@Mahonia
@lemmy.worldFuck people are dumb. There's no thinking here.
The overdose crisis worsened when there were border restrictions, because contamination was more widespread. Also fuck me, the real problem is obviously mostly legal opiate distributors.
I don't get these arguments. These tools aren't weapons, and limiting legal access to pentesting tools will decrease corp's and individuals' ability to be proactive about security.
These devices can be manufactured relatively easily and making them illegal will essentially mean the only people doing security tests are criminals. Large tech companies, correctly, run bug bounties where independent security researchers can make income by reporting reproducible and exploitable bugs. The concept here is called offensive security and it's extremely important for building better and more secure platforms. This situation will never be improved by limiting legal access to useful testing tools.
The responsibility should be on automakers and other companies that have massively insecure products, not on open source developers who are making products for security researchers.
It seems like maybe the problem is that automakers were able to widely market vehicles that use wireless protocols that are relatively easy targets for attack. This was never properly secure.
Automakers should absolutely be held to higher standards (in general) than they are, and it's not likely that banning specific devices is going to have any measurable outcome here. It's pretty well known that people buy and sell malware, and people can just... make devices similar to a Flipper with cheaply and readily available hardware.
This is just dumb posturing to avoid holding automakers and tech companies accountable for yet another dumb, poorly thought out, design feature.
And obviously it doesn't stop at cars. It seems pretty clear that snooping on any feature using RFID or NFC tech is only going to become more widespread. Novel idea: what about using... actual keys as the primary method of granting physical access? Lock picking is obviously possible but a properly laid out disc-detainer lock is pretty goddamn hard to bypass even with the proper tools, and that skill can't just be acquired in the same way as with electronic methods of bypass.
I once tried to do a relatively basic repair on a phone, and ended up really breaking it. Like the touch screen won't work because I broke some shit on the motherboard that now requires micro soldering broke it.
So I send it to a repair company that allegedly does some micro soldering, and they call me to tell me they can't repair it because their diagnostic utility doesn't work unless it's the stock OS (I've been a GrapheneOS user for many years). What they do is... wipe my data and then tell me it's not the screen so they can't repair it.
Then I sent it to an actually good repair shop and they fixed it very quickly, easily understanding the problem. Good repair companies aren't easy to find but damn are they worth it. They're almost always smaller shops and they do not GAF what you do with your phone's software.