this post was submitted on 14 Jan 2025
412 points (100.0% liked)

Technology

67050 readers
6556 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
412
Right to Root Access (medhir.com)
submitted 2 months ago by [email protected] to c/[email protected]
37 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 2 months ago (9 children)

The purpose of a locked boot system is privacy. A MacBook is a less secure device, and one that's been rooted and had linux installed is basically open season for any attacker. An iPad trades off the ability to put some other OS, for fairly close to total security. State-level enemies can torture you or run expensive intrusion software… and Apple improves the defenses against the latter every time. Now it reboots if it hasn't been used in a while, say sitting in an evidence locker.

Boot loader aside, you can write code on an iPad.

There are plenty of code editors, interpreters, and several of them have compilers. The premiere one is Pythonista, but I'm also fond of LispPad (R7RS Scheme). There are a few "linux in a box" things like ish, which give a full shell in a sandbox where it's safe.

I wasn't able to find any pico or nano apps, but there are several Vims and emacsen.

[–] [email protected] 6 points 2 months ago (1 children)

The purpose of a locked boot system is privacy.

No. Once you strip away all the rhetoric, the purpose of a locked boot system is control (over who or what can boot the system).

Current secure boot implementations are like a door lock installed by someone else, which you are not allowed to replace and that may or may not allow you to cut your own duplicate keys for it. You have no control whatsoever over who the people who installed the lock may have given keys to, and if it turns out that the lock has a fundamental design flaw that means it can't do its job properly, well, sucks to be you. You can't even guarantee that the lock won't morph into a new shape randomly or under the control of the installer, invalidating your existing keys in the process.

Rooting a device is a tradeoff. An unreliable door lock that you don't entirely control may be better than none, but if you know you're leaving the door unlocked, you also know you need to take other precautions to safeguard what's inside (or simply not leave anything of value there in the first place).

The ideal would be a locked boot system that is installed by the user and is fully under their control, but I have yet to encounter one.

[–] [email protected] 2 points 2 months ago

The ideal would be a locked boot system that is installed by the user and is fully under their control, but I have yet to encounter one.

https://libreboot.org/docs/linux/grub_hardening.html

load more comments (7 replies)