Being sequestered into the oil sounds pretty nice at this point.

🫂

Unless “read-only” is being enforced by hardware (reading from optical media, etc), a compromised sudo user can circumvent anything, and write anywhere. A read-only flag or the root filesystem being mounted from somehwere else are just trivial extra steps in the way.

Improved security != extremely secure, is all I’m saying. There are a lot of things that go into making a system extremely secure, and while an immutable root filesystem may be one of them, it doesn’t do the job all on its own as advertised in this post.

The root filesystem is being read from somewhere, and if it’s being read from, it can be written to. Having an extra step or two in the way doesn’t make it “extremely secure”.

The top issue from this similar joke repo I feel sums up the entire industry right now: https://github.com/rhettlunn/is-odd-ai

They do actually want to ban Buck Angel from using the men’s room, and this is the point I always use to illustrate the real hatred underlying this issue. They want people like Buck to be forced into the choice between facing arrest for using one bathroom, or facing violence for using the other. That’s the only point of these measures - to make violence and legal threat the only two options available.

The goal is to ban trans people from existing in public.