Linked by Thom Holwerda on Fri 22nd Jun 2012 23:17 UTC
Ubuntu, Kubuntu, Xubuntu After Fedora, Ubuntu has now also announced how it's going to handle the nonsense called "Secure" Boot. The gist: they'll use the same key as Fedora, but they claim they can't use GRUB2. "In the event that a manufacturer makes a mistake and delivers a locked-down system with a GRUB 2 image signed by the Ubuntu key, we have not been able to find legal guidance that we wouldn't then be required by the terms of the GPLv3 to disclose our private key in order that users can install a modified boot loader. At that point our certificates would of course be revoked and everyone would end up worse off." So, they're going to use the more liberally licensed efilinux loader from Intel. Only the bootloader will be signed; the kernel will not.
Thread beginning with comment 523469
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: meh
by Soulbender on Sat 23rd Jun 2012 13:51 UTC in reply to "meh"
Soulbender
Member since:
2005-08-18

Security. Being able to shove any boot code in a system is a security risk


Yeah, sure, until one of the companies that has had their keys signed by MS have their private keys leaked and it's a matter of when, not if. When that happens everyone is screwed and back to square one.
Not to mention that this "security" measure in no way will prevent companies from installing malware or rootkits.
Trusting big business to do what's right and safe for you? Never a good idea.

Reply Parent Score: 2