[fsflover]

Fortunately there's a FLOSS alternative: TPM with Heads, https://osresearch.net/. Works for me.

[getcrunk]

What hardware do you use the most recent supported seems like the Librem offerings. Which are intel 10th gen. Otherwise it’s gets pretty ancient

[fsflover]

Indeed I'm using a Librem laptop with Pureboot. Librem 14v1 has been discontinued, Purism is developing the second version, hopefully with a newer CPU.

[1oooqooq]

why not secure boot with your own keys?

... granted, effectively removing Microsoft keys is a pain on some consumer devices, but still easier than this

[dietr1ch]

My first encounter with UEFI turned out to be quite expensive because UEFI was way too new and easy to brick. I guess things are better now, but toying around with this might still be a risk not worth taking as a consumer.

[hulitu]

> I guess things are better now,

A bit. But compared to BIOS is still crap. The main advantage of UEFI over BIOS is that it offers RCE. /s

[worthless-trash]

Do most UEFI allow for the "R" in RCE?