|
Authored by: jbb on Sunday, March 03 2013 @ 01:54 PM EST |
This is about Linus vehemently rejecting a patch submitted by MG that allows the
kernel to (optionally) trust the keys the user/owner has installed in the
firmware. Which keys the user/owner chooses to trust and who signs what with
which keys is a side issue that IMO got blown way out of proportion.
Perhaps
Linus misunderstood that those keys are controlled by the user/owner and not by
Microsoft. Or maybe MG and I don't understand the point Linus was trying to
make.
This is definitely not about Linus using signed modules to
prevent people from loading binary Nvidia modules because Linus himself
suggested self-signing so under his proposed scheme signing the binary Nvidia
module is just as easy as signing any other module.
--- Our job is to
remind ourselves that there are more contexts
than the one we’re in now — the one that we think is reality.
-- Alan Kay [ Reply to This | Parent | # ]
|
|
|
|
|