8 comments

[ 2.9 ms ] story [ 38.5 ms ] thread
s/booting securely/running only the code Apple approves of/g
Useful, thank you! Looks like the author just enjoys helping fellow nerds. Nice
His site is filled with gems like this one.
Note that checking anything in userspace on a compromised machine does not actually prove that the machine is not compromised. It is very easy to boot insecurely and then make everything lie that the boot was secure.
The problem is if you enable filevault then you can’t ssh into the mac remotely until someone locally logs in.

Means I end up using filevault on my laptop, but not on my desktop.