This page is currently a very hasty list of the roadmap needed to make the Talos an "everyday common user's" machine.
For convenience, unfinished tasks have been grouped into three categories: "Urgently Needed", "Somewhat Needed", and "Would Be Nice" in descending order of importance.
- "Safe By Default" Randomly generated BMC Passphrase with password written down on a sheet of cardboard in the package.
Rationale: even some of our users have had trouble with this. The default insecure password with the BMC could result in an instant compromise of the machine and require full flashing of all persistent firmware components in the event the computer is accidentally plugged into the network and the power at the same time. This completely innocent mistake could be fatal and recovering from it difficult. The threat model of a randomly determined BMC Passphrase would be if the user accidentally plugs the computer into the untrusted internet against a passive adversary that will simply try the default passwords, similar to how the Mirai Botnet operated.
- "Easy Start Guide" in Talos User's Manual
Rationale: nontechnical users may have difficulty with the complicated procedure to remotely access and set the BMC password from a trustworthy system.
Would Be Nice
"Easy Build" Script for building Unreal Tournament 4 for nontechnical users? Android Builder for building smartphone OSes? Cryptsetup (dm-crypt) and verity in Petitboot for firmware-based full disk encryption? FreeCAD? (May or may not be upstreamed yet?)