| ▲ | conradev 4 days ago | |||||||
and I imagine that the initramfs is not encrypted and trivially modifiable? Apple is able to achieve this securely because their devices are not fully encrypted. They can authenticate/sign the unencrypted system partition. | ||||||||
| ▲ | klooney 4 days ago | parent [-] | |||||||
https://mastodon.social/@pid_eins/113404099228886304 You auth the initrd too | ||||||||
| ||||||||