This new auth system will make me sell my printers

oops… meant haven’t revied all…

actuall full link

This is week old news, and has been discussed.

Sorry about the OT, but, I have to ask why do people think restricting air flow into the part cooling fan and increasing the mass of the hot end is a good idea?

What make/model? Dodge/jeep have had that for years, it’s super annoying from the repair shop end.

Anycubic Kobra 3 gets spaghetti detection once you add a camera, and ‘works’ over LAN, no Internet needed.

I say '‘works’, because it stops the print for no apparent reason until I resume it. It’s best left off.

Because it is a prefference that has not caused any issues so far

Threats, lol. It’s my printer, I’ll explode it if I want to. Doesn’t affect you. Kind of like how having a functional fully offline mode doesn’t affect you. I don’t know why you’re taking it personally.

Ah, the funny thinker strikes again!
If you’re trying to sabotage Bambu Lab, just remember—they’ve already got your money. So if you blow up your printer, the only real loser is… well, you. Not exactly the smartest 3D printer on the block, huh?

I haven’t seen, to this day, anyone saying that they hate their printers, not even among the most vocal critics of Bambu’s latest firmware (and I consider myself among them). Actually, like everyone else, I’m happy with my printers and I would like to keep it this way, which is why I strongly oppose the new firmware (and the BS reason invoked for it) for as long as the this firmware forces me (and others) to go through their cloud, even if only for "authentication and authorization " as they claim. Period.

I do watch and like Slant3D’s stuff. Their expertise is mainly in making things printable at a mass scale.

Now, with regards to “bambu connect” and locking down 3rd party access one has to see it from perspective of a person with security expertise. There were multiple people explaining the actual issues with it (not the fear mongers or other silly gooses) so, if I may summarize couple points where Gabe’s expertise is lacking. (This will be most likely wall of text, sorry for that)

• Their “old” metodology is not “highly insecure”. It used to be. I’ve seen the changelog where they changed from completely plaintext protocols to secure variants. Note - that change did not result in any loss of functionality for anyone, yet increased security tremendously.
• “bricking” and “update is optional” - the usage of “bricking” by “fear mongering” people is incorrect. The “update is optional” thing is problematic, since as pointed by multiple people Bambu’s TOS clearly states: “Due to the importance of these updates, your product may block new print job before the updates is installed” - so: update is optional, but unless you install the update deeded important enough new print jobs will be blocked. The printer is not “bricked”, can be used normally just without the ability to print anything.
• cloud subscription - This is a problem of Bambu’s own making. Under current system, in the “cloud” mode, the print job sent from your pc to your printer, that sits just a couple meters from the pc and is on the same network as the pc, still goes through “the cloud”. That obviously uses bandwidth and processing power (that’s not free) and is absolutely unnecessary. There’s no technical reason for that to happen.
• security concerns for “normal people”: YES, security is very important. But there’s a caveat: security is a hard topic, very easy to screw it up, hard to get it right. Bambu (and dr. Tao) had admitted that their expertise is not in security. That’s why in order to fix their stuff, they should’ve hired actual experts. (also, “catch fire” thingie is invalid, thermal fuses do exist you don’t even need firmware to control that where physics can prevent fire for you).
• Intellectual propery theft: In any place, where IP theft is possible, there’s no chance in seven hells they allow any of their internal data from within network to be send through “the cloud” to the printer. Those are either literally “air gapped” or full on LAN mode.

Just to make it clear regarding “security”:

1. The “Bambu connect” does not improve printer nor user security at all. The generated gcode is simply signed by it to be sent to 3d printer through bambu cloud. It doesn’t change anything about gcode’s security (at the moment). Also - the printer should have both physical (think termal fuses, overcurrent protection and limit switches) as well as software (firmware) limits in place to prevent anything in gcode to be able to cause harm to printer and/or user.
2. Any 3rd party modification/accessory - IF it does damage printer and/or user, the manufacturer of that modification/accessory is liable.
3. ANY communications where the “accessory” (or slicer) need to communicate with printer, where both are on the same network, it is inherently more secure when that communication happens within the same network. And there should be no reason to limit that communication while allowing printer to operate in “cloud” mode.

As for final note: While I hate “creditentialism”, there’s a reason to seek out a person with experience in the relevant field, regarding opinions on problematic stuff one doesn’t fully grasp, but you also need to know who to seek out. Gabe’s experience is in 3D printing. Not 3D printers, not consumer 3d printinters, not consumer 3d printer firmware & software and definitely not in network communications security. And regarding that last one bambu admited they are not the experts too and that’s the crux of the issue.

I’m gonna repeat myself a lot on that but: Bambu should’ve hired a cloud security expert(s) to fix their stated security problems. The result would be fixed security problems at a far lower costs with no community blowback and loss of interoperability.

if you’re referring to this one

then, after watching him speak, I’m left with the general impression that he’s speaking without having really done his homework properly, and the video was made because the “Bambu drama hype” was an opportunity for him to say something…(supposedly) intelligent. However, he is more into unsupported speculations than facts, and from that he goes overboard with some of his statements.
As for his claims on Bambu’s firmware “security” measures being justified, everyone knows by now that it took less than 24 hours to crack the Bambu Connect wide open and demonstrate that its (so called) encryption was a banal obfuscation, not really securing anything. But then again, all this drama it’s not just about security. But this has already been discussed extensively on the forum, and I’m not going to restart it. Anyway, now everyone is (more or less) informed, so one can decide what one wants to do about it. I don’t consider myself a nerd or a hard core 3d printing guy, as I’m not printing to make money (actually, I’m spending money without any other profit but the objects i print either for myself or for my family and friends). That being said, he made a couple of good points, but he got lost in justifications and speculations… He’s entitled to his opinions… so do you, and so do I. I’ll stick to mine.

