This is certainly true, and in fact a bit too easy for my taste (all it takes is a few seconds to install a package from extras, so effectively the only security you have is the device lock code).

I'm more than a little concerned about what level of control the owner will be "allowed" to have on future devices however. So far the information coming out of Nokia/MeeGo re: platform security is only about the mechanism rather than the policy, and thus there is a lot of uncertainty.

Eg, what trust level will the community repository be given? Will community apps be able to access addressbook data, determine the device's location, create VPN tunnels, make VoIP calls, install additional bluetooth profiles and so on? How much of the factory-installed stuff will still work, and how much of our own data can we still access if we switch to "open" mode? For the time being I'm taking it as granted that, in "closed" mode, the owner won't be able to do things like install u-boot, IPv6 or USB host mode support, defang cherry, or even debug stuff that breaks, which doesn't sound like something I personally would want to use. But if "open" mode effectively means you have to forego the vendor differentiation and run the reference MeeGo code what's the point of buying such a device in the first place?