this post was submitted on 02 May 2024
359 points (97.6% liked)

Technology

59588 readers
3091 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
top 50 comments
sorted by: hot top controversial new old
[–] captainjaneway@lemmy.world 141 points 6 months ago (6 children)

Thermostats are easy to change out. So this isn't a huge deal. But I don't love the idea that tech isn't built to be self-hosted or maintained in any meaningful way. If you're not shipping an open source version of your software when you close up, you're an asshole.

Yeah, self hosting isn't for most lay people if it's just a GitHub repo. But GitHub repos quickly become adopted by nerds like me who build tooling around it that eventually let lay people self host software with the click of a button.

[–] AbidanYre@lemmy.world 57 points 6 months ago

Yeah, self hosting isn't for most lay people if it's just a GitHub repo...

If ecobee put their backend code on GitHub, I bet it would be self hostable with docker within a week.

[–] wagesj45@kbin.run 20 points 6 months ago (1 children)

Newer versions are Homekit compatible and can be controlled over the local network.

[–] Ghostalmedia@lemmy.world 14 points 6 months ago (2 children)

As long as HomeKit remains a thing.

[–] jonne@infosec.pub 31 points 6 months ago (1 children)

Home assistant can talk to homekit devices without involving Apple, so you can assume it'll be around for a while.

[–] Ghostalmedia@lemmy.world 16 points 6 months ago (1 children)

Yeah, 100%. Home assistant can basically connect to any damn thing. Home assistant is going to be the fall back for a lot of legacy iot devices and platforms.

[–] jonne@infosec.pub 13 points 6 months ago

Not quite everything. The stuff that calls home to their own servers can't be saved by home assistant. If you take care to buy stuff that can be controlled locally, you're more likely to have some longevity out of your devices.

[–] wagesj45@kbin.run 8 points 6 months ago (2 children)

It is a standard. I don't know how you can make it not be a thing once it is implemented.

load more comments (2 replies)
[–] kevincox@lemmy.ml 13 points 6 months ago

It is also nice that these just degrade to regular thermostats. It isn't like they are completely stopping working. It would be nice if you could swap out the API, or they keep the API running longer (how much work can maintaining it be?). But this sounds like a pretty graceful degradation.

It would be nice to have these speak some common Zigbee protocol or similar. But this isn't the worst behaviour I have seen from companies.

load more comments (3 replies)
[–] RagingSnarkasm@lemmy.world 88 points 6 months ago (4 children)

16 years? That's like 8 separate Google project lifetimes.

load more comments (4 replies)
[–] the_third@feddit.de 70 points 6 months ago (4 children)

Why is nobody here asking for a local API? Are we as techies just accepting that this NEEDS a server component run by the manufacturer?

[–] Toribor@corndog.social 27 points 6 months ago

The newer Ecobee's can run entirely locally through their homekit integration. I tie mine into home assistant and use it that way. I would never have bought the device if that wasn't available.

If this old version doesn't have that available then I'm assuming people purchased it knowing that it was reliant on cloud services. It would be nice if they offered customers options besides just letting the device turn into e-waste but you can understand why they don't want to burn development hours on a device that's a decade and a half old.

Just another reason to never buy devices that can't function without a cloud service.

[–] jkrtn@lemmy.ml 15 points 6 months ago (1 children)

I don't understand the mindset of people who buy these things in the first place. Occasionally there's an article like, "guy's entire house suddenly inoperable after Amazon ban," people just don't think that will happen to them? It is local control on a standardized protocol or nothing for me.

load more comments (1 replies)
[–] masterspace@lemmy.ca 8 points 6 months ago* (last edited 6 months ago) (3 children)

Probably because this came out 16 years ago, before HomeAssistant even existed, it will still maintain wifi support for checking and controlling with your phone even after they cut off the cloud connection, and all their new products do have a local API and can still be used with HomeAssistant or whatever other local home automation server you have.

load more comments (3 replies)
[–] werefreeatlast@lemmy.world 6 points 6 months ago

Yeah. The server and software should be open source and API available. That way we actually own the system and don't have to just toss it out if someone goes out of business.

