemd critics 100% right, systemd is being forced upon all distros by various upstream applocations.

by stevenalowe

0 subcomment

NO, DO NOT COMPLY WITH FORCED SPEECH
Might seem harmless now but it won’t next time, and you will have already capitulated

by cyberge99

1 subcomments

Age verification in the OS is one milestone of a greater objective: removing anonymity on the internet

by pharrington

0 subcomment

This is actually nuts. You can't even constantly implement "age verification" at the system level in a way that makes sense across world cultures.
The only sane way to do this is you were playing along with arbitrary legislative age-gaters would be to add a generic "additional user info" blob to the account fields, if it didn't already exist.

by garganzol

1 subcomments

Let's restrict this plague to California/UK only. If Gulag wants to be a Gulag, let them be.

by lschueller

2 subcomments

Quite spooky imaging that apple might create by that a fully verified pii database for half of gen z and every coming gen users

0 subcomment

by _nobody

0 subcomment

One very disturbing consequence not discussed enough is that some American state law is suddenly supposed to be tolerated by the rest of the world just because they depend on open source software, which sees contributions from all around the world.

by dizhn

0 subcomment

Wondering which jurisdiction will be the first to make it a crime to enter false information in the age field for their kids.

by self_awareness

1 subcomments

I wonder, why California law mandates systems that the rest of the world should use? Does California have such massive market?

by supliminal

1 subcomments

Is 9front impacted?

by tombert

3 subcomments

I've been running NixOS for awhile, which is very firmly integrated with systemd.
I wonder if it's time to try something like sixos or Guix SD.

by Shank

5 subcomments

It seems incredibly silly to me that this is being rushed into systemd and other linux components. I understand Apple making changes, and even Canonical, but systemd is not run by one corporation and there is no reason to adhere to a badly written law. Why play along with the charade? If root is root, the "age verification" field does not make any sense.
Why are these changes being made on a worldwide basis when the laws that have been introduced are a relatively small fraction of the world? California isn't going to go after individual systemd maintainers. Will California go after Torvalds? I doubt it. Apple? Surely, but this is, quite frankly, a ridiculous thing to even suggest for inclusion into these setups.

by RcouF1uZ4gsC

0 subcomment

> Will my system believe me? And how about their system, whoever “they” are? If not, then what else will I need to do to prove my birth date and age? Who will check if root can’t be trusted? How will they check?
If they ever seize your computer, they can probably also tack on computer fraud charges

by ur-whale

2 subcomments

Carry permit to operate a compiler is in our near future.

by sunshine-o

0 subcomment

The story reads like an april fool.
For root to manage privileges in an OS, isn't a group the most straitforward way?
Can't flatpak read the groups of an user?

by motbus3

1 subcomments

I think you miss the point (But who am I)
the simple fact you sending the same signal over and over again, with all other signals your browser send, it will be another key to make you apart. They don't care if you lie. Important that you lie the same story every time.
And after having your dob, who could easily be a flag if you are less than 18, they could easily request your name, or a document number, but I think it will be much better, it will have some ISP and/or Device ID.

by shevy-java

0 subcomment

Systemd gathering user data is evil.

by gethly

1 subcomments

SystemD is now a spyware and therefore any Linux distribution that i using it. Period.

by 5o1ecist

0 subcomment

[dead]

by hanisong

0 subcomment

[dead]

by Ms-J

0 subcomment

[flagged]

by looperhacks

4 subcomments

[flagged]

by petre

2 subcomments

This is stupid. The age should be in the passwd gecos field or somewhere else in the user's config directory. Not in systemd. Unix-ike systems are multiuser. Now I wonder what age to put in the root, adm or games accounts.

by pgt

3 subcomments

Fellow software engineers, what are we doing here? Why are we letting the EU / UK define the future of software?