I was hoping for FreeBSD.

Loads of complex code exposed to an assumed trusted network is the model of printers. They’re going to be full of security issues.

This stuff should be sandboxed and then never, ever exposed to the Internet.

Entirely personal recommendation, take it or leave it: I’ve seen and attacked enough of this codebase to remove any CUPS service, binary and library from any of my systems and never again use a UNIX system to print. I’m also removing every zeroconf / avahi / bonjour listener. You might consider doing the same.

Great advice. It would appear these developers don’t take security seriously.

The most reliable way I know is to seek documentation for the board. It’s up there with PCI lanes in that the board designer will know what has been configured to work with that physical connector. This kind of info is definitely part of your motherboard documentation.

I’m not familiar with dmidecode so unfortunately I cannot comment on that.

Looks like one to me. Remember that M.2 is a form factor. You can have an M.2 slot that does not support SSD storage for example. I have one that is only intended to work with wifi adapters.

Based on the wifi designation on the board I’ll bet it only works with wifi cards.

M.2 is a form-factor. It talks about the shape only, it says nothing about what the device you are using can do. Many boards have restrictions on supported devices for the physical slot.

My wife has a different style by them and it has served her very well for two years.

Okay dental cleanings there, though my dentist prefers the word inexperienced for complex work.

I cannot be vaccinated in this way because it causes a severe reaction. I think there are many unsolved problems that preclude introducing these kinds of substances so broadly.

I don’t believe it works by ingestion.

Do you consider the smartphone a mature product? I really struggle to think about where it could be improved excepting of course for those things that no manufacturer wants to do anymore like expandable storage. Every day it seems like the offerings are becoming more similar than different, and as an enthusiast I find that a little disappointing.

👏👏 nicely done! Bravo!

I just want to know that everything is genuinely going to be okay.

Paywall?

I’m sure one will get randomly cancelled for not being instantly the most successful product ever invented before the end of the week given Google’s track record.

Great! Implemented correctly, this should help improve security in snatch-and-run phone theft situations.

With banking apps in particular this lock down is ultra-stupid.

Like, I have to use your super secure app, or I can just… visit your page in a web browser running on god-knows-what with whatever extensions in any computing environment or OS of my choosing? But not using Google Play is where they draw the line.

Programming is an abusive relationship.

Your experience reminds me of my attitude towards friends. I have become a hermit because my trust in other people has been ruined. I don’t even desire having friends anymore.

This is certainly an interesting feature, though my one use case has become much less relevant now that systems boot so quickly.

Perhaps if you have long running jobs and no implementation of state saving it could find applications.

I think you would be fine. You’re only restricted if you log into the vanilla ROM, do some stuff, and later if you want to use the vanilla ROM again you’ll be required to login to the account you used last on the vanilla ROM to make it happy with the device.

I don’t expect custom ROMs will have any compatibility with this feature. I believe they would bypass it entirely.

True! But it still hurts the resale value because users are likely to notice a device with broken secure boot if you were to somehow use it to forcefully flash a modified ROM.

Are you proposing this mode could be used to somehow clear the secret data?

My understanding is EDL mode can refuse to flash some partitions and some devices will not enter this mode if fastboot is working, which also enforces preventing access to some partitions. Most people who use EDL already unlocked the bootloader, but I don’t think this method works on all devices if the boot loader is still locked.