Language Selection

English French German Italian Portuguese Spanish

Secure Boot bootloader for distributions available now

Filed under
Linux
Software

I'm pleased to say that a usable version of shim is now available for download. As I discussed here, this is intended for distributions that want to support secure boot but don't want to deal with Microsoft. To use it, rename shim.efi to bootx64.efi and put it in /EFI/BOOT on your UEFI install media. Drop MokManager.efi in there as well. Finally, make sure your bootloader binary is called grubx64.efi and put it in the same directory.

Now generate a certificate and put the public half as a binary DER file somewhere on your install media. On boot, the end-user will be prompted with a 10-second countdown and a menu. Choose "Enroll key from disk" and then browse the filesystem to select the key and follow the enrolment prompts. Any bootloader signed with that key will then be trusted by shim, so you probably want to make sure that your grubx64.efi image is signed with it.

rest here




More in Tux Machines

Devices/Embedded: ADL, Axiomtek, and FUD From Proprietary Embedded Software Firms

Games: Deep Sixed, Lazy Galaxy, Gladiabots, Railway Empire, Hypergate, Total War Saga: Thrones of Britannia

Sailfish OS 2.1.4 is now available to early access

After a few productive months of development, we are ready to release the next Sailfish OS update named Lapuanjoki to the early access group! Lapuanjoki is named after the town of Lapua, located in Southern Ostrobothnia region, flowing from lake Sampalampi to the Gulf of Bothnia. Read more Also: Jolla Pushes Out Sailfish OS 2.1.4 Into Early Access

Today in Techrights