I’m surprised this isn’t a bigger part of the story.
Bambu’s authentication is just the client saying “I am Bambu Studio”. The server completely trusts that with no additional authentication.
It’s like setting up a website with a user login, and if someone puts in “admin” in the username field without a password, the system says “sounds good” and lets you in. And then the website owners getting mad that someone hacked their system.
Blatant incompetence. I can’t believe they’re using their stupidity as an argument.
It’s like setting up a website with a user login, and if someone puts in “admin” in the username field without a password, the system says “sounds good” and lets you in. And then the website owners getting mad that someone hacked their system.
Blatant incompetence. I can’t believe they’re using their stupidity as an argument.
You are right, but technically speaking it would be a crime anyway. It is not that if you leave your door open then entering without permissione is not a crime.
While Bambu Labs obviously is trying to implement some sort of subscribtion model, and they are doing it in a bad faith way, for shitty as the authentication model is it is not an authorization to enter freely.I don’t know where you live, but leaving a door wide open is literally an invitation to “come in” And as far as I understand things correctly, it’s been like that for a few thousand years.
Not paywalled link
GOAT
MVP doing god’s work!
I’m surprised that people are surprised by this. Bambu has clearly telegraphed what kind of assholes they are in the past when they locked down their firmware and local APIs, so this was just expected behaviour IMHO.
Fully agree. This has been discussed for years and most Bambu costumers basically said the risk of your printer being essentially disabled by an update over night was worth it for the quality and low cost of the printer.
A part of me expects Bambu costumers to take this with dignity and move on. They knew the risks after all and are in no position to throw a tantrum after shitting on Prusa for years.
But a different part of me rejects costumer responsibility. It‘s almost always used by bad corporations to shift the blame on the little guys. I want them to fight this. To cause a shit storm that scares off other corporations from trying something similar. It‘s kind of entertaining too. I‘m not gonna lie.
costumer
You keep using that word. I do not think it means what you think it means.
Although, to be fair, there are likely some costumers among Bambu’s customers, since 3D printing cosplay props is definitely a Thing.
That’s actually one of the big reasons I’ve considered getting a 3D printer. It would make prop-making so much easier. I’m decent enough at carving and sculpting stuff. But carving mistakes can be costly if you accidentally remove too much material. But with a 3D printer, you can see your end product on screen and verify it looks the way you want. And then (assuming the printer is correctly set up) it is just… Done.
I like my Bambu printers but I’m not shitting on Prusa. They do a good job. They’re just too expensive for me.
I don’t know. I switched jobs somewhat recently (sw development, tech sector) and my new set of colleagues are all Bambu shills. This sort of stuff apparently doesn’t have the reach it should.
Some people really enjoy living in walled gardens I guess. But when I see people like GamersNexus who were considering a large order of Bambu printers are now ticked off by this they really should’ve known better.
Has Bambu labs considered printing and then eating a bag of dicks?
“Is It FoOd SaFe???”
3d printing community reply, probably.
Archived link: https://archive.is/p6ufq
Archive.is is sketchy
I did not know…what’s sketchy about it?
It scrapes authors’ work and reproduces it for other people at a profit. Lemmy users have a problem with that if you also say the word AI.
Oh and it’s a DDOS attack vector.
And has apparently been caught modifying archived pages.
Bamboo started going bad ages ago. This episode is just the last of a long series.
I haven’t seen it mentioned here yet, but software freedom conservancy is doing a fundraiser to bring bambulab to court, any donation from now till half july will be part of the fundraiser: https://sfconservancy.org/donate/
When tf did the verge put up a pay wall?
Verge let me read the article, but then after i clicked a link to one of its sources, it wouldn’t let me continue reading… Useless.
Works with 3rd-party JS and frames disabled. Archive should work?
Man I was looking at one of the Bambus to supplement my old Monoprice Maker Select. I was hoping to something with less fuss.
People saying good things about the snapmaker u1. Also have a friend with the centauri carbon and it seems to do well. Don’t know about the multi filament setup though, he bought it before the release.
So I have a Bambu printer but I don’t use it all that much. What is going on can someone give me a summary?
Bambu has been adding controls to their printers to force commands from your slicer to go through their servers before being sent to your printer. This had caused some stuff to stop working, like 3rd party AMS systems.
One guy forked (copied it and made his own changes to) their code and removed the restriction. Bambu didn’t like that and threatened him to take it down, while accusing him of falsely impersonating them to make API calls to their servers.
The dude is like “I didn’t impersonate shit, I just forked your code.” Bambu’s code is just a fork of other open source software, all under an open source license. So they have no authority to tell someone not to fork their code, since it’s all open source licensed.
So a lot of people have banded together to push back against Bambu and are ready to take them to court if necessary. They see this as a step by Bambu to try to make their printers more restricted (only use their addons, their filament, go through their cloud, etc).
I was looking at a mini a1 recently. What’s an alternative?
Prusa MINI
Elegoo Centauri Carbon 2
Anycubic Kobra S1
Qidi Tech Q2
Creality has gone IPO and AI, aka down the same path as Bambu. Maybe an old reliable used ender 3, but I wouldn’t but anything new from them.
Speaking of, plenty of old reliable mk3s out there.
Yep grab a mk3s from FB marketplace for like $200 and print like mad.
Very happy with my Anycubic Kobra S10 + ACE. I chose it because I knew I could use open source software if needed and even the stock software works purely over LAN when needed.
I’ve been looking at getting a Sovol, specifically the SV06 Plus ACE.
I wonder what others think about them compared to some of the other options mentioned.
I have a Sovol. They work, but they take more care and feeding. The quality of life features from some other brands aren’t there. I hardly use mine because actually getting it dialed in to get a good print is a pain in the ass.
But they’re also very hackable.
Voron Micron or Salad Fork kit.
@floofloof and for that I dont update my bamby for over a year now…
I have to say that I love the reliable on my prints compared with the printer that I had before, but I am ready to search for anlther brand in the future… unfortunetely I dont think I am theyr target customer, I probably make part of the group that they test things on to get to a broader audienceEarly on this seemed a pretty simple case of corporate misbehavior, but as with most issues that blow up on social media as cartoonishly simple battles between Good and Evil, additional details reduce that comfortable clarity. Since the service Bambu Studio connects to isn’t required to run the software, their claim that keeping the service proprietary doesn’t violate the AGPL might be valid after all. This would justify their objection to Jarczak publishing a fork that connects to the service without authorization.
I doubt that this will change the main discussion tho. No amount of information matters when people only glance at an issue long enough to swipe left or right and keep doomscrollin’.
Since the service Bambu Studio connects to isn’t required to run the software, their claim that keeping the service proprietary doesn’t violate the AGPL might be valid after all.
I think you misread something. The point seems to be that to be able to use your printer you need to connect to their cloud in any case. And this happened after a firmare update.
Wrong. You can print in LAN mode, or use an SD card without even a wifi connection. Here, I googled it for you.
For trolling please use reddit.
