Orca Slicer or die!

Never underestimate your power to re-learn after being shafted for far too long… I’ve been dabbling with FreeCAD 1.0 (the new ‘beta’) lately and, sure, it’s nowhere near Fusion (360), I find it more than adequate for simpler tasks, and the workflow is not all that different - the worst part is all the different keyboard shortcuts

Considering switching to solidworks, but really afraid of steep learning curve. It’s just too much. Beside that my day job is design PCB, but I have to design the case for the PCB sometime.

Just for people who doesn’t know, the title of this thread is very much similar to this

I know autodesk from old, when I supplied cad equipement. Never their stuff, never trusted them. If you want to design cases for pcbs/etc then openscad is simple and quick, once you’ve got your head around it. You are never too old to learn.

I signed up recently because I literally got my X1C a couple weeks ago, half of this time I was out of the country. I had only used the printer for 5 days or so before this happened. There was just no need for me to post anything here before that.

No decompiled code is even necessary to know the security claims are bunk with the current approach. The following is sufficient to know the current approach by Bambu Lab is insecure as it is based on a backdoor: Bambu Connect is authorized to interact with the printer without the user pairing their own security key.

The fact that the private key appears to have been leaked within 24 hours just adds insult to injury, but it was always going to happen. No evaluation of code is necessary to understand this. You don’t have to be able to code to understand this.

Probably.

Not neccesary for them to be able to code - only to understand what they ready is sufficient.

Making it more convinient to use stuff from inside your ecosystem that is a good thing and gets you market share. Making it impossible to use anything else on the other hand, limits the usefulness of your product and loses you customers. Taking away existing capabilities is bad. Full stop.

As someone who runs a 7 figure software business, I can tell you that you are wrong. Have some humility, and be willing to learn, instead of assuming that everyone that disagrees with you is evil.

Here’s another way I was tricked: Bambu Lab claim Bambu Studio is open-source. However, if I actually want to use the LAN-mode features of the printer, it seems I have to install their proprietary closed-source plugin on my device.

At this rate, I am sure I was tricked in many more ways than those of which I am aware. You are correct that I should have done more research instead of trusting recommendations I got. It seems there is a huge iceberg here of sketchy behavior.

I think I am just done now.

Here’s the actions I will take:

• I will uninstall the network plugin as well as BambuStudio.
• I will take the printer offline completely, not even connected to a restricted VLAN.
• I will block the printer’s MAC address on all networks it was connected to.
• I will never update the printer again with official Bambu Lab firmware.
• I will use SD-card printing going forward.
• I will consider modding the printer so it can run open-source firmware to get back the features I paid for in a secure way. Unfortunately, I am not sure I will have time to do this.
• I will boycott any content creator or former friend who still wants to recommend Bambu Lab devices to me.
• I will not buy any more products from Bambu Lab.

Shame on Bambu Lab, shame on their associates, and shame on me.

Starting off with insults, always a great way to progress a conversation. Brow beat someone who doesn’t agree with you. I think you misunderstand who is the troll here. You are so arrogant to assume that anyone who doesn’t agree with you simply hasn’t read the thread or doesn’t understand. Absolutely staggering arrogance.

Maybe you can skip insulting people and assuming what they do or do not understand. Coming to a different conclusion than you does not mean someone doesn’t understand. Losing a feature, and having a feature put behind an extra step is not the same thing. If Bambu had come out and said you now need to buy a license to print ABS or you can only manually control thermals with a Bambu materials. That is losing features, taking something away. The reality of this change is you lose nothing, it is being put behind attempted security if you agree with that security or not is a different conversation.

I will agree that authentication to enable Lan could be an issue, unless the authentication is local. Which I don’t know if it is. You talk about nuance, but I don’t believe you have enough information or facts to make the claims you are making.

We agree to disagree on your “dots”. No company is 100% reliable when it comes to infrastructure Azure going down has cost me 6 figures, Microsoft is hardly the paragon of stability you are touting it as. There is a staggering amount of fearmongering and disinformation in these threads. I will wait and see how the new authorizations work. Enabling Lan mode may not be a phone home task but physically requires you to push the button on the machine “authorizing” the change. Unless I have missed an in-depth explanation on how their doing their authorization I will hold my outrage.

Just for people who doesn’t know, the title of this thread is very much similar to this

…or the talk by Cory Doctorow - Disenshittify or die!

