PureBoot is our high-security, tamper-detecting boot firmware. With the release of version 22 we have added a new feature called “PureBoot Basic” that lets you optionally disable the tamper detection, leaving you with a clean, simple, and still powerful boot firmware with more recovery options than a traditional coreboot BIOS and GRUB.
Normally when you boot Pureboot, the Librem Key verifies the computer’s boot firmware is still in a verified state. Librem Key is a USB token that integrates with Pureboot and helps in protecting your system from snooping while you are away. Giving you peace of mind your computer software is untampered with.
For those that don’t need PureBoot’s extra security but want some of the other features, Pureboot Basic get’s out of the way and lets you boot by disabling tamper-detecting features.
To enable PureBoot Basic, ensure you’re running the latest version of PureBoot.
For those running an older version of PureBoot:
Flash or update the BIOS->
Flash the firmware with a new ROM and retain BIOS settings.
If you’re currently running coreboot, you can use this utility to flash the firmware. To use it open a terminal and run these commands:
wget https://source.puri.sm/coreboot/utility/raw/master/coreboot_util.sh -O coreboot_util.sh
sudo bash ./coreboot_util.sh
Have a look at this video for a deep dive into how the Librem Key works with PureBoot, or continue on to enable PureBoot Basic.
Change Configuration Settings ->
Enable PureBoot Basic Mode.
To save the configuration changes, select
Save the current configuration to the running BIOS.
Once your computer reboots, you can enjoy a quick startup and still have powerful tools like grub config parsing, ext4 boot partition support, and a built-in Linux shell for advanced debugging.
|Librem Mini||In Stock||10 days|
|Librem Servers||Out of Stock||--|
|Librem Key||In Stock||10 days|
|Librem 14||In Stock||10 days|
|Librem 5 USA||In Stock||10 days|
|Librem 5||Currently shipping backlogs||52 weeks|