Announcement

Collapse
No announcement yet.

New Lenovo AMD Laptops With Pluton Co-Processor Reportedly Only Boot Windows By Default

Collapse
X
Collapse
 
  • Page of 6
  • Filter
  • Time
  • Show
Clear All
new posts
Previous 1 2 3 4 6 template Next
  • #1

    New Lenovo AMD Laptops With Pluton Co-Processor Reportedly Only Boot Windows By Default

    Phoronix: New Lenovo AMD Laptops With Pluton Co-Processor Reportedly Only Boot Windows By Default

    At least some of Lenovo's new AMD Rembrandt powered laptops with Microsoft Pluton security co-processor are set by default to only trust Microsoft's key and not the Microsoft 3rd Party UEFI CA Key that Linux distributions and others use for UEFI Secure Boot support. Thus by default only Microsoft Windows will boot with the default firmware configuration on some new Lenovo laptops...

    New Lenovo AMD Laptops With Pluton Co-Processor Reportedly Only Boot Windows By Default - Phoronix
    https://www.phoronix.com/scan.php?page=news_item&px=Lenovo-Pluton-Windows-Default
    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
    Tags: None
  • #2
    "Distrusting the 3rd party CA by default doesn't improve security, it just makes it harder for users to boot alternative operating systems."

    Which was the whole point.
    • Likes 37

    Comment

    • #3
      "Sign in with your Microsoft account to boot Linux" may even become true one day... Oh no!
      • Likes 29

      Comment

      • #4
        Lenovo could propose a laptop based on one of the most reliable linux operating system.
        • Likes 2

        Comment

        • #5
          How is this even news? Most motherboards have the as the default. Have you never seen a computer?

          Comment

          • #6
            Originally posted by Paradigm Shifter View Post
            [/I]
            Which was the whole point.
            That's like saying HTTPS is useless because the user can "trust" invalid certificates.

            That's how chain of trust works. We don't know anything better, there has to be some kind of designated authority.
            • Likes 4

            Comment

            • #7
              Originally posted by anarki2 View Post
              How is this even news? Most motherboards have the as the default. Have you never seen a computer?
              No. SecureBoot is enabled by default on most motherboards, but they can still boot Linux or other OS's with the proper signature. This is (bad) news.
              • Likes 51

              Comment

              • #8
                Hopefully this will be bucket of cold water on Linus head which is becoming dumber and dumber with age.
                • Likes 4

                Comment

                • #9
                  Originally posted by Volta View Post
                  Hopefully this will be bucket of cold water on Linus head which is becoming dumber and dumber with age.
                  This is an interesting comment.
                  So you literally say that agreeing with Microsoft is what Linus needs to do?
                  iMHO Linus is just tired of explaining over and over things to stupid people who do not want to listen (or can't understand).
                  Just remember: Ignorance is curable, stupidity is permanent.
                  After a while you just stop trying to adapt.
                  Linuxer since the early beginnings...
                  • Likes 21

                  Comment

                  • #10
                    Originally posted by anarki2 View Post

                    That's like saying HTTPS is useless because the user can "trust" invalid certificates.

                    That's how chain of trust works. We don't know anything better, there has to be some kind of designated authority.
                    The trusted authority is the Microsoft signed "3rd party" certificate for other operating systems to use.

                    Which was the bodged together hack resulting from SecureBoot and Microsoft apparently being handed the keys to the kingdom with TPM/SecureBoot, so that other OSes could boot.
                    • Likes 12

                    Comment

                    Previous 1 2 3 4 6 template Next
                    Working...
                    X