On Mon, 2 Mar 2026 10:56:09 -0800 Jamie Null via devel <[email protected]> wrote:
> On 2026-03-02 10:10, Barry wrote: > > > > > >> On 1 Mar 2026, at 20:00, Aaron Rainbolt <[email protected]> > >> wrote: > >> > >> <method name='GetAgeBracket'> > > > > This assumes that all age verification laws use the same age > > brackets. Do you know all law makers are agreed on the brackets? > > Does this info need to be combined with geo info to decide on what > > is reported? > > > > Barry > > > > > > > > With an overwhelming addiction of age verification laws by > legislatures, anything that we do here must be flexible and adaptable > to various jurisdictions so the spec will not have to be updated > every time a legislature decide to require some creative > implementation. > > Furthermore, in some jurisdictions, requiring users to provide an age > to access an operating system and sharing that age to installed > software could run afoul of their local privacy laws, so it mustn't > be required if the user resides in a jurisdiction without a similar > law. > > Geo info could be difficult to acquire reliably. Off the top of my > head I can think of three methods: GeoIP, tzdata, and straight up > asking what jurisdiction the user lives in. > > They each come with their own issues. If the Project used GeoIP, it > would require significantly impairing the usage of offline installs. > If we used tzdata, it could cause incorrect determinations, (e.g. the > Saskatchewan part of Lloydminster, which uses MST (Alberta's primary > TZ) instead of CST (Saskatchewan’s timezone), and does not have it's > own tzdata entry). If we ask, users can claim that they are in a > jurisdiction that they are not in. The law states that OS providers that "[make] a good faith effort to comply with [the] title ... shall not be liable for an erroneous signal indicating a user's age range...". AFAICT this sounds like "if the user punches in wrong data so that the API returns wrong data, it's not the OS provider's fault." Asking the user where they are is no more vulnerable to lying than asking them what their age is. -- Aaron > There's no good solution here. > > -- Jamie
pgp6WqlygYgu_.pgp
Description: OpenPGP digital signature
-- _______________________________________________ devel mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