Fucking ulock for example suddenly wants me to create an account and sign in to their website to use my front door lock! What the fuck is that! We need consumer protections for this sort of shit. I didn't sign up to giving away when I come in and when I go out of my house! WTF to the max!

[–] lemann@lemmy.dbzer0.com 41 points 6 months ago* (last edited 6 months ago) (2 children)

16 years old? That thermostat has sure had a run, must have been designed pretty well to last this long without some electronic failure.

Assuming it's cloud connected, anyone aware whether it got updates for the newer versions of TLS and root certificates? As an example I'm aware quite a lot of android and similar devices from that era have expired certificates now, and outdated/vulnerable SSL libraries...

Edit: Edit example

[–] jonne@infosec.pub 75 points 6 months ago (2 children)

For a thermostat that's built into a house, 16 years doesn't seem long enough, tbh. A 'dumb' thermostat can easily be in use for 30+ years before anyone would even consider replacing it.

But yeah, as you said, if it's connected to the internet you have to worry about software patches, certificates, etc.

[–] altima_neo@lemmy.zip 20 points 6 months ago

Yeah, the old dumb ones in my house have been there for 50 years.

[–] TheGrandNagus@lemmy.world 8 points 6 months ago

Yeah the thermostat that was in my home until ~2010 was added in the 20s lol. 16 years isn't long at all.

[–] TimeSquirrel@kbin.social 43 points 6 months ago* (last edited 6 months ago) (5 children)

16 years old? That thermostat has sure had a run

I have game consoles that are more than twice that old and still play reliably. Apple really skewed our idea of lifespans for electronics, didn't they? It's a thermostat, they should be designed to install and forget for the next half-century. It's a core part of a house, like the plumbing and breaker box.

[–] paraphrand@lemmy.world 7 points 6 months ago* (last edited 6 months ago)

Didn’t the pace of change influence our perception more than anything else?

Don’t old computers on old operating systems work as well as they did when support was dropped? Much like your example of consoles?

The rate of software gobbling up newly available resources seems to a big reason people feel the need to move on. But I think that is starting to flatten out as the pace of processor improvements slows.

The bloat on the web is a huge burden on older devices too. Especially for your average person.

The bloat on the web and in native software (and in non-native software that is just another copy of Chrome posing as native software) comes from our newly available resources allowing for “lazy” development practices that prioritize cross platform development and other factors over writing efficient native software for each platform.

There are a lot of factors involved in the rate of device turnover. I don’t think any one factor is consistently forcing people to upgrade hardware. It’s a collective situation.

I use my desktop computers, for work, for nearly 10 years past their introduction date before replacing them. (Three more to go for my current machine). For my gaming computer, I swap a major part every 5-6 years.

And to reiterate, I think this rate of change is slowing down. At least for raw processing power and how long it is relevant. The rate of change over the course of personal computing has been massive. And it’s just starting to slow down.

load more comments (4 replies)
[–] NounsAndWords@lemmy.world 39 points 6 months ago (2 children)

The company is offering affected users a 30 percent discount on a new Ecobee thermostat, valid for up to 15 thermostats.

...

[–] toynbee@lemmy.world 26 points 6 months ago

While I very strongly agree with your message, I have to say that this is one of the least fitting usernames I've ever seen.

load more comments (1 replies)
[–] AllNewTypeFace@leminal.space 32 points 6 months ago (1 children)

I wouldn’t be surprised if someone reverse-engineers the protocol and codes up their own replacement backend as a one-file Python script in a weekend.

