Originally posted by Luke_Wolf
View Post
Announcement
Collapse
No announcement yet.
Coreboot Developer: Purism Doesn't Deliver On Libre Firmware
Collapse
X
-
Originally posted by Luke_Wolf View PostOh I dunno... maybe a higher end laptop with desktop linux as opposed to ChromeOS by default + coreboot.
A freetard and his money are soon parted, I guess.
I should really get into this business, start reselling 10 year old thinkpads for $500 because they're "free"*Last edited by peppercats; 26 February 2015, 11:09 PM.
Comment
-
Originally posted by peppercats View Posta librem 15 with an HD screen and an SSD costs $2500.
A freetard and his money are soon parted, I guess.
I should really get into this business, start reselling 10 year old thinkpads for $500 because they're "free"*
Comment
-
B: They're well written and not hiding bugs and security problems
The fundamental issue of firmware is that it is probably the software in your computer that can most easily completely abscond your privacy and ownership of the device all on its own. All ti takes is one firmware blob with kernel mode execution permissions to execute obfuscated instructions and magical operands on the chipset that cause it to behave errantly to your wishes, but you have no way to tell it does it, or what it even does, because all those aspects of the hardware are closed and proprietary.
And the worst part is, when you try to identify if and when these rogue blobs act against your wishes, you are almost certainly using another computer running its own blobs to do it. IE, when you use your router to monitor network traffic to try to identify if your motherboard is radioing home all the private keys generated by the hardware encryption ciphers, and you do not have both free firmware and free network drivers on top of a free kernel using free monitoring tools outputting to a free IO implementation (beep codes are probably the easiest to implement yourself in hardware, since every monitor has proprietary firmware) to even have a chance of accurately finding these exploits and backdoors.
It is a kind of irony that probably the most important software for personal computing freedom is the least free with the least choice, because while we are rapidly seeing the adoption of higher level free software across operating system level functionality, there is literally no way unless you are a billionaire to end up with free hard drive firmware, or freedom respecting discrete graphics cards, or standard motherboard packages with no blobs socketed with fully documented open processors.
Comment
-
Originally posted by Luke_Wolf View PostMeh, the thing is, people going "Well what does this offer that GluGlug and Google don't?" are being idiots, even if it's not something I'd ever buy, it's a good thing to have more Coreboot devices on the market, and turning your nose up just because it isn't pure enough for you when NEWSFLASH they're doing the best they can given they're working with Intel x86 hardware is disingenuous.
Comment
-
Originally posted by BradN View PostB: They're well written and not hiding bugs and security problems
I'd expect security issues (if any) to exist in the ME firmware. Since it's unclear what those 1.5MB in the small version bring, it might already contain a network stack or an OpenSSL library that may or may not be up-to-date that are definitely part of the 5MB version.
Originally posted by BradN View PostC: Nothing major (feature wise) could be gained by an open rewrite
It feels weird to advertise size as a major feature, but it _really_ is for us.
Comment
-
Originally posted by Luke_Wolf View PostMeh, the thing is, people going "Well what does this offer that GluGlug and Google don't?" are being idiots, even if it's not something I'd ever buy, it's a good thing to have more Coreboot devices on the market, and turning your nose up just because it isn't pure enough for you when NEWSFLASH they're doing the best they can given they're working with Intel x86 hardware is disingenuous.
A campaign "as free as Chromebooks, but more powerful and with the pristine Linux desktop experience" might have worked - or it might not. But that isn't the ticket they're riding on.
Comment
-
Originally posted by peppercats View Posta librem 15 with an HD screen and an SSD costs $2500.
A freetard and his money are soon parted, I guess.
I should really get into this business, start reselling 10 year old thinkpads for $500 because they're "free"*
Comment
-
Originally posted by andyprough View PostHere's info on the Chromebook binary blobs from John Lewis's website: "No, in the case of Intel chipsets, there are at least 2 binaries blobs required ? the system agent and management engine binaries. Without the first, the system will not boot at all. Without the second your Chromebook will auto switch-off after 30 mins. The vast majority of coreboot compatible Intel hardware also requires a VGA blob."
Their own page on the firmware situation (https://puri.sm/posts/bios-freedom-status/) states: "But we still can?t see a way to disable the ME, there are people working on it but it?s a very very difficult problem to reverse engineer, because it uses RSA-2048 to secure it.". They also state "Fuse CPU to allow unsigned BIOS binaries [DONE!]" on the same page, which I suppose (given the complexity around the ME) means that they disabled Intel Boot Guard.
Good on them, but I think a statement like "While the BIOS is not yet free, the Librem 15 will be the first laptop ever manufactured to ship a modern Intel CPU fused to run unsigned BIOS code, allowing for a future where free software can replace the proprietary, digitally signed BIOS binaries" (https://www.crowdsupply.com/purism/librem-laptop) is again one of their misleading statements: the Dell Chromebook 11 also contains a Core i4 processor (and so would be Intel Boot Guard capable) - is that not "fused to run unsigned BIOS code"?
Comment
-
Originally posted by peppercats View Posta librem 15 with an HD screen and an SSD costs $2500.
A freetard and his money are soon parted, I guess.
I should really get into this business, start reselling 10 year old thinkpads for $500 because they're "free"*
IBM Thinkpads (not Lenovo) were nothing short of great workhorses of a type you dont find these days without forking out thousands in a multiple. I worked with them daily, and was amazed at just how long they lasted running on 512MB of RAM with 5400RPM drives when basic software requirements were a full-blown desktop PC. Normally this would kill a laptop off in about 6-18 months. We had some 'technicians' drop all manner of IBM gear, but because of their build quality, could simply pick them up, dust them off, and shrug and move on. The fact they are quite possibly also the most open hardware still available? Well, why wouldn't you pay shit tonnes of cash for units like these? I know I miss the X-series for all manner of reasons.Hi
Comment
Comment