|
|
|
|
|
|
by KirinDave
3516 days ago
|
|
|
> No, crash reporting is easily done with logs, preferably in some format you could redact any sensitive information from. This seems more like the "I will secretly phone home and not tell you about it or what I'm sending" kind of thing. It's not terribly secret, now was it? It was... you know... immediately discovered and I'm pretty sure my driver changelog AND firewall asked about it. > These are GPU drivers. It's not at all unreasonable that there may be something sensitive shown on the screen when a crash occurs. Pardon me, could you please explain exactly what in the telemetry or common crash logs might reflect "sensitive" information? You seem to me like you're arguing from some sort of grand final consequence, "Well I assume there is sensitive data here!" And while perhaps that's not an unreasonable default policy to take, you might want to state it as such rather than implying (as you have) that it's been observed already. In general, telemetry doesn't include bulk memory dumps. The technology for collection strongly discourages this, as the endpoints collecting standard telemetry need to run at the scale of your customer base. I'd be much more concerned about sharing log dumps if you've filled your framebuffers with confidential information. |
|
|
You see, there's no way for users to know what data is being collected and sent today, or what they might change and decide to collect tomorrow.
What if government wants access to this data? What if some hacker gets access to the data or their methods of collecting it (MitM)?
As such, they need to prove we can trust them before we accept this at face value. They have not done so.