| |||||||||||||
Fedora, secure boot, and an insecure futureFedora, secure boot, and an insecure futurePosted Jun 20, 2012 18:45 UTC (Wed) by BenHutchings (subscriber, #37955)In reply to: Fedora, secure boot, and an insecure future by josephkliener Parent article: Fedora, secure boot, and an insecure future
They know or will know how to disable secure boot and it would not deter them from using Linux if they could do. What if they're installing it for someone else? Having to find and disable that option is an additional barrier; you'll probably spend the time to do it for your own PC but are more likely to give up on someone else's. Also, what if the other person is a bit naive about downloading programs and would benefit from that protection against malware? Paying $99 is just supporting and putting Microsoft in a better position than they are now... The money goes to Verisign, supposedly subsidised by MS. Well we just edit the kernel... but hang on that windows update last week meant I can no longer disable secure boot.... But you can run it in a VM in which you have a modified UEFI that always says 'Secure Boot is enabled'. The OS cannot verify what the firmware tells it, so this information is not useful for DRM.
(Log in to post comments)
Fedora, secure boot, and an insecure future Posted Jun 20, 2012 19:53 UTC (Wed) by Cyberax (✭ supporter ✭, #52523) [Link]
>The OS cannot verify what the firmware tells it, so this information is not useful for DRM.
That's temporary. The next step is integration with TPM to measure the UEFI integrity.
|
|||||||||||||