More

pabs3 · 2026-03-07T07:10:12 1772867412

A service can never provide digital sovereignty, by definition.

pabs3 · 2026-03-07T07:00:01 1772866801

Which x86 devices ship with a free UEFI/ACPI? Or even allow users to replace the preinstalled UEFI/ACPI with a free one?

yjftsjthsd-h · 2026-03-07T08:49:57 1772873397

> Which x86 devices ship with a free UEFI/ACPI?

https://doc.coreboot.org/distributions.html seems to say Purism, Star Labs, and System76

(Edit: actually weirdly enough Librem seems to be using a different coreboot payload instead of edk2, but the other 2 stand)

> Or even allow users to replace the preinstalled UEFI/ACPI with a free one?

So many Chromebooks: https://docs.mrchromebox.tech/docs/supported-devices.html

mjg59 · 2026-03-07T07:21:17 1772868077

I've a bunch of devices running coreboot with a Tianocore payload, but they're largely either very weird and now unavailable or I haven't upstreamed them so it's not super helpful, but it's absolutely not impossible and you can certainly buy Librebooted devices

pabs3 · 2026-03-07T06:17:36 1772864256

Telemetry should be a choice at startup, not on by default or off by default.

pabs3 · 2026-03-07T04:25:52 1772857552

Would be nice if it could clean-room replace proprietary software too. Would require automating the procedure this person did:

https://reorchestrate.com/posts/your-binary-is-no-longer-saf... https://reorchestrate.com/posts/your-binary-is-no-longer-saf...

Nolski · 2026-03-07T08:41:24 1772872884

I do like this idea, more difficult to do without access to the original source code, and I think that this would be more "reverse engineering" rather than cleanrooming, as you don't have the same concerns about copyright violation if you're working from a binary.

pabs3 · 2026-03-07T04:20:08 1772857208

https://fosdem.org/2026/schedule/event/SUVS7G-lets_end_open_...

pabs3 · 2026-03-07T04:19:32 1772857172

Satire indeed:

https://fosdem.org/2026/schedule/event/SUVS7G-lets_end_open_...

pabs3 · 2026-03-07T04:19:01 1772857141

MALUS is a joke:

https://fosdem.org/2026/schedule/event/SUVS7G-lets_end_open_...

pabs3 · 2026-03-07T03:48:37 1772855317

Running it on a dumpsterd PC with a 2013 Intel CPU. Works fine.

pabs3 · 2026-03-06T11:57:52 1772798272

According to Conservancy; Tivo didn't do "Tivoization", the GPLv3 doesn't prevent what Tivo actually did, and both GPLv2/GPLv3 prevent "Tivoization".

https://sfconservancy.org/blog/2021/mar/25/install-gplv2/ https://sfconservancy.org/blog/2021/jul/23/tivoization-and-t... https://events19.linuxfoundation.org/wp-content/uploads/2017...

pabs3 · 2026-03-06T11:45:44 1772797544

... and usually deployed in a user-hostile manner.

UltraSane · 2026-03-06T15:54:45 1772812485

Any evidence of this? Computer security was a complete disaster before hardware roots of trust became standard.

NewJazz · 2026-03-06T21:46:56 1772833616

Both things can be true.

UltraSane · 2026-03-07T00:52:51 1772844771

The knee-jerk hysterical reaction to any talk of hardware roots of trust on Hacker News is getting tiresome and I expect better given the reputation of the site. It actually reminds me of old slashdot.

pabs3 · 2026-03-07T03:12:22 1772853142

The software running on such devices is usually proprietary and never installed by the user. That is user-hostile.