> * "bUt yOu DoNt hAVe tO uSE it" - tell that to the remote attestation crowd, of which Poettering is a founding member of. see https://news.ycombinator.com/item?id=46784572 - soon you'll have to use systemD because nothing else can be used.
You're saying that because the person who made systemd now work on hardware attestation, all Linux distributions will eventually require remote hardware attestation, where users don't actually have the keys?
Maybe I'm naive, maybe I trust my distribution too much (Arch btw), but I don't see that happening. Probably Ubuntu and some other more commercial OSes might, but we'll still have choices in what OS/distribution to use, so just "vote with your partitions" or whatever.
If you build remote attestation into your product, corporate entities will require it. Just look at Android - What phones today give you unlimited root? If you have rooted, what applications have you broken? If you root, what e-fuses have you blown in your CPU meaning it can never be un-rooted? Android, at the start, was open and freely modified - not so much anymore. Companies like Google can and have cut off access to user's data, without recourse. You can't modify your phone, so you don't own your phone. You just pay rent until they don't support it anymore.
I think phones are a completely different beast though (and already a lost cause), PCs seems a lot more resilient to that sort of lock down.
But on the other hand, you might be right, you never know how the future looks. But personally I'll wait until there is at least some signal that it's moving in that direction, before I start prepping for it to actually happening.
* Literally every game console
* Literally every smartphone
* Microsoft, with their Win11 requirements, is moving there
* John Deere (read on their own hardware attestation efforts to block DIY)
* Car companies (require specialized tooling and software subscriptions to make certain repairs)
* Anything that requires a signed bootloader and signed software updates
* Snapdragon CPUs and e-fuses that burn when you use unsigned software, and brick
* Apple hardware, literally crypto-signed so you can't use aftermarket parts
* Google Chromecast
* Amazon Kindle, locked hardware
* IBM has locked hardware to their laptops for *years*. Ever try upgrading a wifi card in an IBM laptop? They're already invested in this
And Linux probably predates most/many of those things, yet remains open and without forced attestation. Why suddenly it's different today than all those years you reference?
Companies can make Linux variants that are tivoized, but it's not standardized. They have to put effort into it. Soon it'll just be systemctl --tivoize-me
They are a different beast because of the culture surrounding them — nothing technologically different. Lennart wants to bring that same culture to desktops.
People have been saying this since day dot. It was very controversial for Debian to change to use systemd. The vote was close due to many arguments which are still being played out
You're saying that because the person who made systemd now work on hardware attestation, all Linux distributions will eventually require remote hardware attestation, where users don't actually have the keys?
Maybe I'm naive, maybe I trust my distribution too much (Arch btw), but I don't see that happening. Probably Ubuntu and some other more commercial OSes might, but we'll still have choices in what OS/distribution to use, so just "vote with your partitions" or whatever.