[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-promo
Subject:    Re: [kde-promo] Secure boot
From:       Pau Garcia i Quiles <pgquiles () elpauer ! org>
Date:       2011-10-20 15:40:10
Message-ID: CAKcBokskExk3WdHrcUJc-gYp5ggvb8vB9d2H_xzxkj3_g0yYFw () mail ! gmail ! com
[Download RAW message or body]

[Attachment #2 (multipart/alternative)]


> From your blogpost...
> "Given that there is no Secure Boot Certification Authority, Microsoft
> asked BIOS (UEFI) developers and manufacturers to include their
> certificates, which looks 100% logical to me. The fact that Linux
> distributions do not have such power is unfortunate, but it is not
> Microsoft’s fault at all."
>
> It is just an accident. They just asked for their certificates to be
> included. They didn't do anything wrong. I've watched Microsoft pull
> this for years...do whatever they can get away with. Include
> Microsoft's proprietary and partially implemented OOXML as an open
> standard? Well it came to a vote; it's not Microsoft's fault that
> their distributors crashed the proceedings.
>
>
Red Hat and others were at the working group for UEFI Secure Boot. They did
not ask for a SBCA.

Apparently everybody was talking about signing code and certificates in UEFI
but nobody put any thinking on how to get the certificates in the mainboard.


-- 
Pau Garcia i Quiles
http://www.elpauer.org
(Due to my workload, I may need 10 days to answer)

[Attachment #5 (text/html)]

<br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 \
.8ex;border-left:1px #ccc solid;padding-left:1ex;">
> From your blogpost...<br>
<div class="im">&quot;Given that there is no Secure Boot Certification Authority, \
Microsoft<br> asked BIOS (UEFI) developers and manufacturers to include their<br>
certificates, which looks 100% logical to me. The fact that Linux<br>
distributions do not have such power is unfortunate, but it is not<br>
</div>Microsoft’s fault at all.&quot;<br>
<br>
It is just an accident. They just asked for their certificates to be<br>
included. They didn&#39;t do anything wrong. I&#39;ve watched Microsoft pull<br>
this for years...do whatever they can get away with. Include<br>
Microsoft&#39;s proprietary and partially implemented OOXML as an open<br>
standard? Well it came to a vote; it&#39;s not Microsoft&#39;s fault that<br>
their distributors crashed the proceedings.<br \
clear="all"><br></blockquote><div><br>Red Hat and others were at the working group \
for UEFI Secure Boot. They did not ask for a SBCA. <br><br>Apparently everybody was \
talking about signing code and certificates in UEFI but nobody put any thinking on \
how to get the certificates in the mainboard.<br>

 <br></div></div><br>-- <br>Pau Garcia i Quiles<br><a \
href="http://www.elpauer.org">http://www.elpauer.org</a><br>(Due to my workload, I \
may need 10 days to answer)<br>



_______________________________________________
This message is from the kde-promo mailing list.

Visit https://mail.kde.org/mailman/listinfo/kde-promo to unsubscribe, set digest on \
or temporarily stop your subscription.



[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic