from Hacker News

Making Go telemetry opt-in is a mistake

by m90 on 2/26/23, 11:00 AM with 86 comments

  • by yalue on 2/26/23, 1:50 PM

    Here's an idea for how to maintain Go moving forward: keep making the damn tool however you want. The thing never would have existed in the first place if they had started with an industry survey. It was created to address a perceived need, by the people with the need, for themselves. This model is perfectly fine moving forward. Some industrial user wants a new Go feature or bugfix? Great. If it's enough of a problem, they can fix it and upstream a patch. That's how open source software is always supposed to work. Telemetry does nothing to improve this situation. If the Go team at google no longer has any ideas for what to work on (as must be the case if they're wasting their time on dumb crap like forced google spyware in a compiler) then they should just stop. Maybe focus on accepting PRs from people with ideas and strong enough motivation to work on them. I mean, there are 5000+ issues and 330 open PRs on the go github right now, so that should be plenty to keep them occupied. On top of that, how can literal thousands of issues not be a strong enough source of actionable usage information that they saw fit to try to get more? Do they plan on wrapping up all the open issues before looking at telemetry?

  • by greatgib on 2/26/23, 2:03 PM

    I think that the author has kind of a Stockholm syndrome.

    "Users are liars, so let's spy them directly to know what we want to know".

    It is mind blowing how, as an user/the target, you can support that.

    Nothing is really anonymous and your anonymous data can say a lot about you.

    Telemetry coming from this IP, so company x is using go. A pattern of data coming every 2 days, so their build nodes rebuild every 2 days. That kind of build pattern is there, so they are using the xxx crypto library...

    And when they say, let's trust Google, I would propose to Google to accept the opposite:

    Now they will transmit to the public telemetry of their internal systems: how many users, what do they do, how many users they block, for what reason, how many build nodes they have, how many commits, how long the go team is spending looking at telemetry reports, which website are the more visited by Google employees,...

    And let's see if they will accept. It's for the good of the world, why they would refuse?

  • by iforgotpassword on 2/26/23, 12:46 PM

    > For every kilobyte of Go code available on GitHub, GitLab, and other Git forges, there are unknowable megabytes of private Go code that will never see the light of day (or maybe they will if LAPSUS$ decides to make that company a target).

    > Without knowing what ports of Go are used, the Go team can’t make sure that the right time is spent on maintaining those ports.

    Am I being overly pragmatic if not selfish for thinking this is absolutely fine? If you use a free tool behind closed doors to make money and don't want to opt-in to telemetry, then I couldn't care less if the go team doesn't make go work better for your use case. Meanwhile I'm developing my open source project with telemetry turned on, ?????, PROFIT.

  • by groestl on 2/26/23, 1:45 PM

    > The problem of scrying into the unknowable

    People really need to accept that they can't and shouldn't have full introspection into everything they're ever interested in. Even if it's a thing they care about (like their own homepage or programming language). Sure it's nice to get feedback. Sure it's nice to know that somebody uses it. But putting a tracker on everything with the argument of "will help me provide a better service", forgoing informed consent.. It's wrong when it's done on an institutional level, whether it's companies or the goverment, and it's wrong when individuals do that.

  • by spicyusername on 2/26/23, 1:40 PM

        > Unfortunately, the proposal came from a Google employee. Google has a reputation of taking user data and feeding it into piles of linear algebra in order to skew its search results to match your existing biases or whatever the hell else people do with linear algebra.
    Right. We live in an age now where gigantic, powerful, organizations are ruining everything to privilege a fantastically small few. They have consistently shown a complete lack of any moral compass and a willingness to do absolutely anything necessary to increase their power or continue to enrich themselves.

    If we lived in any other age, people might tolerate this, but we don't, and therefore everyone is well within their right to mutiny, regardless of how interesting a technical solution this is.

  • by pjc50 on 2/26/23, 1:43 PM

    Reminded of a post I saw the other day referencing Clausewitz to say "if your ideal military strategy is politically unachievable, it's not the ideal strategy". If going for opt-out telemetry makes your customers hate you and you're forced to retreat under a hail of fire, going opt-in is not a mistake.

