Secure boot can largely be turned off at least for now, and TPM is mostly a passive thing, but the seriously real threat to freedom is remote attestation --- unlike the others, it's something that you can't get around by "simply" building your own platform, by design. External entities will have the power to compel "your" computer to do what they want, or else you will be denied access to many services. Unless we act quickly to fight against it, this will be the beginning of an authoritarian dystopia unlike anything we've seen in the past.
You can already see attempts at dissolving the rebellion against RA by Big Tech and the propaganda they disseminate. They don't want people to know this until it's too late. This warning should be taken in the same way as Stallman's "Right to Read".
True, but it seems it is still another example of cat and mouse game ( for example, unRaid seems to be able to run Win11 with TPM ). I am not suggesting that the issue you raise is unfounded, but at least for now as many people are working to make it a reality as ones, who do not.
This is over simplifying matters. The technologies used to be optional, but in many cases is now mandatory to use an OS.
Windows 11 mandates a TPM, for example - Windows 10 did not and works fine on any system without. There has been a huge amount of discussion here and elsewhere about the Windows 11 mandatory security changes, which themselves are similar to the changes Apple have made to how their own systems boot over the years.
Say that again when the impending doom of remote attestation forces you to use a single (and constantly changing) version of Windows in order to interact with any mainstream services.
