Linked by Thom Holwerda on Fri 22nd Jun 2012 23:17 UTC
Ubuntu, Kubuntu, Xubuntu After Fedora, Ubuntu has now also announced how it's going to handle the nonsense called "Secure" Boot. The gist: they'll use the same key as Fedora, but they claim they can't use GRUB2. "In the event that a manufacturer makes a mistake and delivers a locked-down system with a GRUB 2 image signed by the Ubuntu key, we have not been able to find legal guidance that we wouldn't then be required by the terms of the GPLv3 to disclose our private key in order that users can install a modified boot loader. At that point our certificates would of course be revoked and everyone would end up worse off." So, they're going to use the more liberally licensed efilinux loader from Intel. Only the bootloader will be signed; the kernel will not.
Thread beginning with comment 523412
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: meh
by Hypnos on Sat 23rd Jun 2012 01:50 UTC in reply to "meh"
Hypnos
Member since:
2008-11-19

Preventing the loading of unauthorized boot code is potentially quite useful.

However, unless Secure Boot allows you to sign your own software and upload your own keys easily, it comes at the cost of using your hardware as you see fit.

In general, this is the cost of "appliance-ware" in which hardware and software are bundled and difficult to tease apart.

This is not only a problem for Linux, but any software and hardware freedom -- your only remaining option is to choose between bundles.

Edited 2012-06-23 01:52 UTC

Reply Parent Score: 6