User: Password:
|
|
Subscribe / Log in / New account

Implementing UEFI Secure Boot in Fedora

Implementing UEFI Secure Boot in Fedora

Posted May 31, 2012 14:04 UTC (Thu) by cortana (subscriber, #24596)
In reply to: Implementing UEFI Secure Boot in Fedora by thumperward
Parent article: Implementing UEFI Secure Boot in Fedora

I believe the spec is worse than this: OEMs are forbidden from allowing the user to install their own keys or disable Secure Boot entirely!


(Log in to post comments)

Implementing UEFI Secure Boot in Fedora

Posted May 31, 2012 14:21 UTC (Thu) by thumperward (guest, #34368) [Link]

Quite. On the other hand, it's not uncommon for non-x86 devices to be locked already, and unlockable ones are still the exception. The most popular phone and tablet in the world are not only locked, but controlled by a vendor that actively tries to re-lock devices that are unlocked.

On ARM it's almost always been the case that installing Linux has involved fiddling at least and outright cracking at most. MS legislating that one can't allow the bootloader to be unlocked makes no difference if the vendors don't currently allow that anyway.

The important use case here remains "putting a CD into an x86 system", because those are the only ones where a) Microsoft has a monopoly and b) installing Linux is never more complicated than sticking a CD in the tray and rebooting.

Implementing UEFI Secure Boot in Fedora

Posted Jun 1, 2012 16:53 UTC (Fri) by raven667 (subscriber, #5198) [Link]

Linux is much more dominant in the ARM space and while many devices are locked, most vendors also make unlocked SKUs and for some unlocked devices are the rule and not the exception. It would be good to encourage vendors making UEFI ARM devices to make an unlocked SKU without the Win8 logo at least in small runs for developers that can be sold at-cost.


Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds