> Apple can not update their EULA for Apple pay, and avoid being held negligent if they messed up and all their customers money was stolen from their accounts. Otherwise every single EULA would make all software companies legally untouchable - which they aren't.
This is very different, Apple are responsible not because they are providing you the software but because they are providing a service and that service involves transmission of funds and that scopes them to a completely different set of obligations. If I provide you with an open-source bitcoin-wallet under an MIT license and do not make claims of security or guarantees of any kind and you lose bitcoins due to security issues in said software - it's your own problem. That is in the former and later-case there is a clearly identifiable party which is providing the service, or in the later-case self-service.
With Ethereum it's much more of a gray-area, one could argue slock.it is only providing source-code and your choice to use it in a particular way (interacting with other users, the DAO) is done entirely at your own risk; though I'm not sure that interpretation would stand, since there definitely is a degree of centralized marketing by particular participants - and obviously non-compliance with SEC rules etc.
I was just using an example to refute the claim that it's possible to indemnify software creators and users against 'any consequences' via a EULA. A EULA can not indemnify you against tort.
I think your example is convoluted. Free open source software has no contract. For a contract to be legally binding it must have consideration (exchange of goods / services / promises). This is not met.
EULAs and 'Software licences' (like MIT) are't the same thing. A EULA is a legal contract between the copyright holder and the end user, containing consideration, to which the user must agree. An open source licence such as MIT is just a declaration of permissions of use, and has no consideration.
So above it seems to me you are comparing having 'no contract' to 'a contract'.
But the DAO definitively has a contract, not a licence agreement.
Now, the DAO contract basically says 'no one can be held responsible for anything' - which in my opinion is a legal fantasy, contracts can not supersede the law. Regardless of the technological hoops in between, there are real people, with a binding contract - thus there can be tort.
I do accept when ever something new comes along and case law hasn't yet settled any technical loop holes there will always be debate, but I do think this looks pretty clean cut.
But who's the responsible party? If the developers did their due diligence and everything that could be expected of them, who other than the thief could be sued?
And under what circumstances can you even declare that person to actually be a thief in the sense of the law? Everybody's assumed to have studied the thing they're paying for - whose perception of what the system allows and is meant to do goes, legally?
That of the person with the best understanding of the code (would mean the thief can't be legally wrong), or of the majority (would mean that highly technical niche contracts could be completely derailed legally by "noobs" flooding the market), or case-by-case?
Setting the standard as "what the code appears to do when reviewed by average developers" would be very legally unpredictable. It would also illegalize a lot of useful and beneficial benign "hacks".
Well how things would go if they went to court I have no idea. That's anyones guess really. But that's a different tangent.
All the questions you're asking are, essentially, what would be argued on.
But my point was that none of the involved parties can just indemnify themselves against any consequences. With sums of money like that, any of those parties could well be sued, and end up in court. You can't EULA yourself out of that.
This is very different, Apple are responsible not because they are providing you the software but because they are providing a service and that service involves transmission of funds and that scopes them to a completely different set of obligations. If I provide you with an open-source bitcoin-wallet under an MIT license and do not make claims of security or guarantees of any kind and you lose bitcoins due to security issues in said software - it's your own problem. That is in the former and later-case there is a clearly identifiable party which is providing the service, or in the later-case self-service.
With Ethereum it's much more of a gray-area, one could argue slock.it is only providing source-code and your choice to use it in a particular way (interacting with other users, the DAO) is done entirely at your own risk; though I'm not sure that interpretation would stand, since there definitely is a degree of centralized marketing by particular participants - and obviously non-compliance with SEC rules etc.