Re: [RFC] Second attempt at kernel secure boot support
From: Florian Weimer <hidden>
Date: 2012-11-05 21:44:13
Also in:
lkml
Possibly related (same subject, not in this thread)
- 2012-11-08 · Re: [RFC] Second attempt at kernel secure boot support · Alan Cox <hidden>
- 2012-11-08 · Re: [RFC] Second attempt at kernel secure boot support · James Courtier-Dutton <hidden>
- 2012-11-07 · Re: [RFC] Second attempt at kernel secure boot support · Matthew Garrett <mjg59@srcf.ucam.org>
- 2012-11-06 · Re: [RFC] Second attempt at kernel secure boot support · Matthew Garrett <mjg59@srcf.ucam.org>
- 2012-11-06 · Re: [RFC] Second attempt at kernel secure boot support · Alan Cox <hidden>
* James Bottomley:
Right, but what I'm telling you is that by deciding to allow automatic first boot, you're causing the windows attack vector problem. You could easily do a present user test only on first boot which would eliminate it.
Apparently, the warning will look like this: WARNING: This Binary is unsigned Are you sure you wish to run an unsigned binary in a secure environment? To avoid this question in future place the platform into setup mode See http://www.linuxfoundation.org/uefi-setup-mode And reboot. I'm not convinced this will work because users will confirm their presence to get back into the system. We expect GNU/Linux users to do it, why wouldn't Windows users? (And what harm can an unsigned binary do to a "secure environment", anyway? If it's adversely affected, it can't be that secure, can it?) And what's the backup plan if users use this to boot into compromised Windows systems?