[–] IphtashuFitz@lemmy.world 19 points 6 months ago (2 children)

That truly depends on how secure Ecobee made it… I’ve seen some smart devices that use SSL (https) for all communication and do some sort of certificate authentication, making it virtually impossible to decrypt its communication protocol without a valid private key…

Having said that, it’d be nice if Ecobee took the initiative and opened up these older devices, if they could do so without comprising the security of all their others.

[–] jonne@infosec.pub 11 points 6 months ago (1 children)

In the last 16 years there's been multiple SSL vulnerabilities, so if someone was motivated enough, they could probably hack it, especially considering they'd have physical access. You could probably even dump out the filesystem and overwrite certificates with your own.

[–] agressivelyPassive@feddit.de 11 points 6 months ago

16 years ago was 2008 (which is shocking in itself, I'm old), SSL was seen as very very optional until 2013, when Snowden dropped his CIA/NSA leaks.

I wouldn't be surprised, is the security is "trust me, bro".

load more comments (1 replies)
[–] impure9435@kbin.run 30 points 6 months ago (2 children)

That's ok if you ask me, considering that they will still continue to function as regular thermostats

[–] LemmyBe@lemmy.world 19 points 6 months ago* (last edited 6 months ago) (3 children)

I disagree - definitely not OK by me, though likely legal. People bought this because they wanted and paid extra for an internet connected device, and a regular thermostat is not that. I mean, would you be OK if your TV manufacturer disabled the screen and streamed radio stations instead?

[–] TrickDacy@lemmy.world 7 points 6 months ago (5 children)

The last TV that would've lasted 16 years was probably made 40 years ago

load more comments (5 replies)
[–] BassTurd@lemmy.world 6 points 6 months ago (1 children)

If my TV was 16 years old, and the manufacturer cut off the internet function to it, id be ok with that.

These thermostats still work as thermostats, just without the smart features. Comparing that to turning a TV to a radio is disingenuous. 16 years is a long time, and there are security protocols amongst other things that go obsolete over time and can't be updated at a certain point on legacy devices.

[–] LemmyBe@lemmy.world 12 points 6 months ago (2 children)

I honestly can’t understand why anyone would be OK with it. I think our society has been getting trained to just accept whatever they throw at us. “Buying” something no longer means fully owning it, and I’m not OK with that, I just have to live with it.

load more comments (2 replies)
load more comments (1 replies)
[–] Ghostalmedia@lemmy.world 14 points 6 months ago

If you bought one of these because you have a heat pump and want to consider the outside temp, that service is now cut off. Not ideal.

[–] Snapz@lemmy.world 24 points 6 months ago

Why do we allow this? Companies that contribute to operate should be severely penalized if they don't A)) continue to support legacy products B)) offer FULL replacement if servers/apps shutdown or C)) open source EVERYTHING is they are going to try to kill a device.

[–] AlternateRoute@lemmy.ca 20 points 6 months ago

As per the Ecobee notice this only impacts the two original models and they still function as regular thermostats still, they are just not providing any of the smart / cloud features anymore.

Newer units support local homekit control, which can also be paired with open systems like Home Assistant for full local control for automation.

[–] Everythingispenguins@lemmy.world 18 points 6 months ago* (last edited 6 months ago) (7 children)

Honestly this makes me feel that not adopting IOT is still a good idea. Yep I am probably leaving some efficiency on the table, but I get more reliability in exchange.

Spelling

[–] swordgeek@lemmy.ca 7 points 6 months ago

Every one of my IT colleagues over about 35 is an absolute luddite. No IoT, no smart appliances, and a hardened firewall for everything that needs access. Location tracking and biometrics disabled on our phones, no cloud services, etc.

load more comments (6 replies)
[–] slimarev92@lemmy.world 16 points 6 months ago

The article (which nobody here bothered to open) says they'll still function as "dumb" thermostats, so actually it's less of a big deal.

[–] M0oP0o@mander.xyz 16 points 6 months ago (1 children)

I will never understand the appeal for cloud based home automation.

