Announcement

Collapse
No announcement yet.

LVFS Has Supplied More Than 100 Million Firmware Updates To Linux Users

Collapse
X
Collapse
 
  • Page of 3
  • Filter
  • Time
  • Show
Clear All
new posts
Previous 1 2 3 template Next
  • #21
    Originally posted by direc85 View Post
    I wonder if manufacturers will migrate to live Linux USB images to let Windows-only users perform firmware updates.
    Or have compatible clients for Windows. That would be more likely actually...

    Actually. Let there be a universal firmware upgrade image, with an exFAT partition for offline files. That way it wouldn't need Internet connection at all.
    Dell does something similar to this for their server hardware. I have some Dell T630 tower servers and the firmware update ISO just boots a Linux kernel and automatically checks what hardware is installed and applies all possible firmware updates offline.
    • Likes 2

    Comment

    • #22
      Originally posted by old486whizz View Post
      It's really annoying that Dell (and others) don't seem to release their firmware updates through LVFS - why don't they all just use LVFS as default and, if they have a Windows piece of software (PoS) then they can just grab the image from LVFS (or vice-versa - LVFS could be a pointer to the company-hosted firmware).
      LVFS: Device List
      https://fwupd.org/lvfs/devices/#dell


      The general thing with Dell / HP / Lenovo is that you need to buy the business class machines if you want LVFS support today.

      Comment

      • #23
        Yet another tool that can use UEFI for purposes other than booting the computer, according to this page:

        LVFS: Hardware Vendors
        https://fwupd.org/lvfs/docs/vendors


        But UEFI does not appear to be secure when this can be done with it:

        Just about every Windows and Linux device vulnerable to new LogoFAIL firmware attack
        https://arstechnica.com/security/2023/12/just-about-every-windows-and-linux-device-vulnerable-to-new-logofail-firmware-attack/
        UEFIs booting Windows and Linux devices can be hacked by malicious logo images.



        Ya gotta luv UEFI for being the Swiss Army knife that boots, updates, and hacks ... all in the same application!


        So thanks but no thanks. Sometimes the "old school methods", while a hassle they may be, simply appear to be a bit more secure to me.

        Comment

        • #24
          ah yes the automatic updating of proprietary firmware full of spyware and backdoors on linux boxes. Payed forby microsoft. What a victory for all of linux users...

          Comment

          • #25
            Originally posted by cj.wijtmans View Post
            ah yes the automatic updating of proprietary firmware full of spyware and backdoors on linux boxes. Payed forby microsoft. What a victory for all of linux users...
            (-‸ლ)

            Comment

            • #26
              It would be nice if someone could come up with a FLOSS UEFI executable* for updating firmware. I realise it would be a huge and difficult job as a result of all the different hardware approaches used by motherboard manufacturers, but it would be really good if one could simply download (signed) firmware and run a (signed) UEFI executable to update the PC.


              *UEFI executables are regular PE32 / PE32+ (Windows x32 / x64) images, with a specific subsystem. Every UEFI application is basically a windows EXE (or DLL) without symbol tables.​ See OsDev.org: UEFI

              • Likes 1

              Comment

              • #27
                Originally posted by cj.wijtmans View Post
                ah yes the automatic updating of proprietary firmware full of spyware and backdoors on linux boxes. Payed forby microsoft. What a victory for all of linux users...
                Your statement implies that the updates are more likely to have spyware and backdoors than the shipped version. On what are you basing this?
                Last edited by catpig; 12 December 2023, 04:46 PM.

                Comment

                • #28
                  Originally posted by catpig View Post

                  Your statement implies that the updates are more likely to have spyware and backdoors than the shipped version. On what are you basing this?
                  imagine a telemetry backend changes DNS/IP, authentication or encryption. Updates with bug fixing is not only useful for the end user but also the party spying on you and/or adding backdoors for governments. Sometimes those backdoors get found out and reported as "bugs" and get fixe through software so they need to be able to update their firmware.
                  • Likes 1

                  Comment

                  Previous 1 2 3 template Next
                  Working...
                  X