And then they only deliver up to 720p because your device hasn't been blessed by capitalism
exu
joined 2 years ago
From the first post in this chain
That said, I've always just enrolled my own keys. I know some other distros that make you enroll their keys as well like Bazzite. At least that way you don't depend on Microsoft's keys and shim or anything, clean proper secure boot straight into UKI.
I didn't start talking about it, this was many comments above
Yep, you need a pin for your TPM to be safe. Here's a proof of concept of someone unlocking Linux systems without TPM pin.
https://oddlama.org/blog/bypassing-disk-encryption-with-tpm2-unlock/
TPM + Pin with Secure Boot is still unbroken AFAIK
I don't think you understand what "enrolling your own keys" means in the context of Secure Boot.
The key affected here is specifically for the Linux shim signed by Microsoft. It is used by GRUB and some distros to work with Secure Boot.
Enrolling your own key means you add a new certificate to the key store. This is completely separate from the one provided by Microsoft and controlled only by you. The common recommendation is to remove all built-in keys and only add your own, to make this system as secure as possible.
I'd wait a bit more. As the article says, Canonical recently also upped the RISC-V requirements for their 26.04 LTS and this SBC doesn't meet those.
I agree that having more degrees of usage would be useful, but erring on the side of caution and declaring any AI use as a first step is better than doing nothing.
That was the term, thanks
Note sure what they're called, but plenty of houses here have metal blinds on the outside that work perfectly for blocking the sun.
Blame Apple for that, as for the longest time they only allowed using the Safari engine on iOS. Apparently that's still the case outside the EU now, meaning Mozilla would need to maintain two versions on iOS.
On any other operating system, Firefox is by far the best at blocking ads with uBlock Origin.
As they note in the article, this is a temporary measure, I.E. guaranteed to break soon.
Start switching to Firefox now so you're done when they finally turn it of. Ignore any other Chromium based browsers, it's unlikely they have the manpower to extend MV2 beyond what Google supports with their LTS releases.
Thing is, there are two different types of 5G. 5G NSA is using 5G, but on the same 4G network resulting in little to no speed change. And then there's 5G SA, the one you actually want but probably isn't deployed anywhere outside major cities if that.