OpenWrt One / project update
David Lang
david at lang.hm
Mon Apr 29 17:34:29 PDT 2024
On Mon, 29 Apr 2024, Michael Richardson wrote:
> {sorry for the long delay, been unwell}
>
> Bjørn Mork <bjorn at mork.no> wrote:
> > Maybe it is possible to deploy the system with secure boot and a
> > protected IDevId key by default, but allowing the user/owner to erase
> > the key and disable secure boot? This way all use cases could be
> > supported, including playing with the BL2 code etc.
>
> It won't work that way. If someone can easily turn off secure boot, then so can malware.
> I hope we can go the other way.
can you do a hardware lock (jumper, washer under a mounting screw, etc)?
David Lang
-------------- next part --------------
_______________________________________________
openwrt-devel mailing list
openwrt-devel at lists.openwrt.org
https://lists.openwrt.org/mailman/listinfo/openwrt-devel
More information about the openwrt-devel
mailing list