[arch-general] [Bulk] Re: UEFI secure boot

Kevin Chadwick ma1l1ists at yahoo.co.uk
Wed Jun 6 08:26:31 EDT 2012


On Wed, 6 Jun 2012 21:35:15 +1000
John Briggs wrote:

> MS Windows needs secure boot because it is subject to so many malware
> attacks, Arch Linux does not.

Not true. MS needs it more and may well have other motives for how it
is designed like stopping customers from going back to the
shop and installing Win7 instead of Win8 like happened with XP and
Vista.

There are cross platform boot malware that usually target windows and
there are also targetted malware that attacks hardware features like
intels cpu management mode (protected better on modern hardware).

In fact boot is probably the weak link on Unix so if unix was targetted
that would probably be a favourite.

Googles Chrome OS (linux) was possibly the first major commercial
player to try to protect against these things.

Fortress linux thinks it's method is better??

Will Microsoft hike the $99 later if there are no other CAs?


If you haven't signed please do.

http://www.fsf.org/campaigns/secure-boot-vs-restricted-boot/statement


p.s. One good thing, hopefully bios makers will employ decent hashes for
their passwords soon rather than instantly recoverable ones without
hardware access.


More information about the arch-general mailing list