|
Authored by: Anonymous on Tuesday, March 05 2013 @ 06:13 AM EST |
"enable users to sign these blobs with their own keys"
How do people not have the ablility to do this now?[ Reply to This | Parent | # ]
|
|
Authored by: Anonymous on Tuesday, March 05 2013 @ 06:14 AM EST |
Torvalds was right - Linux is big enough, in many devices,
not only just user computers, to have it's own stuff.
The hardware folks just then need to build stuff as approved
for running on LINUX.
If they don't, then they will lose business.
We don't need MS approved hardware, do we?
We all just need to vote with our pocketbooks, and just say
no to the MS lock-in scheme. I thought that Linus, again,
was totally on with his certificate message... as if you
read security papers, certificates can be compromised.
[ Reply to This | Parent | # ]
|
|
Authored by: jesse on Tuesday, March 05 2013 @ 12:28 PM EST |
The "signed blobs" are for use by the UEFI system itself, not the
operating system.
Once the operating system is loaded it will use its own drivers.
The only external drivers used are not Linux drivers, but drivers build for
Windows running with a compatibility shim to interface with.
The only use of signing at this point is the verify that the binary driver being
loaded meets MS requirements...[ Reply to This | Parent | # ]
|
|
Authored by: artp on Tuesday, March 05 2013 @ 12:46 PM EST |
... then any antitrust action will run into the claim that no harm was done.
"Look at all the people using Secure Boot and UEFI already without
complaint." False, but sometimes it works.
I don't expect any antitrust action to relieve this problem in the near future
(not before 2025, at the soonest) so there needs to be a concerted action to
avoid Secure Boot, come up with our own plan for securing PCs, while pointing
out that lipstick on the pig does not make the pig secure.
Cooperating with Microsoft is NEVER a good idea. Don't go there.
Perhaps it is time for Free Software to address the hardware angle, in a higher
profile than the Free BIOS project at FSF. It needs to be a complete plan, not
just bits and pieces. And it needs to be adopted by hardware manufacturers,
which has been the root of the problem since IBM dropped the other two OS
options on the original IBM PC back in 1983. This is hitting us at our weak
point.
---
Userfriendly on WGA server outage:
When you're chained to an oar you don't think you should go down when the galley
sinks ?[ Reply to This | Parent | # ]
|
|
|
|
|