Literally NOT “required” by Windows 11. You can install 11 without TPM2 support just fine.
“enshittification” and it’s toggling two things in the BIOS, with one of them being literally required already by Windows 11, and the other being important for security to the point it should be toggled on anyways.
MotoAsh@piefed.social 21 hours ago
Romkslrqusz@lemmy.zip 4 hours ago
Indeed you can!
If you enable the core isolation and memory integrity features, which rely on the TPM, the system will slog down to less than potato speed.
SalamenceFury@lemmy.world 21 hours ago
Sure, but do you think the average user will actually take their time to find ways to do it unless they REALLY want to install it and their computer doesn’t support it?
MotoAsh@piefed.social 2 hours ago
No, because:
1. the comment was about how it’s not “required”, not how easy it is (thanks to Microsoft hiding the toggles).
2. Anyone who cares enough is just going to install Linux instead of a tweaked Windows piece of shit.
WhyJiffie@sh.itjust.works 7 hours ago
the tpm does not add any security whatsoever for windows 11, and secure boot is being used to lock your control out of your own system. secure boot enabled with machine owner keys wouldn’t be enough either for these games
pivot_root@lemmy.world 2 hours ago
They should be able to check which signing keys were used for every part of the boot process. Unless they want to be colossal assholes and check the MOK as well, they could still verify what they need without flagging Linux Secure Boot dual-booters as cheaters.
Romkslrqusz@lemmy.zip 4 hours ago
Care to elaborate?
WhyJiffie@sh.itjust.works 3 minutes ago
these games only accept the secure boot setup where the root key is that of microsoft’s. that means that you either need windows with a pre-approved configuration in some regards (notable difference: any foss kernel drivers are nono because they won’t ever be signed) or a linux system for which microsoft gives a secureboot shim with whatever further restrictions.
the consequences are more obvious if you look at android as an example. It’s not called secure boot there, but android verified boot, and the turning off of it is called “bootloader unlocking”. very few phones support installing your own signing keys so you can’t take advantage of it with a bloatless android distribution. but even on phones that do, there are many apps that require a locked bootloader with the factory keys, including banking apps, nfc payment apps, government apps (including those that are required to access the online government account), entertainment apps with strict DRM, …