Ubuntu's approach sounds better - if it works
Posted Jun 29, 2012 16:03 UTC (Fri) by giraffedata
In reply to: Ubuntu's approach sounds better - if it works
Parent article: Ubuntu details its UEFI secure boot plans
If Canonical's efilinux bootloader is happy to launch any Linux kernel, it can indeed be used to run any other Linux distribution
And I assume it can be used to launch any other program at all, Linux or not. For example, an infected Windows kernel. So a smart Windows virus would install Canonical's signed efilinux bootloader along with its infected Windows kernel and defeat Microsoft's strategy to secure Windows 8 computers altogether.
So this should mean that Microsoft would not sign a key for Canonical, or should revoke it once Microsoft finds out Canonical is using it this way.
Or maybe I'm just still confused about how UEFI works.
to post comments)