a link like
is already unique, b/c nokia generates it individually for each device. it allows nokia to track your upgrades/installations frome their repository already -- meaning, there's no need for an sms to check if people upgrade to pr1.2 (and i don't think My Nokia was created for only that purpose).

since all inet access on the n900 is done through the system, there's no reason, why nokia should not hook in somewhere between your request and the network interfaces, doing some black magic with your request (would be interesting to see, what a network sniffer makes of the url).

after all
- nokia individualizes apt-lines to track your activity in their repository (since you can access those repos via web interface after accepting the tos, "password protection" is no explantion and unneccesary) [edit: username and password seem to be the very same for all devices, not individual. see below.]
- nokia sends sms w/o informing you what information is send, very often w/o even asking you and subscribes you to a service you have no information of
- the eula or terms of service are invalid since they need to be available _before_ you are installing something (that's why the ms windows eula is invalid, at least in germany, since it only pops up while installing, "unexpectedly" as the law calls it), they need to be easily read (not a small window with much scrolling), they need to be there at once, no "check this link for full version" allowed