Slashdot Mirror

← Back to Stories (view on slashdot.org)

Kindle Fire and Nook Upgrades Kill Root Access

Posted by Unknown on from the bug-fixes-are-nice dept.

jfruhlinger writes "The Kindle Fire and Barnes and Noble Nook tablets are similar enough and close enough together in price that they ought to be fighting market share and one-upping each other in terms of features they offer users. But the latest OS upgrades to both gadgets claims to be an 'upgrade' while actually taking functionality away: both remove the ability to root the device." A more balanced way of looking at it is that the updates fix known local privilege escalation vulnerabilities. This might be more of an issue for people wanting to hack on the Nook Tablet: its bootloader is confirmed locked, but reports lean toward the Kindle Fire having an unlocked bootloader letting anyone flash their own software without needing to gain root first.

6 of 275 comments (clear)

  1. Re:Good by SJHillman · · Score: 5, Insightful

    Sort of like being able to open the hood on your car is a security risk.

  2. Re:Good by Anonymous Coward · · Score: 5, Insightful

    Yeah, seriously. When you have a security flaw that allows root privilege escalation you don't just decide not to fix that because the homebrewer's were using it as a convenient way to get access to the machine. If this was on an (open) desktop platform, such a flaw wouldn't really be tolerated for long.

    It's like when people are upset that an exploit in a game was fixed that people were using to win / get free stuf / etc, yet they don't get upset when a bug is fixed that was actually preventing them from completing a game.

  3. Re:Good by betterunixthanunix · · Score: 5, Insightful

    If this was on an (open) desktop platform, such a flaw wouldn't really be tolerated for long.

    Which is why the user should simply be given root access to begin with. Instead of having to use privilege escalation attacks, users should just be able to hit a button or flip a switch to enable root access for themselves. Quick, easy, and perhaps voiding the warranty (but I think anyone who wants root access is willing to have no warranty).

    Why is this so hard?

    --
    Palm trees and 8
  4. Re:Good by rufty_tufty · · Score: 5, Interesting

    Welcome to the real world, the property you own isn't yours.
    You're not buying a product any more you're buying a service. You can't lend others your books (look in the copyright notice at the front if you doubt me) You can't

    It is not your music, it is licensed from those who own it.
    Oh you're a band and think you own your music? Nope, it belongs to your record label.
    Oh you're not signed to a record label? Since 7 notes is enough to copyright a riff then that gives you just over 5000 original works of music so there is no original works anymore. You cannot produce your own works of art anymore.

    Okay maybe you have an idea for a cool new machine, nope that's almost certainly covered by someone else's vague patent. Your ideas aren't yours.

    Okay what about your house, I bet it's mortgaged so the bank owns it.
    Oh, you own your house outright, fine but who enforces it? When someone tries to take it from you it's a government giving you a licence to live there as long as you pay property taxes.

    Actually you know what I started writing this as a parody post and now I'm not sure anymore, exactly what do we own anyway? What has anyone ever owned? Did those 200 years ago have more property rights than we currently have?
    Moving forwards should we have more property rights? Should I be allowed to sell you a device that is designed to break, or at least rely on updates to keep doing the same job? Machinery has always worn out, selling with a contract that requires a service contract has always been legal (AFAIK) so why are we annoyed about this now?

    --
    "The weirdest thing about a mind, is that every answer that you find, is the basis of a brand new cliche" -
  5. Right to Read by mounthood · · Score: 5, Interesting

    In-case anyone hasn't read the Richard Stallman story: http://www.gnu.org/philosophy/right-to-read.html

    From the authors notes:

    One of the ideas in the story was not proposed in reality until 2002. This is the idea that the FBI and Microsoft will keep the root passwords for your personal computers, and not let you have them.

    The proponents of this scheme have given it names such as “trusted computing” and “Palladium”. We call it “treacherous computing” ...

    The 1997 prediction, proposed in 2002, is reality in 2011. The big surprise is that the implementation isn't a technical DRM/TC scheme, but a fundamental change in corporations retaining ownership and control of items after they've been sold. Who could have predicted that?

    --
    tomorrow who's gonna fuss
  6. Re:Good by Moryath · · Score: 5, Insightful

    And yet if the car companies removed your hood release and required a special key or tool only available at the dealerships, you'd be screaming bloody murder and so would the mechanic's unions with good reason - in fact, several times there were class action lawsuits against GM, Ford, and Toyota due to their refusal to sell the appropriate adapters and codebooks necessary to troubleshoot or reset "check engine lights" and computer warnings to the 3rd-party mechanic shops.

    Imagine if the car companies wanted to take away your RIGHT to have your car fitted out with a turbocharger, or an aftermarket performance chip, or a better flywheel, or any number of other changes.

    Now why is it that people don't scream bloody murder when they have a computing device in their hand, personal property they purchase, and they're told "but you don't have admin rights to change anything so there"???