Unfortunately, there is another possible explanation for the emphasis on TPM that is much more sinister. It's possible that Microsoft and its allies are making a concerted effort to lock down desktop clients in the same way that the two major mobile ecosystems are locked down, to kill off general purpose computing and reduce the desktop PC to a machine that can only run approved apps and consume approved content. It already happens with things like banking apps that you can't run if you choose to root your phone to arrange the privacy and security according to your wishes instead of the vendor's or OS developer's. It already happens on open source desktops, where streaming services will deliberately downgrade the quality of the content they serve you when on the same plan you're already paying for they'd serve higher quality streams to approved (read: more DRM-friendly) devices, and where a few games won't run because their anti-cheat software behaves like malware and the free platforms treat it accordingly.

I am worried that we may be entering a make-or-break period for the survival of general purpose computing with the artificial demise of Windows 10. If the slow transition to Windows 11 as people replace their hardware in the coming years means almost everyone ends up running Windows or macOS on desktops and Android or iOS on mobile devices, there won't be enough incentive for developers of apps and creative content to support any other platform, and all the older versions that didn't have as much built-in junk and all the free alternatives will be reduced to irrelevant background noise because they won't support things that users want to do any more. Your own devices will force updates, ads, reboots, AI-driven "help", covert monitoring and telemetry, any other user-hostile junk their true masters wish upon you, and there will be nothing you can do about it.

Governments should be intervening on behalf of their people at this point because the whole system is blatantly anti-competitive and user-hostile, but most of the Western nations are either relying on the absurd valuations in the tech sector to prop up their otherwise precarious economies or watching with envy while their more economically successful allies do that. So our best hope is probably for the legacy platforms to hold out long enough for some free platform(s) to reach critical mass. And frankly, there aren't many realistic paths to get there. Our best hope might be for Valve/Steam to show that many of those Windows 10 boxes in people's homes can now play most of the same games if they shift to Linux and possibly run some of them better than on Windows as well.

ve never seen a software distribution mechanism as careless and sloppy as NPM. Bazillions of dependencies and no signing of packages. [ ... ]

Rust's cargo packaging system is almost exactly the same way. And the last time I looked, Go's packaging was very similar. And package signing won't help if the maintainer's key/cert has been exfiltrated and cracked.

This is what you get when you embrace DLL Hell -- the idea that you should pin your program to a single specific revision of a library, rather than, y'know, doing the engineering work to ensure that, as an app author, you're relying only on documented behavior; and, as a library author, to be responsible for creating backward compatibility for old apps linking to old entry points. Sticking to that principle lets you update shared system libraries with the latest enhancements and bug fixes, while remaining relatively sure none of the old clients will break.

"Sometimes you have to break backward compatibility." Agreed, but the interval between those breaks should be measured in years, not days.

We don't have a problem with teens viewing porn in the UK. It just doesn't happen any more. In fact, we've been remarkably effective at stopping it compared to half the other countries in Europe, which have seen a recent surge in porn viewing for reasons no-one can identify.

Me too, though of course in our day, the world was much less connected and much less reliant on the technology. The worst we could have done after getting root access to the entire IT infrastructure at my school would have been look at what our classmates had been drawing in Paint or something. Today these systems host much more important and sensitive information and security breaches would be a much bigger deal.

And on that note, am I the only one less concerned by the behaviour of an impressively curious seven-year-old and more concerned by an official, professionally-managed system holding potentially sensitive data that is so insecure that even a seven-year-old could hack it?!

I wouldn't be fine with that. Someone would probably "buy" something because they wanted to have it available indefinitely. If they later found that their "permanent" purchase was revoked, they might no longer have the option to buy it elsewhere because it was no longer available, even if they did have that option available when they first "bought" the product from the other vendor. It's still a scam in the lying vendor's favour.

Of course you want off-site backups. And everyone has been doing that for decades so I don't see the problem with that.

Streaming replication of databases and the like is pretty much ubiquitous as well.

What exactly did you think all those big cloud services were doing for their managed database offerings?

Have you... heard of backups at all?

If the kind of site that would host this kind of system internally at an organisation like a police service has been catastrophically damaged then you probably have bigger problems than the time it takes to restore a backup.

The British government has some excellent IT people. It's a meme really that Civil Service staff are only there for the jobs for life because they couldn't make it in the private sector. The GDS team in particular have successfully automated a huge variety of government interactions with tens of millions of people and for example are widely regarded as having some of the best UX design and accessibility experts anywhere. Building on that to support other government activity, including internal functions not normally seen by the public, would have made a lot of sense. In the longer term we're going to want people like that dealing with the astronomical challenge of modernising NHS IT.

Previous comments have been drawing analogies to Black Mirror, but this "idea" goes back much further...

...This is an episode of Max Headroom (US version).

Specifically, S02E02: "Deities." A company claims to be able to bring past loved ones back to "life" as an AI, for a modest recurring fee. But Bryce (the creator of Max Headroom) opines they can't possibly have the compute power to do it, as it requires a large mainframe just to run Max's highly flawed, glitching bust.

Wouldn't surprise me if the "visionaries" behind this saw that episode, and saw an opportunity to fleece gullible rubes.

This looks like it might be a useful feature for some users. If it is clearly advertised and using it is optional, I'm not sure I see a problem here.

Is there any (non-tinfoil) expectation that any related behaviour in Firefox is not being added transparently and optionally? The description seems ambiguous about what triggers these previews. If merely hovering over a link would be enough to cause a visit to another page then personally that's probably something I'd want to turn off. Others might have a different attitude to risk there. In any case, if there's some kind of active choice where you need to click or press in a specific way to trigger it, that seems reasonable.

Don't worry, Microsoft has you covered. In a couple of months, Windows 10 will also be EOL. And there are millions of computers that could run Windows 7 or Windows 10 but can't run Windows 11.

Thankfully, he was mostly wrong...

Um, when was the last time you stayed at a hotel?

There's a microprocessor in every doorknob.

I also make a living from creative work and it annoys me as well to see someone blatantly trying to rip us off. But I think you and I both know that it's unlikely measures like this will prevent piracy for very long even if they are initially successful. The only thing you can truly control is the systems that don't belong to your user, so that's where you need to put anything you don't want them messing with.

Meanwhile as someone who is also a user and also doing other things than playing games on my devices - including some things where security matters much more than it does for anti-cheat measures in some random game - requiring any kind of intrusive access to my system just to play a game is a 100% reliable way or ensuring that I will never be buying that game.

Fortunately there is now more entertainment produced than I could possibly experience in a lifetime so even if it's the best game in the world I won't be too sorry to miss it while I'm playing something else that doesn't think it should have more control of my equipment than I do.

I'm self-hosting Vaultwarden on my LAN, a Bitwarden-compatible backend written in Rust. I have it running inside a jail on TrueNAS Core (which, alas, is now end-of-life). It hosts its own Web interface, but also is compatible with Bitwarden's Android app and browser plugins.

So far, it's worked out pretty well for me.