Linked by Thom Holwerda on Thu 31st May 2012 11:11 UTC
Fedora Core "Fedora 18 will be released at around the same time as Windows 8, and as previously discussed all Windows 8 hardware will be shipping with secure boot enabled by default. [...] We've been working on a plan for dealing with this. It's not ideal, but of all the approaches we've examined we feel that this one offers the best balance between letting users install Fedora while still permitting user freedom." Wait for it... "Our first stage bootloader will be signed with a Microsoft key."
Thread beginning with comment 520104
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Wonderful...
by Risthel on Thu 31st May 2012 12:02 UTC in reply to "Wonderful..."
Member since:

And you are blamming that this is Fedora's fault, because they want the thing working in this "EFI broken Standard" that Engineers created just to make OEM harder to avoid?

Reply Parent Score: 2

RE[2]: Wonderful...
by orestes on Thu 31st May 2012 12:14 in reply to "RE: Wonderful..."
orestes Member since:

Some people would prefer that potential users be screwed over to make a point rather than adopt a simple, if less than ideal solution.

I know someone's going to bring up Fedora's hard line on media codecs when other distros are more flexible so I might as well point out that it's not the same scenario. With the media codecs, there are issues of legality and licensing at play in various countries. Fedora takes the safe path for itself and it's users.

With this the only issues are ethical, and those who feel strongly about it can simply avoid the locked down platforms entirely.

Edited 2012-05-31 12:24 UTC

Reply Parent Score: 2

RE[2]: Wonderful...
by gan17 on Thu 31st May 2012 12:58 in reply to "RE: Wonderful..."
gan17 Member since:

I think Neolander was just lamenting the sorry state of the tech sector in general. He wasn't really singling out Fedora.

Reply Parent Score: 2

RE[2]: Wonderful...
by Neolander on Thu 31st May 2012 14:29 in reply to "RE: Wonderful..."
Neolander Member since:

This is not Fedora's fault in particular, so much as the general way hardware standards work in IT.
-Some big company with lots of cash puts a half-done standard document on the table and says "Okay, here is how things are going to be done now"
-When they become aware of it, smaller actors quickly read the spec, point out the flaws of the new standard and suggest improvements
-Big company refuses to listen
-In the end everyone has to face the consequences of their irresponsible behavior

I couldn't even count the amount of solutions that have been proposed yet to address Secure Boot's shortcomings. Having a central signing authority, using a "keyring" mechanism to accept several signing keys + displaying a clear warning on boot when OS software is signed with an unknown key, allowing OSs to use whatever structure they like instead of forcing NT's executable format and "every driver is in kernel mode" philosophy on everyone...

Secure Boot as it exists today is basically a gigantic "f--k you !" to any OS developer that is not Microsoft or one of their partners. It's just baffling that it could make it into an industry-standard document like the UEFI spec without a reasonable discussion with other OS actors going on first.

Edited 2012-05-31 14:44 UTC

Reply Parent Score: 7