Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It bothers me that many devices are so easily remotely bricked and that keeping them offline is the only way to avoid such issues.

Automated updates were supposed to give us peace of mind instead of having us worried about what bug or enshittification will follow.

I’d wager that, for most Internet-connected appliances, keeping them offline or disabling autoupdates have way more pros than cons.



If you think about it, keeping them offline is a huge security improvement even without the risk of bricking update, so in ways an automated update regime that convinces you to keep your device offline is giving you peace of mind. In a way.


If it allows anyone to remotely execute arbitrary code on a device without the user's consent, it's called an RCE vulnerability. About as serous as software vulnerabilities go, needs to be patched yesterday.

But if it only allows the manufacturer to remotely execute arbitrary code on a device without the user's consent, it's called an automatic software update mechanism and most people somehow consider that it's totally fine.


Automated updates are a way for companies to push updates on you without having to first convince you that the updates are good.


Also allows them to ship unfinished/buggy and poorly tested software and "fix it later OTA."


Damaging or removing features should reopen the return window. Then they will be more careful about what they change.


I agree but it's a headache even if you are able to return.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: