Linked by Thom Holwerda on Thu 31st May 2012 11:11 UTC
Fedora Core "Fedora 18 will be released at around the same time as Windows 8, and as previously discussed all Windows 8 hardware will be shipping with secure boot enabled by default. [...] We've been working on a plan for dealing with this. It's not ideal, but of all the approaches we've examined we feel that this one offers the best balance between letting users install Fedora while still permitting user freedom." Wait for it... "Our first stage bootloader will be signed with a Microsoft key."
Thread beginning with comment 520187
To view parent comment, click here.
To read all comments associated with this story, please click here.
rr7.num7
Member since:
2010-04-30

"In x86 the vendor should provide a non-secure-boot option in the firmware.


I feel like I have to point out that the spec actually does NOT mandate this. The manufacturer can implement such a non-secure-boot option, but they are not required to. And if they aren't required to do that, well, feel free to guess how many manufacturers will do that.
"

The spec doesn't mandate it, but Microsoft does. According to Windows 8 Hardware Certification Requirements:

MANDATORY: Enable/Disable Secure Boot. On non-ARM systems, it is required to implement the ability to disable Secure Boot via firmware setup. A physically present user must be allowed to disable Secure Boot via firmware setup without possession of Pkpriv.

Reply Parent Score: 4

Alfman Member since:
2011-01-28

One shouldn't have to disable UEFI secure boot in the first place for alternate operating systems. There wouldn't be a complaint if the spec/certification required owners be able to change their keys to non-microsoft vendors....and of course the freedom to do it on ARM as well.

Edited 2012-05-31 18:03 UTC

Reply Parent Score: 2