So how does this effect you? Did you wake up one morning and suddenly your printer no longer worked? Or more likely did you see something on your favorite social media site that whipped you up into a frenzy?

Do you even understand how keys work in an encrypted system? What makes you think that there is a security key, the security key. That sounds so silly. Security keys, in a sophisticated system, can be regularly created and destroyed on a dynamic basis. They are used in a handshake as follows:

• The originator, or in reality his software, creates a private key (kind of like an encoder ring) and from this private key his software creates a public key (also a kind of encoder ring) and sends it to the receiver.
• The receiver, using the same software then encrypts his message using the public key and sends it to the originator.
• The message can only be decrypted using the private key, which only the originator has.
• In a highly secure system the private key is deleted at the end of each session and a new one with its associated public key created for the next communication.
• For two way communication each party has their own private and public keys, which can be randomly generated in the software with each using the public key of the other to send messages.

The other thread Explaining the "Auth System" in laymans terms is pure hogwash. It is stupidity on steroids.

I bought the X1 in December haven’t even turned it on yet… SMFH… Now I want it gone!!! 15 days out of the return option… FK!
Gotta try creality now…

I guess I had way too much time and I read the whole thing. Every single reply.

Conclusion:
There are two kind of users commenting.

• a. BL employees or associates without propper tags and sponsored users (aka: they received their printers for free and give zero $%^@ what happens to the machine(s).
• b. actual clients that payed for their printers and consumables.

If you see a comment defending BL actions or pretend they see nothing wrong, there is a very good chance the comment is made by type a. Who am I kidding, there is 100% chance.
I refuse to believe there are people that purchased their machine(s) with their own money and can’t see the problem with this update.

As for suggesting they are trying to increase the security, I think even the people that wrote those words laugh their arses off when they think about it.

Yup, that tells me all I need to know about you.

When I first went to investigate OpenSCAD, there was a disclaimer that said something along the lines of that if one wanted to create artwork or sophisticated assemblies OpenSCAD was not for then, but if all they wanted to do was just to create simple 3d objects without having to learn too much then OpenSCAD is for them.

A lot of people who get into 3D printing have pretensions of making money at it, becoming a professional. I have searched for jobs that use OpenSCAD. Not a single one. Getting into OpenSCAD is a dead end road.

Is OrcaSlicer really that good or is it just one of those things where there are lots more buttons to push so that one gets the feeling that they are more in control. Or that feeling of superiority that so many Orca users display. Long time ago it became abundantly clear to me that incessant variable twiddling was mostly a cover for shortcomings elsewhere. I highly suspect that Orca users tend to be inferior designers or use inferior designs and filaments and expect their printers to compensate with a tweak here and a tweak there. After all, how many temperature towers does one need to print? I keep reading about how great OrcaSlicer is yet I never see anyone showing off their awesome Orca sliced prints.

Bambu has created an ecosystem that centers around Bambu Studio. If one creates print profiles using a 3rd party slicer they are incompatible. The system works because everyone uses the same basic setup. If everyone used a different slicer, the print profiles the the system runs on would become a nightmare.

How is Bambu Connect the wrong way? Because you heard it on YouTube or read it on reddit? Seriously do you even know enough about security systems to make such a claim? If you know so much, what would be the right way? What do you care that you might have to click an extra button? Isn’t that why you like Orca, lots of extra buttons to click?

This seems to be the quality of the average person who is upset over the changes. And to think that they expect to be taken seriously.

Yeah. And: “Never make your own security system - and if so, make it BETTER than everything else on the market.”

That “security” update is a joke

so you’ve learned nothing from your OpenSCAD days. Good to know.

You’ve made 2 paragraphs with zero research and yet speaking from authority. How cute.

You know… I think creditentialism is unnecessary in tech space, but since you’re asking so “nicely” I’d love to brag about my degrees, certificates and nearly 2 decades of matter experience, but I don’t want to waste time and simply say “yes”.

So far you’ve show (at least to me) that you yourself shouldn’t be taken seriously at all. Good day to you, sir.

Then I am sure that you can explain the code that is being bantered around as the smoking gun. Explicitly pointing out the lines in the code that does what is claimed seems to elude all the claimed computer professionals here, on reddit and elsewhere. It is in C++ and should be easy enough to read for seasoned professionals.