Announcement

**billyswong** · 13 September 2021, 09:49 AM

Hi, anyone know what exactly is that key revocation? Is it a one-time issue or are all Ubuntu installation media, present and future, contain a hidden time limit in boot-ability?

**DanL** · 13 September 2021, 10:01 AM

Originally posted by billyswong View Post

Hi, anyone know what exactly is that key revocation?

I think it means SecureBoot sucks.

**archkde** · 13 September 2021, 10:54 AM

Originally posted by billyswong View Post

Hi, anyone know what exactly is that key revocation? Is it a one-time issue or are all Ubuntu installation media, present and future, contain a hidden time limit in boot-ability?

The Secure Boot signature of the old bootloader had to be revoked due to a security vulnerability which was discovered in that bootloader. There is no fixed time limit, but it is possible that other images share a similar fate when their bootloaders are found vulnerable again.

**stormcrow** · 13 September 2021, 08:32 PM

Originally posted by DanL View Post

I think it means SecureBoot sucks.

The theory is sound. The implementations of it, especially the shim idea, sucks. This could be a useful security feature if used properly. Just that most of the time it isn't. Kinda like people just turning off SELinux instead of working with it. :P

**arQon** · 19 September 2021, 02:20 AM

Originally posted by stormcrow View Post

The theory is sound.

Not really. The core idea that *someone else* gets to decide what you can and can't run on your hardware is utter bullshit. As long as the only "people" who get keys are multi-billion dollar corporations, the concept will remain nothing but a failure of a scam that's all about restricting user choice, not security.

Announcement

Ubuntu 18.04.6 LTS Special Being Prepared To Deal With Unbootable Media

Ubuntu 18.04.6 LTS Special Being Prepared To Deal With Unbootable Media

Comment

Comment

Comment

Comment

Comment