[marksomnian]

The issue with having an off switch is that non-tech-savvy people will blindly follow some instructions to disable it and will get caught by a major security vuln.

Case in point: when Chrome throws a TLS error, you could type "danger" to bypass it, but they had to change it because businesses started teaching users to bypass errors blindly.

Not exactly apples to apples, but similar enough in my mind. If users blindly disable updates, they won't be updated when there's a major security patch.

[Trav5]

A good reminder that if a software company is given enough trust to auto update, keeping that trust us important. Seems the big boys have been breaching that trust a lot lately.

[collectively]

This is true. But i’m ok with stupidity hurting individuals—at least in terms of compromise—i’m less ok with default settings being potentially insecure one day.