But in a few years, governments will be able to confidently claim that any device not running in so-called Secure Boot mode is a cyber-security risk and can't be allowed online.<p>Similarly, they'll claim that all devices must either only run apps from "approved" app stores, or have a system like Apple's "Gatekeeper" which checks every binary you try to run against a central blacklist of forbidden apps.<p>Then you can kiss goodbye to P2P downloading, E2EE messengers, Tor, cryptocurrencies, and VPNs (unless those apps also implement blacklisting/whitelisting, or their developers will face criminal liability for what users do with them).
I consider this a feature. It convinced me to move two windows laptop "servers" to pop_os LTS. That's fine windows execs, keep digging the grave of your OS, we all know you want everything online so you can charge monthly merely to use an "OS"