And here's where many of us here, including me, differ from Apple:
"We agree with Apple that security is at the heart of all data privacy and privacy rights. Where we disagree is in who holds the keys. Your data isn’t truly private or secure, if someone else holds the keys."
@alcinnz I really wish the Chromebook's firmware write disabling screw was on more devices 😑. (but ChromeOS sucks. I run a real OS on mine)
yes, it means evil maid attacks are possible, but I want to rewrite my bootloaders if I want to, dammit!
@ddipaola That screw sounds like a good idea. So you screw it in and it'll block your BIOS settings changing until you unscrew it?
@alcinnz yep! the screw is in by default and bridges two pads on the PCB that forces the write pin of the SPI flash ROM (containing the firmware) to "off". when the user wants to enable firmware writes, remove the screw, then put it back in to guarantee that even malware with root access can't flash the chip!
@alcinnz citation on the write-protect screw: https://libreboot.org/docs/install/c201.html#removing-the-write-protect-screw
FLOSS.social was launched on 1 April 2018 as a Mastodon instance for people who care about, support, or build Free, Libre, and Open Source Software (FLOSS). Of course, discussions aren't limited to just FLOSS -- let's share our unique interests! English is preferred for maximum conversation opportunities within the FLOSS community, but it is not required. Respect is required, however: Users on FLOSS.social agree to abide by the Contributor Covenant Code of Conduct. This service was installed and is maintained in part by Masto.Host with equipment located at OVH. You can support this instance financially through the Monthly Supporter Program, processed through CommitChange using the free software Houdini Project.