Language Selection

English French German Italian Portuguese Spanish

Linux UEFI compromise reasonable, still sucks

Filed under
Linux

Life is full of trade-offs, and many times they are not palatable for every side. Such was the trade-off proposed by Fedora developers this week to solve the upcoming obstacle of UEFI secure booting on Windows 8-certified machines.

Red Hat developer Matthew Garrett has been trying to find a solution for this major obstacle since he brought it to public attention last Fall. Last week, his proposal sent shockwaves through the community. Rather than create a Fedora-specific key that could unlock the UEFI secure boot feature (but only for Fedora), Garrett and his team are proposing a more open two-stage bootloader approach.

After paying a one-time $99 certification fee to Verisign for a Microsoft-signed certificate, the first-stage bootloader will have one job: boot to a second bootloader that's signed with a Fedora key and have the second bootloader (Grub 2.0) roll into Fedora or whatever the user chooses.

Rest here




not reasonable

I find it typical of MS. They prefer to remove competition instead of making a more secure OS. nothing new here except seeing them find a new way to try to keep a grasp on their installed base, without which and their non-compete practices, they would have sunk by now.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Security: Updates, Intel, Torvalds

  • Security updates for Tuesday
  • Intel: We've found severe bugs in secretive Management Engine, affecting millions
    Thanks to an investigation by third-party researchers into Intel's hidden firmware in certain chips, Intel decided to audit its firmware and on Monday confirmed it had found 11 severe bugs that affect millions of computers and servers. The flaws affect Management Engine (ME), Trusted Execution Engine (TXE), and Server Platform Services (SPS).
  • Open Source Security Podcast: Episode 71 - GitHub's Security Scanner
    Josh and Kurt talk about GitHub's security scanner and Linus' security email. We clarify the esoteric difference between security bugs and non security bugs.
  • Linus Torvalds 'sorry' for swearing, blames popularity of Linux itself
    Linux overlord Linus Torvalds has apologised – a bit – for calling some security-centric kernel contributors “f*cking morons”. Torvalds unleashed a profanity-laden rant at Google developer Kees Cook, over the latter's proposal to harden the kernel. Another Google security chap, Matthew Garret, asked Torvalds “ Can you clarify a little with regard to how you'd have liked this patchset to look?” To which Torvalds responded that “I think the actual status of the patches is fairly good with the default warning.”

Benchmarks: Linux Power Use, Sabrent EC-SS31, Phoronix Test Suite 7.6 M3

LinuxAndUbuntu Review Of Ubuntu MATE 17.10

Ubuntu Mate 17.10 is a pretty stable and rock solid distribution which has got most things right. There is nothing unlikable about the distro. However, I feel it could have been a lot better if they had allowed 4 windows to be snapped on each corners and done something about the opaque top panel. The software included are very much standard and even though some of their names have been changed we all know what’s under the hood. Overall Experience has been good. Having already tested Ubuntu with Gnome 3, I can say that Ubuntu Mate 17.10 feels a lot faster and quicker in terms of GUI response. Read more

Compact carrier turns Nvidia Jetson TX2 into an SBC

Aetina’s “ACE-N510” carrier for the Linux-powered Jetson TX1 and TX2 measures only 87 x 50mm, and offers HDMI, 2x USB 3.0, 2x CAN, and optional -20 to 70°C. When Aetina recently unveiled its Nano-ITX (120 x 120mm) ACE-N261 carrier for Nvidia’s Jetson TX2 and earlier, pin-compatible Jetson TX1 COMs, it mentioned an upcoming ACE-N510 that was even smaller. Now we have the details on the little beastie, which like Connect Tech’s Sprocket Jetson carrier, has a compact 87 x 50mm footprint that matches the Jetson modules it stacks on. The ACE-N510 is designed for smart cameras, robots, drones, industrial inspection, mobile medical, and deep learning. Read more