Other long term problems
Posted Jun 7, 2012 10:37 UTC (Thu) by neiljerram
In reply to: Other long term problems
Parent article: Fedora, secure boot, and an insecure future
> Any malware which can compromise the bios can install whatever secure boot keys it wants and tell the OS everything is hunky dory.
No, that's not the case. It has to be quite a bit craftier than just that.
Huh? The OP simply said "malware ... can ..."; they didn't say anything about how "crafty" it needed to be to do that. How does your response relate to what the OP said?
The spec requires that most code runs in a mode of operation in which the flash which houses the keys has write enable physically disabled.
Again, how does that relate? By saying "most" you are allowing that some code runs without key-writing disabled - and clearly this must the case, or else it would be impossible ever to update the keys!
So your post does not refute the previous one, or illuminate it. If anything it corroborates it, but strangely using language that sounds like a refutation.
to post comments)