Some of you need to watch this video, and hang your head in shame.
Dylan Taylor has been receiving constant harassment, including threats to his life and safety, for actions done collectively by SystemD. The article by Sam Bent was explictly mentioned as part of the harassment campaign, and rightfully so.
I don’t think enough people realize that this is catastrophically bad. It’ll discourage people from becoming open source developers, it’ll discourage people from using Linux, and it’ll discourage legislators from taking the Linux community seriously.
If you ever wished ill upon another human being for complying with a relatively inconsequential law, you are better off never touching a computer again. The Linux community has collectively gone so far beyond what is acceptable here.
Whats wrong with Age verification? its fine to verify age, the problem with the age verification laws is the issue of how age is being verified. In this case its fine because its local first and privacy respecting.
Age verification requires doxxing yourself in order to actually work, and if it doesn’t require doxxing yourself then it won’t work and it can be bypassed, so pointless capitulation granting ease into more authoritarian forms in the future. You don’t see why any actually functional age verification is a problem while fascists are trying to control all the digital architecture?
No it doesnt. If I ask are you 18 and you reply no/yes that is verifying your age without doxing you. This field is for when the user is NOT admin on the machine. This field would be filled out by the parent when they’re setting up their kids machine.
What is the point of a field like this if you can literally put anything in it you want? Your not verifying anything. The next logical step is to add proof.
That isn’t the next logical step for systemd, which is what this post is about.
The reason systemd stores this information is that systemd stores user information and this is user information.
If some future application comes along that wants to require age verification and use that field to store the data, then you can simply choose to not install it. Problem solved.
Removing birthDate doesn’t stop these programs from existing. If there isn’t a birthDate field then they can simply decide that they’re going to store the birthdate in the user’s ‘location’ field instead and it would work perfectly fine. Are you going to remove the location field too? All of the text fields?
Adding a specific birthDate field is simply recognizing that this software exists (which, it does) and that systemd is the logical place to store user metadata (which it is).
If you don’t like the software that will do age verification then don’t install that software.
Its not suitable for proving your age. Its adding a field which is a stepping stone to future gating and more control over something that isn’t even applicable to most of the users of the system.
Why not then add a live filter to ensure that you don’t call Putler’s war in Ukraine and call it “SVO” as you are supposed to? Its the law over there and many years older than this one. People already have gone to prison for not complying with it. But hey lets make that a part of linux too. Its law after all… Do you see how stupid it is to blindly comply to something that doesn’t even apply to you?
How is it not suitable? If I setup my kids age and an app wants to use the portal to check if he is over 18 and it returns no. That suitable age verification and its privacy respecting. Which is what is being suggested.
There are already parental control packages exist in the Linux infrastructure which are not tied to low level modules such as systemd https://github.com/biglinux/big-parental-controls if you want, you can install it. Its fork is available in the Arch ecosystem for example that mentions it complies with the BR implementation (https://github.com/jersobh/arch-parental-controls)
Why do I need MORE parental controls shoved down my throat when I do not desire it nor wish for it? But this time in a core component of alot of linux distributions.
Oh and before you tell me “but ExoticCherryPigeon, its an optional field”, sure, but here is the example of the slippery slope curtsey of UK:
Take a look at the history of this act https://en.wikipedia.org/wiki/Online_age_verification_in_the_United_Kingdom
We are now at the point where I need to use a CC to tell some 3rd party that I want a wank.
And what else is happening now? They are suing websites not based in UK! https://en.wikipedia.org/wiki/Online_Safety_Act_2023#Enforcement, but that’s not all, although not at the law stage, there are some talks about also now restricting VPN’s https://www.techradar.com/vpn/vpn-privacy-security/uk-government-says-it-may-age-restrict-or-limit-childrens-vpn-use-following-new-consultation.
A lot of websites also not based in UK jurisdiction have simply self censored UK users before they get ISP level blocked.
If this is not an example of a slippery slope, I don’t know what is!
TL;DR tools already exist, we do not need more tools that will be a privacy nightmare
You don’t and you don’t have any parental controls being shoved down your throat, you have a JSON field that you can choose to enter data in or not. It does not control anything, it is not validated by anything (outside of compliance with ISO 8601) and it is not required to be set to anything.
Who controls what is installed on your system? If it is you, then you can save yourself from parental control software by not installing parental control software.
So when application developer such as Discord (an example) builds on top of these age controls and decides to not allow access to channels which are marked 13+?
What do you expect will happen?
I expect that they will store your birthDate in their own way and not use systemd as they are not a Linux native application.
You get to choose if you install Discord and you get to choose if you are going to submit to their age verification.
This is true if the birthDate field exists in systemd or not.
They DO have a linux native client though, and the whole idea of using systemd according to the PR author IS because application developers can then request this information from user profile
https://github.com/systemd/systemd/pull/40954
Discord does not use Linux user metadata to store information about your Discord account. Because the application is cross platform, they store information about you in their own systems, not in systemd. Their age verification is implemented completely independent of systemd and doesn’t rely on the birthDate field.
It’s also software that you can choose to not install.