Richard M. Stallman, president of the FSF, said, "Getting rid of the signature checking is an important step. While it doesn't give us free code for the firmware, it means that users will really have control of the firmware once we get free code for it." Unlike some crowdfunding projects, this one is far from pie-in-the-sky, relying mostly on off-the-shelf components, with a planned shipping date in Spring of this year: "Purism is manufacturing the motherboard, and screen printing the keyboard. Purism is sourcing the case, daughter cards, memory, drives, battery, camera, and screen."
What's the gist on all this? How much of this stuff is potential malware? What are your experiences? Can I usually trust rooting strategies to be malware-free? Is there a rule-of-thumb for this? Is there perhaps a more generic way for a FOSS/Linux expert who isn't afraid of the CLI to root any Android 4.4 (Kitkat) device? Advice and own experiences, please.
It's fine if the documentation is highly technical, I've written linux kernel drivers before :)