Announcement

Collapse
No announcement yet.

The State Of Linux Distributions Handling SecureBoot

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • phoronix
    started a topic The State Of Linux Distributions Handling SecureBoot

    The State Of Linux Distributions Handling SecureBoot

    Phoronix: The State Of Linux Distributions Handling SecureBoot

    For those of you curious about the state of available Linux distributions that can handle UEFI SecureBoot on modern PCs certified for Microsoft Windows 8, here's a run-down of the most common Linux environments and their SecureBoot friendliness...

    http://www.phoronix.com/vr.php?view=MTI2MzI

  • JanC
    replied
    Originally posted by duby229 View Post
    MS essentially said... "Lets make up some imaginary boot loader virus so we can fuck linux!"

    Windows 8 is still gonna get just as comprimised as every other windows has ever been. And booting linux doesnt have a single damn thing to do with that.
    There are linux & unix bootkits too, even more, there is at least one PoC research bootkit that attacks both Windows AND linux...

    Leave a comment:


  • JanC
    replied
    Originally posted by spstarr View Post
    I remember the Stoned MBR boot virus, but it was easy to fix, as is many of them *if* you have a bootable CD/DVD, you can just clobber the MBR accordingly (tough, if the virus installed DLLs/DSOs, kernel modules whatever then you need to do a audit of system which isn't too difficult with deb or RPM based packages (checksums), worse if those got compromised somehow, while on a recovery DVD, you could just clobber the essential DSOs (libraries), kernel modules etc (with compatible older package versions)
    Having to boot from a bootable CD/DVD on every reboot to make sure that what you boot is okay is not very user-friendly, is it? (Not to mention that any capable IT department disables booting from external media, and they sure don't want to check thousands of PCs like that every week either.)

    Leave a comment:


  • smitty3268
    replied
    Originally posted by Rexilion View Post
    Stating your insult is worthwhile, but stating the reason to do so is not. I rest my case .
    No, it wasn't worthwhile either, as evidenced by this conversation.

    Leave a comment:


  • Rexilion
    replied
    Originally posted by smitty3268 View Post
    I really don't think that would be worthwhile. It wouldn't be anything that hasn't already been said 100 times.
    Stating your insult is worthwhile, but stating the reason to do so is not. I rest my case .

    Leave a comment:


  • smitty3268
    replied
    Originally posted by Rexilion View Post
    Care to elaborate your insult? This is a forum, people state opinions. Those cannot be wrong. What facts are incorrect?
    I really don't think that would be worthwhile. It wouldn't be anything that hasn't already been said 100 times.

    Leave a comment:


  • Rexilion
    replied
    Originally posted by smitty3268 View Post
    I read half this thread, and now feel dumber for doing so.

    It's incredible how completely stupid some people are, how they are so sure of themselves when they are talking complete crap that is factually wrong.
    Care to elaborate your insult? This is a forum, people state opinions. Those cannot be wrong. What facts are incorrect?

    Leave a comment:


  • smitty3268
    replied
    Wow

    I read half this thread, and now feel dumber for doing so.

    It's incredible how completely stupid some people are, how they are so sure of themselves when they are talking complete crap that is factually wrong.

    Leave a comment:


  • mjg59
    replied
    Originally posted by duby229 View Post
    That is sooooo much crap. What if you need to boot a small linux distro thats sole purpose is to circomvent windows user passwords? I do it on a regular basis as a repair tech. Is secureboot going to allow that perfectly valid usage? I doubt it.
    It already does.

    Leave a comment:


  • duby229
    replied
    Originally posted by Rexilion View Post
    Then please explain Microsoft distributing signed bootloader binaries.

    To put it in analogy with your story: You can throw rocks at my window as long as I inspected and signed them...
    That is sooooo much crap. What if you need to boot a small linux distro thats sole purpose is to circomvent windows user passwords? I do it on a regular basis as a repair tech. Is secureboot going to allow that perfectly valid usage? I doubt it.

    Leave a comment:

Working...
X