• throwawayish@lemmy.ml
    link
    fedilink
    arrow-up
    7
    ·
    10 months ago

    Oh wow! This is excellent news! I hope they’ll also provide other privacy/security related features like Heads, the removal of the camera and/or microphone modules, pre-installed privacy screen, tamper-evident screws and packaging.

    • library_napper@monyet.cc
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      10 months ago

      It says it has coreboot pre installed. I assume therefore its not difficult to flash Heads, which is based on coreboot?

      • throwawayish@lemmy.ml
        link
        fedilink
        arrow-up
        1
        ·
        10 months ago

        Honestly, I don’t know if that’s the case; I always got scared whenever I saw the prerequisites for Heads in combination with the strict list of supported hardware. FWIW, the NV41 that’s used for enabling Heads on NovaCustom’s device is included in the short list of supported hardware for Heads, while -unfortunately- the same doesn’t apply to the StarBook. I would love to be proven wrong though!

    • kellenoffdagrid❓️@lemmy.sdf.org
      link
      fedilink
      arrow-up
      1
      ·
      10 months ago

      To be fair, if you’re referring to the “alleged” backdoors in Intel processes, there’s pretty similar stuff going on in the AMD side too. That said, I still totally get not wanting to support Intel since they’re definitely the shadiest of the two, and they’ve been awful value these days.

      The Framework 13 AMD is pretty great though, can confirm. It’s all I’ve ever wanted in a decent, repairable laptop.

      • taanegl@beehaw.org
        link
        fedilink
        arrow-up
        5
        ·
        10 months ago

        Historically speaking, IME has been a low hanging fruit of attack vectors and intel has arguably speaking had worse problems with security vulnerabilities on hardware and firmware levels than say AMD or ARM. A bit anecdotal, but there you are.

        • Patch
          link
          fedilink
          arrow-up
          4
          arrow-down
          1
          ·
          10 months ago

          Star Labs disable IME by default.

          • taanegl@beehaw.org
            link
            fedilink
            arrow-up
            3
            ·
            edit-2
            10 months ago

            AMD and ARM also have their remote standards, but none as distrusted as IME.

            Also, remember that vulnerability where IME could be enabled through the internet by a malicious actor? That was fun…