Please look into this. Each person you reference gets notified, you do not need to individually reply to people.

They will lose their biggest tech savvy supporters, who will go to a different platform and help make that one special.

They will keep those who do not care, do not understand or no not know. That is a market, a big one, at least in the future.

However much they have made 3D printers an appliance, you are a great example of someone who has yet to consider a 3D printer as easy to operate as the goal, the tv or microwave. Because, whilst close, it isn’t there yet.

The tech savvy people know how to handle things that go wrong and that is where we still are.

Most people don’t need a forum for a microwave or a tv, until 3D printers do what is expected every time without a single failure, companies need the expertise, help and money from the earliest knowledgeable adopters.

They are about to release their new flagship printer, the largest group to purchase this will be the experienced tech savvy users, the ones who are most concerned by the tactics and antics of their poorly implemented, non-standard design and floored security implementation that has leaked its private keys multiple times already.

All to solve a problem of their own making and screwing over the users in the process.

Slant3D’s take is akin to all those kissing Trumps ring, they fear upsetting those who could cause them harm.

You are being extremely rude to those you seek help from whilst showing your ignorance of the bigger picture.

I assume an apology will be forthcoming.

That trivializes the issue. You apparently don’t use the lan feature or aftermarket displays or utilities. Other people do and it’s integral to their business and/or workflow.

These printers were sold with certain capabilities that some people use and then Bambu was going to make their printers inoperable in their configurations.

That’s the crux of it. This time it was features you don’t use. Maybe next time it’s features you do.

It’s not about nerds and their toys. It’s about features and capabilities that some actually use and need that were part of the original as-sold configuration and were going to be taken away.

What as sold feature did they do away with?

Read the forum and you’ll find out.

Let me unchain your example from “CYA” and focus on “do the same thing”. I’ll try to explain this using a house plumbing analogy. It’s not great and detailed 1:1 analogy, but analogy none the less…

Imagine you’re a landlord who owns an apartment building. When your tenants first moved in, you promised them fully functional apartments where they could use all their usual appliances—dishwashers, washing machines, fancy showerheads—no problem. In fact, some tenants even went out and bought top-of-the-line dishwashers and washing machines specifically for their new apartments.

One day, you notice a few small leaks in the plumbing system. They aren’t major yet, but they’re concerning. Instead of hiring a professional plumber to handle it properly, you decide to fix things yourself—even though plumbing isn’t really your area of expertise.

You don’t replace the pipes, but you get nervous about the connections, so you swap out all the faucets and outlets in the apartments with custom fixtures you designed yourself. These fixtures aren’t compatible with standard hoses or appliances anymore. Then, to deal with complaints, you hastily build a badly designed, leaky adapter that only works for the most basic need—a showerhead. This lets tenants take a shower, but that’s about it.

Here’s where things really go wrong:

• Tenants with dishwashers and washing machines suddenly find they can’t use them at all because the custom fixtures and leaky adapter won’t work with their appliances.
• Some tenants paid for really good dishwashers and washing machines, thinking they’d work fine, but now those expensive appliances are useless.
• And to top it off, the leaky adapters don’t inspire much confidence—tenants are worried that they might break or cause water damage over time.

The result? The tenants are furious. They rented the apartments based on the promise that they’d be able to use all their appliances, and now they feel cheated. They’re stuck with an apartment that doesn’t function like it should, and their expensive appliances are now glorified paperweights. Worse, no plumber can come in to easily fix or adapt the system, because the landlord has created a one-of-a-kind mess.

Also, to Slant’s say in that…

One of your neighbors down the street—who’s not a plumber either, but maybe runs a hardware store or has some experience fixing their own house—hears about what you’re doing. They speak up and say, “Well, I don’t think the landlord is wrong. At least they’re trying to prevent leaks, and security is important!”

This neighbor isn’t deliberately trying to mislead anyone, but here’s the catch:

1. They don’t really understand the details of plumbing or how dangerous poorly designed fixes can be.
2. They completely ignore the fact that your “fixes” don’t address the leaks properly and have created new problems.
3. Their statement makes it sound like your approach is acceptable, even though it’s causing harm to your tenants.

Hopefully this analogy is good enough and covers the problem…

And yet, you suggest those sufficently qualified are making too much out of it.

You dismissed an entire group, it isn’t the name you called people it is your dismissive and rude approach.

If you are using the cloud service, it’s using the cloud over your lan. The data has to get from your computer to the printer regardless of if you are using the Bambu cloud. We all have that in common. Those using the Bambu cloud have an additional destination in there where data leaves your home network/lan and goes to their servers before coming back into your home network to then travel to your printer. There’s also the authorization traffic, etc.

Those not using the Bambu cloud should ideally have all their data remain on their home/work network/lan without the trip into the cloud minus whatever optional data they care to allow out if any. Most don’t care that their designs get handed to Bambu’s servers but some do. Some prints may be confidential, bound by nondisclosure agreements, or not legally able to be handed to a foreign company.

Bill let’s roll with that analogy. So the team has had two record breaking seasons back to back. A couple of the players made plays that ended up on every highlight reel that ESPN cranked out. Now they’re in the Superbowl and the people you see posting here have a lot of money riding on the game, like a LOT of money. For the last two years they’ve bought jerseys, bobble heads and one night after a few too many drinks they got the team logo tattooed on their forearm.

Now we’re in the 4th quarter and you see a couple of fumbles that if you didn’t know better you would swear were intentional. You see the coach acting shady and making calls that just don’t make sense to you.

Now you’ve spent a fortune on the tickets, you’re going to owe a few months pay to a guy who’s name ends in “the axe” and you’re standing there like a fool, with half your body painted Bambu Green and the other half white.

Darn it Bill, I swore I wasn’t going to get pulled in to all this.