Language Selection

English French German Italian Portuguese Spanish

Supporting third-party keys in a Secure Boot world

Filed under
Linux

It's fairly straightforward to boot a UEFI Secure Boot system using something like Shim or the Linux Foundation's loader, and for distributions using either the LF loader or the generic version of Shim that's pretty much all you need to care about. The physically-present end user has had to explicitly install new keys or hashes, and that means that you no longer need to care about Microsoft's security policies or (assuming there's no exploitable flaws in the bootloader itself) fear any kind of revocation.

But what about if you're a distribution that cares about booting without the user having to install keys? There's several reasons to want that (convenience for naive users, ability to netboot, that kind of thing), but it has the downside that your system can now be used as an attack vector against other operating systems. Do you care about that? It depends how you weigh the risks. First, someone would have to use your system to attack another. Second, Microsoft would have to care enough to revoke your signature.

rest here




More in Tux Machines

Calligra 2.9.0 is Out

Packages for the release of KDE's document suite Calligra 2.9 are available for Kubuntu 14.10. You can get it from the Kubuntu Backports PPA. They are also in our development version Vivid. Read more

Latest Nvidia Shield player runs Android TV on Tegra X1

Nvidia’s $199 STB version of Nvidia Shield runs Android TV on a Tegra X1, and boasts 4K video, 50 optimized games, and game streaming from a “Grid” service. The 2015 set-top box version of the Nvidia Shield follows two earlier models, including 2013’s original handheld Shield game console, now called the Nvidia Shield Portable, which was based on the Nvidia Tegra 4 system-on-chip. Last year, the chip designer-cum-hardware developer released an Nvidia Shield Tablet built around a more powerful Tegra K1 SoC with Kepler graphics, and featuring new stylus and WiFi Direct gaming controller. Read more Also: NVIDIA 346.47 Linux Drivers Launched with Support for New GPUs

​Companies really want Linux-savvy employees and they want them now

According to the Linux Foundation and tech job company Dice, in the 2015 Linux Jobs Report, "Nearly all hiring managers are looking to recruit Linux professionals." While programmers and Linux system administrators are in high demand, your chances of landing a great job are greater if you have cloud, security, and/or software defined networking (SDN) skills. In particular, "42 percent of hiring managers say experience with or knowledge of OpenStack and CloudStack are having a big impact on their Linux hiring decisions" while "49 percent of Linux professionals believe open cloud will be the biggest growth area for Linux in 2015." Read more

Ubuntu 15.04 Flavors Beta 1 Available to Download

Ubuntu 15.04 flavors have a first beta version, it now available to download and install for testing. In this release, There are only available images for Kubuntu, Lubuntu, Ubuntu Gnome, Ubuntu Kylin, Ubuntu MATE, Xubuntu and ubuntu cloud. Read more