On Sat, Feb 21, 2026 at 04:13:13PM +0000, Holger Levsen wrote:
> On Sat, Feb 21, 2026 at 01:49:37PM +0100, Simon Josefsson wrote:
> > I both disagree and believe this is irrelevant. I have a bunch of
> > machines that do not require non-free firmware (e.g., Talos II, NV41,
> > Framework 13", Protectcli VP2440).
>
> the firmware is embedded in the hardware on these devices. The main
> memory of those devices does not initialize without non-free blobs, same
> for the main CPU, to name two devices you probably want to use.
... and there are security updates for the CPU, to address real
security vulnerabilities, such as Spectre and Meltdown, which are
patched by installing closed-source microcode patches.
You don't "have" to install these non-free microcode updates --- but
you might be well advised to do so. I'm a little curious whether the
FSF advocates for ideological purity even in the face of keeping their
clients and servers open to security vulnerabilities.... but since I
don't consider myself bound by their claims of moral superiority, not
that curious. :-)
- Ted
