Remove "Device Security" from GNOME Settings

MG_Linux · 1 March 2025 11:54

Please remove “Device Security” entry from manjaro-gnome-settings, since it refers to technologies that Manjaro doesn’t support.

Yochanan · 2 March 2025 18:47

What you’re referring to is gnome-control-center aka GNOME Settings.

Such as…?

MG_Linux · 3 March 2025 11:20

Secure boot, TPM…

Nachlese · 3 March 2025 11:31

not entirely accurate
it may not support these “out of the box”
It’s not that they can’t be configured/made to work - if the hardware is present and supported by Linux

MG_Linux · 3 March 2025 12:42

Ok, but what’s the difference? If it’s not out-of-the-box, then there’s no point in having that entry in the out-of-the-box settings. Manjaro rejects the use of any proprietary technology, what’s the point of finding security warnings in the settings that refer to those technologies and tell you that your PC is not secure?

Nachlese · 3 March 2025 13:10

Is that so? - Perhaps you’ll revise your opinion when you look at Nvidia graphics support (for only one thing).

You could - as you normally would - research what any such message means and why it is there.
…

Another side of it is:
most of the packages in Manjaro are taken from Arch - as they are

Arch, in turn, usually does not modify anything.

So:
it is pure Gnome with some GUI appearance customizations that you’ll find in Manjaro.

It would be a lot of work to maintain a version of Gnome with those parts stripped out -
just to then introduce the need for people to put them back in once they decide that they want to implement … secure boot, for example.

my vote:
No. Don’t remove these things from settings

Who is supposed to be doing the (rather useless) work, btw. ?
If it is even halfway easily possible …

much better: you learn how to interpret what the results mean …

MG_Linux · 3 March 2025 20:44

I understand your point of view. But if Manjaro does not offer options to activate SecureBoot during installation (and maybe even the unlocking of the disk encrypted by TPM chip) I can only conclude that there is no consistency between DE and OS. I know these things can be activated manually, but they are not within the reach of the average user. If an average user installs Manjaro GNOME they will conclude that, for some reason, their system is not secure.

Nachlese · 3 March 2025 21:09

And then they will ask themselves or others what it means and how to fix it.
The cause is easy to find out.
They will find that the first conclusion was a faulty one.
What is “the average user” anyway? (rhetorical question)
and why would you want to protect them from coming to the wrong rash conclusions?

Anyway: no one will implement this if you don’t do it yourself

Yochanan · 4 March 2025 02:14

@Nachlese covered everything here.

For reference:

https://wiki.archlinux.org/title/Unified_Extensible_Firmware_Interface/Secure_Boot

https://wiki.archlinux.org/title/Trusted_Platform_Module

No, Manjaro is not going to remove anything that upstream GNOME provides.