Comment by palata
9 hours ago
> What I'm not ok with is not being able to flash whatever I want to run on it later without unlocking and wiping.
The wiping is a security feature: if someone installs a new random system ("random" being defined as "not signed by the same entity"), then they can modify the system in order to attack it. The whole secure boot idea is worthless if you allow that.
I don't disagree. I just don't want the trusted entity to be other than me.
Note that secure boot doesn't become worthless just because you can flash something different. The TPM should notice SB is turned off, and should refuse to decrypt, but there should be a way for the user to back up the key and use it to recover the data later.