Linked by Thom Holwerda on Wed 21st Sep 2011 22:06 UTC, submitted by kragil
Windows After the walled garden coming to the desktop operating system world, we're currently witnessing another potential nail in the coffin of the relatively open world of desktop and laptop computing. Microsoft has revealed [.pptx] that as part of its Windows 8 logo program, OEMs must implement UEFI secure boot. This could potentially complicate the installation of other operating systems, like Windows 7, XP, and Linux.
Permalink for comment 490423
To read all comments associated with this story, please click here.
RE[5]: Comment by OSbunny
by lemur2 on Fri 23rd Sep 2011 00:01 UTC in reply to "RE[4]: Comment by OSbunny"
lemur2
Member since:
2007-02-17

Put another way, if the Debian openssl maintainer was malicious, we can clearly see that no OSS safeguard would protect against large scale compromise of machines. Plausible code can be included and distributed without sufficient review to ensure that it's secure.


No machines were compromised. The mistake that the Debian maintainer made reduced the security of machines by reducing the randomness of generated keys.

The machines were less secure than they should have been, but not insecure.

No one can guarantee that there is no unintentional bug in code. No one is claiming any such a thing anyway.

You are the one who is making the extraordinary claim that it is possible to put intentional malware into an open source product and then have it distributed to end users using the repository system, yet you have absolutely zero instances when this has ever happened.

Put up or shut up.

Edited 2011-09-23 00:05 UTC

Reply Parent Score: 3