[OLPC Security] G1G1: Security, to enable or disable...

Samuel Klein meta.sj at gmail.com
Tue Jun 3 22:56:43 EDT 2008 

I continue to be uncomfortable that we are sending out restricted /
locked-down machines without a clear need.  The arguments made so far for
this are

 1. "Getting G1G1 people to test security steps"
 2. "Protecting G1G1 donors from installing anything but signed builds"
 3. "Showing a pretty boot screen"

3. represents a bug that should be fixed.  Tying pretty boot to
machine-lockdown is arbitrary.

2. assumes that this is the best result for G1G1 donors, which seems
unlikely to me.  Discovering how to update to anything but the most
aggressively promoted builds is already a sign of tech savvy.  This
protection would still effectively be in place for the vast majority of
users for whom it matters if we aggressively recommended to users (say,
after a couple of days of use) that they get a developers key if they want
full control of their machines for any reason.

1. is an interesting argument.  As with 2, it would still hold if recipients
were actively encouraged to get developers keys if they have any interest in
having full control of their machines (indeed you could say that they we
would have a much better test of the dev-key acquisition process, which
currently works more clearly in large batches for countries than for
individuals).

SJ

On Tue, Jun 3, 2008 at 9:46 PM, Kim Quirk <kim at laptop.org> wrote:

> Developer program laptops are shipped out as US/International
> keyboards, English language, AK flag set, which means they do NOT need
> activation. They are permanently activated in the manufacturing data.
>
> The only thing they need to be a developer unit is a developer key.
>
> One more reason to add to Scott's list of why laptops are sent out to
> G1G1 'write protected' is so they are protected from non-signed images
> coming from malicious sources. If you don't use a developer's key to
> un protect the laptop, then you can only upgrade to OLPC signed
> builds. This is an important part of the bitfrost security that is
> implemented and working!
>
> FFM - if you really got two laptops from the developer's program that
> weren't activated, then could you put those details into an RT ticket
> and we'll debug it there. If there really are laptops going out that
> are un-activated that we don't know about, that will be a serious
> problem.
>
> The ONLY un-activated laptops are ones built for Peru, Mexico, and
> Uruguay. These are very specific SKUs and that include Spanish
> keyboards. Please open a ticket and let's figure that out.
>
> Thanks,
> Kim
>
>
> On Tue, Jun 3, 2008 at 1:07 PM, C. Scott Ananian <cscott at laptop.org>
> wrote:
> > On Tue, Jun 3, 2008 at 12:43 PM, Bert Freudenberg <bert at freudenbergs.de>
> wrote:
> >> On 03.06.2008, at 18:33, ffm wrote:
> >>> On Tue, Jun 3, 2008 at 12:29 PM, C. Scott Ananian
> >>> <cscott at laptop.org> wrote:
> >>>> Machines sent out via our developer program are always shipped out
> >>>> unsecured.
> >>>
> >>> Yet I've just recived two laptops via said program that had security
> >>> enabled.
> >>
> >> Indeed. The machines distributed at LinuxTag last week also came w/o
> >> dev key - I think it is only the activation part that is disabled.
> >
> > My information may be out of date on the developer's program, since
> > Adam has rebooted it recently and I don't think that developer's
> > program machines actually come through OLPC any more.  I should have
> > said, "used to be shipped out unsecured".  Adam, are the new
> > developer's program machines shipped direct, or do we have an
> > opportunity to (at least) include a flyer explaining how to disable
> > security on the machine?
> >  --scott
> >
> > --
> >  ( http://cscott.net/ )
> > _______________________________________________
> > Devel mailing list
> > Devel at lists.laptop.org
> > http://lists.laptop.org/listinfo/devel
> >
> _______________________________________________
> Devel mailing list
> Devel at lists.laptop.org
> http://lists.laptop.org/listinfo/devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.laptop.org/pipermail/security/attachments/20080603/65214032/attachment.htm

More information about the Security mailing list