The new "lockdown mode" on the Purism phones really bugs me.

puri.sm/posts/lockdown-mode-on

Tried to avoid saying anything, because heck, I'm not doing it. But this is exactly the problems you start having when you don't have application confinement and lifecycle considerations built into your core.

Purism isn't building a phone, they're building a 5" portable laptop with an on-screen keyboard.

Perhaps some people want that, but I definitely don't. I expect many customers won't be impressed also.

@ted why is that not a phone (all smart phones these days are basically computers that can make a phone call)

This lockdown mode while a bit radical does make it so you can again “trust” your phone to not do something when you do not want it to do.

Purism is itself targeting a niche market with there machines that can not boot windows at all.

Similarly they try to target this market with the phone. (I just wish they were not subject to the patriot act, so I could get 1)

@sysosmaster for a few reasons.

Phones spend most of their time trying to go to sleep, which basically requires at least help, if not control over the applications. Standard desktops doesn't have that.

The lockdown mode justification starts from the fact that if GPS is on, all applications can access it constantly. That assumptions a failure on most phones. They can access it if you give them permission. You should be able to trust an Open Source phone to enforce that permission.

Follow

@ted @sysosmaster "you should be able to trust"

> should

this kind of redundancy and hardware-based enforcement looks like a great idea to me!

(also because sometimes i'd like to turn off gps or whatever without having to look at the phone, unlock the screen, etc.)

@carcinopithecus @ted the more I learn about Infosec / RoP (gadgets) and other techniques the less I trust just software. (It’s not that I do not trust developers it’s that it’s so hard to make secure applications at all)

@sysosmaster i'm not even an infosec guy, i just miss the days when i can unplug or switch off something without either data loss or the os telling me after ten seconds of trying that "i'm afraid i can't do that dave" because some badly designed or glitching program can't figure out how to announce it's no longer using it or whatever...

@carcinopithecus do you use Microsoft products by any chance? I have not had this problem for many years while using gnu/Linux. (Just curious)

And being in the @infosec.exchange kinda gives away I’m active in infosec 😉.

Sign in to participate in the conversation
x0r.be

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!