I hope you take my posts constructivly as they are intended. I am trying to have a helpful presence here and with respect I don't think you fully understand PGP because you are not using it. Raspberry Pi devices are the first SBCs I decided to begin with my research because they are so popular. I am not comparing with any competitors.When Pi first launched there was quite a lot of closed source SW in firmware, but over the years we have moved the majority of that out into Arm space, and therefore open sourced it.
As you seem to be interested in security, you may be interested in the recent Hacker challenge on the RP2350 microcontroller, which gives some insight in to how serious we are about this. You may also want to look into our signed boot process for the SBCs.
About the quoted text, does that mean the 64 bit OS is mostly open source but the 32 bit version is mostly closed source? Because in the rpi-gen readme it says the 32bit OS uses the master branch and the 64 bit OS uses the arm branch. And you said your moved the close source code to arm space when making it open source.
It also says 32 bit image is based on Raspbian but 64bit is based on debian, But Raspbian is also based on debian?
Signed boot process is good to have but if the OS is compromised during installation then signed boot isn't so great. That's why you need to use PGP signatures like every other OS. You have to sign the images when they are built and you should also sign all commits. Don't you use signatures with pen and paper documents? If yes then why not also use signatures digitally? I hope you understand why signatures are important to verify authenticity of data.
What do you think is a reputable source? The feds? So you want them to investigate themselves and admit what they are doing? Do you think USA gov is going to admit that CIA is corrupt when they can't explain why they can't shut down the CIA or control the CIA? RFK has gathered so much evidence he said he is certain that if he went to court, he would be able to prove that CIA was behind the assassinations. The problem isn't about reputable sources, the problem is that it doesn't matter how much evidence there is against CIA because they are too powerful and aren't going anywhere. It's like the banks who are too big too fail. They can gamble away all money and lose and still get bailed out and not worry about anything. And they can just keep doing that. CIA is above the laws.Seems to be tinfoil hat poppycock, unless you can substantiate this with reputable sources.Don't forget that CIA used the pokemon go game to do mass surveillance on all people, even inside everyone's private home they took pictures and made maps of everything.
Statistics: Posted by rpifunfun — Fri Jul 11, 2025 3:33 pm