    There's also a philosophical problem in going too deep into "customers don't know what they want" and A/B testing everything to death: you end up using it as a substitute for dialogue. Ultimately customers are making conscious decisions. You have to make the case rather than assert that it's "better" from behind your metrics dashboard.

  • by speedgoose on 2/26/23, 1:49 PM

    Respecting the users wishes isn’t a mistake. For sure it may have a few digits less of accuracy in some dashboards but who cares.

    The consensus was that opt-in was the best solution, and thankfully Google went with the best solution.

  • by zajio1am on 2/26/23, 1:52 PM

    > Unfortunately, the proposal came from a Google employee

    Not really. People hate opt-out telemetry regardless of who runs it.

  • by unxdfa on 2/26/23, 2:00 PM

    Good job Russ Cox. Despite initial concerns around this the right decision was made. Opt in is the morally correct choice for any software community. Notably I will opt into this where it is appropriate.

  • by tacker2000 on 2/26/23, 2:52 PM

    To be honest, the fact that Google is behind Go, is whats holding me back from getting into it. Same with React and FB. I dont really have any sympathy points left for them.

  • by hedora on 2/26/23, 3:39 PM

    > Developers using macOS are used to just installing Xcode to make the error messages go away, so they just installed Xcode and assumed it was normal behavior.

    So, they don’t test go in CI on clean Mac OS installs? If this sort of issue is the rationale for the telemetry system, it sounds like they’re trying for a older, slightly-less-evil Microsoft approach where you fire QA, and just treat user machines as your test environment.

  • by StreetChief on 2/26/23, 2:37 PM

    Google: "we don't want to talk to people, or hear their opinions, so we'll add telemetry to make decisions we want without including anyone else!" Also Google: removed "do no evil" so they could... Do evil... Without sounding like hypocrites.

  • by waweic on 2/26/23, 2:39 PM

    Mozilla shows time and time again that decisions based on opt-out telemetry are worse than decisions taken without telemetry at all.

    "Telemetry shows people aren't using this (privacy / internet freedom related) feature, so we can just remove it"

  • by Scubabear68 on 2/26/23, 3:11 PM

    There are vast amounts of Go code available in the wild to study. Open source is a thing.

    If the Go team wants to see what features are used, go audit open source Go code.

    Since Go is also a Google thing, they could likely audit the presumably large sums of Google Go.

    Yes, you will miss unknowable amounts of code this way. Who cares?

  • by patchymcnoodles on 2/27/23, 7:45 AM

    If they want to add telemetry without asking the user, then they have to fix an entire industry including Google itself. They trained the people to hard disagree with such approaches, because in the past there was way too many incidents where data was unnecessary collected and misused.

    Just trying to add this telemetry with opt-out in the first place shown one thing: They don't know their audience. Because if they would, if someone would have come up with that idea, everybody in the team should have screamed: "No, hell no!". You don't have the trust of your users.

    I get it, getting trust back is much more effort than collecting more data (even if it's with good intent). But hey, the industry put itself into this.

  • by aatd86 on 2/26/23, 1:40 PM

    They should simply allow for people to pick their default at installation. (so at download)

    Even better if the go tool were to have a `go update` with a `telemetry-off` flag or something. (and possibly a prompt to remind people otherwise they will complain again)

    Problem solved.

  • by kardianos on 2/26/23, 2:12 PM

    Yes, the data won't be as good. But it will still be able to catch issues like that motivated this in the first place.

    Knowing the goal allowed rsc to make this judgement.

  • by zaphar on 2/26/23, 2:32 PM

    Honestly, I think they should go with opt-in and make it clear to the community that the public dataset will be the sole source of decision making for future deprecations. If you want your favorite pet feature still enabled and no one using it is sending them telemetry then too bad.

  • by fortyseven on 2/26/23, 2:20 PM

    As someone who was considering getting some Go and Rust under his belt, they've saved me a lot of time. This whole telemetry nonsense has ensured I won't waste my time investing it in Go. Great job.

  • by anon23432343 on 2/26/23, 2:58 PM

    For me every kind of telemetry, data harvesting and so on should be opt-in.

  • by croes on 2/26/23, 4:59 PM

    Consent is always opt-in

  • by Patrickmi on 2/26/23, 6:02 PM

    All these situations I blame Google not Go, sometimes people are ignorant when to differentiate Google corporation itself and the Go team