On 6/25/22 07:56, Roberto Ragusa wrote:
> On 6/19/22 22:54, Sharpened Blade via devel wrote:
>
>> Use unified kernel images by default for new releases. This can allow for
>> the local installation to sign the kernel and the initrd, so the boot chain
>> can be verified until after the uefi.
>
> How big is the demand for this kind of lockdown?
> As a since-last-century Linux user, I'm choosing Fedora
> exactly to NOT have all this signing/trusted boot
> complications on my systems and I do not see a reason
> to turn Fedora into Android (or, worse, iOS).
It’s necessary for secure boot to actually be meaningful in
practice. I expect that people who care about secure boot
will want this.
--
Sincerely,
Demi Marie Obenour (she/her/hers)
_______________________________________________
devel mailing list -- devel@lists.fedoraproject.org
To unsubscribe send an email to devel-le...@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
Do not reply to spam on the list, report it:
https://pagure.io/fedora-infrastructure
