Results 1 to 10 of 13

Thread: SecureBoot Is Now Easier For Smaller Distributions

Hybrid View

  1. #1
    Join Date
    Jan 2007
    Posts
    15,409

    Default SecureBoot Is Now Easier For Smaller Distributions

    Phoronix: SecureBoot Is Now Easier For Smaller Distributions

    Matthew Garrett has shared that he's finally published his shim boot-loader for dealing with UEFI SecureBoot that makes it easier for the smaller Linux distributions to deal with this "secure" technology. Using this shim boot-loader is already signed with a Microsoft key so the smaller Linux distributions and other independent parties don't have to worry about obtaining a key from Microsoft...

    http://www.phoronix.com/vr.php?view=MTIzOTk

  2. #2
    Join Date
    May 2011
    Posts
    42

    Default

    Yet another Microsoft DRM scheme has failed. Great!

  3. #3
    Join Date
    Jul 2011
    Posts
    75

    Default

    matthew garrett is leaving?

  4. #4
    Join Date
    Apr 2011
    Posts
    114

    Default

    Quote Originally Posted by sandy8925 View Post
    matthew garrett is leaving?
    Red Hat? Has left.

  5. #5
    Join Date
    Jan 2012
    Posts
    188

    Default

    This is so ugly i cannot believe it is even legal to sell locked hardware like this.

    The very minimum requirement should be that this key adding procedure would be doable from the UEFI specs and the computers came at most preinstalled with a microsoft key. But having to ship a binary blob just to boot your distro compromises your system even before linux has started loading The fact you can beg for a key from only microsoft to circumvent this restriction is the definition of a monopoly.

    This is something EU should take notice of and force all hardware to be open, but those bureocrats only look after business interests, not peoples interests
    Last edited by varikonniemi; 12-01-2012 at 03:16 AM.

  6. #6
    Join Date
    Jul 2009
    Posts
    286

    Default

    Quote Originally Posted by varikonniemi View Post
    But having to ship a binary blob just to boot your distro compromises your system even before linux has started loading
    you already do, it's called the bios. or uefi.

  7. #7
    Join Date
    May 2012
    Posts
    350

    Default

    Quote Originally Posted by varikonniemi View Post
    The very minimum requirement should be that this key adding procedure would be doable from the UEFI specs and the computers came at most preinstalled with a microsoft key.
    They already do, when properly implemented. The hysteria has drowned out the reality, though.

  8. #8
    Join Date
    Nov 2009
    Location
    Europe
    Posts
    274

    Default

    Quote Originally Posted by sandy8925 View Post
    matthew garrett is leaving?
    in a few days or already he is a employee of Nebula.
    Last day at Red Hat

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •