> Microsoft has complete control of your computer.
So does any Linux distro if you don't compile from sources yourself. Who knows, maybe Debian openssh fiasco was an inside job.
> why wouldn't you trust them to encrypt your disk too?
I trust them that they wouldn't be actively spying on their customers, because that's a good way to kill your company. I don't trust them they tried their utmost to secure our computers (we'd be running Singularity/Midori/Verve otherwise), because they are likely being coerced to comply with various orders and regulations.
> So does any Linux distro if you don't compile from sources yourself.
Yes, that's a good start. You just didn't go far enough.
Endpoint security is a messy problem, where everything is expressed in shades of gray. Yet, spying on your computer when it's powered, and backdooring your disk encryption for when it's off do not differ in luminosity enough to be called different colors.
By the way, yes, Microsoft was already caught spying on their users. More than once.
99.9999999% don't go far enough. Evidently everyone using Debian for those couple of years didn't go far enough. Not even two whole bytes of entropy is insane.
> By the way, yes, Microsoft was already caught spying on their users.
Surely allegedly. I've heard a few incidents attributed to them (flame, etc), but I've not seen it confirmed that intentional action was taken. Care to provide the links?
So does any Linux distro if you don't compile from sources yourself. Who knows, maybe Debian openssh fiasco was an inside job.
> why wouldn't you trust them to encrypt your disk too?
I trust them that they wouldn't be actively spying on their customers, because that's a good way to kill your company. I don't trust them they tried their utmost to secure our computers (we'd be running Singularity/Midori/Verve otherwise), because they are likely being coerced to comply with various orders and regulations.