Afaiu the issue with cmf+eos is the phone is shipped as unlocked (ie. no integrity verification at boot)
I'm reading some claims that it's only bad in case of threats with physical access, but I'm not convinced: isn't it what rootkit are about?
Also, I'm not sure how the locking process works - if it uses a hardware key for signing, I guess it involves the manufacturer to sign the installed OS? So it's not something I could do by myself?
=> More informations about this toot | View the thread | More toots from jotak@framapiaf.org
text/geminiThis content has been proxied by September (3851b).