> The purpose is to prevent users from running unauthorized software on the computers they allegedly own.
I've maintained for several years now that the actual corporate wet dream is that they can lock down the average PC architecture/OS to the same degree they have on phones. Because unfortunately, in the phone sector, the market has already shown the majority of users don't care who really owns their devices.
My hope is that Linux gets wide enough adoption to prevent that from becoming a feasible option for them in the future.
Buy a Mac. You'll see that corporate dream come a reality. Immutable OS partition. Security prompts that can no longer be bypassed. Binary signing requirement. It just keeps getting worse and worse, for a power user.
May be "certified UNIX" (when you look at it funny), but it feels like no freedom-loving UNIX-style system I've ever used.
You can turn all that off if you wanted to. OpenCore Legacy Patcher will build you a kernel with the SIP flag mask set to 0xFF, ie, completely disabled.
I've maintained for several years now that the actual corporate wet dream is that they can lock down the average PC architecture/OS to the same degree they have on phones. Because unfortunately, in the phone sector, the market has already shown the majority of users don't care who really owns their devices.
My hope is that Linux gets wide enough adoption to prevent that from becoming a feasible option for them in the future.