Linked by Howard Fosdick on Thu 6th Dec 2012 05:26 UTC
OSNews, Generic OSes With computers now shipping with UEFI Secure Boot enabled, users of any OS other than Windows 8 will want to know how to circumvent it. Jesse Smith of DistroWatch tells how he did it here. The Linux Foundation describes its approach here. If you want to boot an OS other than Windows 8, you'll want to figure this out before you buy that new computer.
Permalink for comment 544544
To read all comments associated with this story, please click here.
RE[7]: Fedora Shim
by Alfman on Fri 7th Dec 2012 22:40 UTC in reply to "RE[6]: Fedora Shim"
Alfman
Member since:
2011-01-28

ssokolow,

"You honestly expect motherboard manufacturers to obsessively release patches for every single motherboard they offer for the entire 5-10 year lifespan of the manufactured boards and not screw up getting them actually installed in the end users' PCs?"

The good ones will offer updates to older MBs retroactively, the others will only fix it going forward. Either way real defections seem unlikely.

"I seriously doubt motherboard manufacturers are prepared to handle reliably providing ongoing security fixes for what is essentially a small operating system."

There's a huge technical difference. A real OS has to be secure while running arbitrary user programs. With UEFI, you'll be hard pressed to find the opportunity to run your code in the first place because it's not authorized. So you might have to find an OS level vulnerability to get system access in order to exploit the UEFI vulnerability.

Although that's likely to happen eventually, it would become more useful to real hackers than users who just want to run linux. Once the windows vulnerability gets fixed, the UEFI one becomes inaccessible again.

Edited 2012-12-07 22:44 UTC

Reply Parent Score: 2