LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Re: Trusted Boot in Fedora

[Posted June 29, 2011 by jake]

From:  Camilo Mesias <camilo-AT-mesias.co.uk>
To:  Development discussions related to Fedora <devel-AT-lists.fedoraproject.org>
Subject:  Re: Trusted Boot in Fedora
Date:  Wed, 22 Jun 2011 16:57:54 -0400
Message-ID:  <BANLkTinszMZJrJDxbi8qeXcY81726Rv99w@mail.gmail.com>
Cc:  gang.wei-AT-intel.com
Archive-link:  Article, Thread 

I'm curious to know the use case(s) for this technology.

Does it enable certain types of behaviour that aren't possible currently?

Would it enable a system running Fedora to interact with other systems
with a greater guarantee about its behaviour or function?

Is it just something that system integrators would see as a feature
enabling them to make a secured system (ie something useful for RHEL)?

If it just allows you to optionally run a signed kernel, I don't
understand the point if it can be circumvented by choosing to run an
unsigned one. So I think there must be some benefit that isn't
obvious. What's the benefit?

-Cam
-- 
devel mailing list
devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/devel
(Log in to post comments)

Copyright © 2011, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds