Some various questions:
-
What development stage is the Pureboot Bundle in (will there be more GUI/usability changes, doc changes, etc coming)?
-
This is my understanding of the process that should take place upon receipt:
First Boot: Set passphrase etc Reboot, resign Change User and Admin Librem Key PIN Change TPM Admin PIN; reset HOTP token Replace GPG Keys; Reflash, reset HOTP token Resign
Is that the correct info and order?
-
From reading the forum, it seems Pureboot works with Qubes. Is the intention to try to maintain that?
-
Last I checked, you can’t decrypt a LUKS-encrypted Drive with a Librem key on Fedora/Qubes - has there been any update on this?
-
For supported OS’s, is there an option to require the Librem Key and the passphrase to unlock?
-
The Librem Key and Librem 5 USA now have a more secure supply chain. Are there plans to have an option to assemble the laptop in the US?
-
I know there’s been lot’s of great work on freeing components (VGA Bios, Intel ME, etc). System76’s laptops have the Embedded Controller freed as well. Can parts of that be reproduced in this project?
Thanks for all your work!