All the spying aside, 16 years and your thermostat is no longer supported sounds ok until you think about how if you replace everything with cloud based equivalents you are always going to be having to replace things going out of service. I think its funny that you pay more for a device that lasts for lot less (How many thermostats have people seen fail?). I guess the companies are happy?

[–] shinratdr@lemmy.ca 9 points 6 months ago* (last edited 6 months ago) (2 children)

The appeal is remote and centralized management, easier programming and more features. If that’s not worth it to you to replace your thermostat every 16 years, then nobody is forcing you to get one.

But being able to change the temp from my phone from anywhere is worth it to me, as well as including it with other automations for all my connected devices. The appeal is honestly not hard to see, even if it’s not worth it for you personally.

load more comments (2 replies)
[–] Antergo@lemmy.ml 15 points 6 months ago (3 children)

AA much hate this might be getting, they're offering discounts on a new product, and 16 years is a hell of a lifetime. Imagine having to support software written in c99 maybe even c89, with some homebrew UI full of bugs.

[–] anindefinitearticle@sh.itjust.works 18 points 6 months ago (1 children)

It’s a thermostat.

I’m coming from a field where supporting software written in the 70s is the norm.

Your argument is horribly short-sighted and wasteful.

Only 16 years old is extremely recent software that ought to be easily maintained in any sane world.

load more comments (1 replies)
[–] douglasg14b@lemmy.world 11 points 6 months ago* (last edited 6 months ago) (4 children)

I'm in my house right now with a perfectly working thermostat that's 70 years old.

And given the mechanism of action it will continue working in another 70 years.

16 years for hardware used inside of homes is a ridiculously, absurdly, short lifetime. Even for a vehicle that would be pushing the edge of "too short".

That said 16-year-old software is not that old. If it's built using sane language choices it should actually be functioning and modern today.

load more comments (4 replies)
load more comments (1 replies)
[–] philpo@feddit.de 12 points 6 months ago* (last edited 6 months ago) (16 children)

That's why one uses an industry standard that is brand-independent,operates offline by design and does not require a central component besides a power supply.

Sounds like utopia?

This standard has been available since 1990 in its archaic form, since 2002 in its current form. It is downwards compatible and over 400 companies worldwide are part of the standard. HomeAssistant, ioBroker, openHAB,etc. all support it directly and there are multiple crossover gateways with other standards like DMX, ModBus, Dali,etc. exist. And no, it's components are not more expensive once you look at the TCO.

For fucks sake, people, use KNX.

(PS: There are even a few open-source/DIY components available)

load more comments (16 replies)
[–] umbrella@lemmy.ml 11 points 6 months ago

they made it online and dont want to bother actually supporting it...

so we replacing thermostats every decade and a half now?

[–] Valmond@lemmy.world 10 points 6 months ago (11 children)

This is why I'm all in for non-"smart crap", I don't even have inductive heating stove top because they never have basic knobs.

Long clicking on [3] then + + + + + + to boil your f eggs? No thanks.

[–] jose1324@lemmy.world 16 points 6 months ago (1 children)

That is a horrible argument.

Just get a non shit induction stove

load more comments (1 replies)
[–] the_third@feddit.de 10 points 6 months ago* (last edited 6 months ago) (3 children)

My mom has an induction stove that has knobs.

Definitely a thing, Miele even has a device filter for that feature.

load more comments (3 replies)
[–] baru@lemmy.world 6 points 6 months ago

Long clicking on [3] then + + + + + + to boil your f eggs?

A lot of them have a terrible UI. But that's far from all of them. Enough have sliders. Sometimes one with a pan detection. Sometimes a slider per area.

[–] Evotech@lemmy.world 6 points 6 months ago* (last edited 6 months ago)

It's just on and then hold b for boost now. It automatically detects which slot you have placed your pan on and selects that for you. But I get your point...

Induction is great 👍

load more comments (7 replies)
load more comments
view more: next ›