On 11/5/19 3:07 AM, Florian Weimer wrote: > * nipponmail: > >> Getting GNU/Linux onto a laptop these days is quite the difficulty if >> you don't know what you're doing because of Secure Boot. It's not a plug >> and play thing like once it was. Probably discourages alot of users. > > Sure, and that was totally predictable. But what can we do when > *everyone*, including the FSF, supports Secure Boot? > > (Admittedly, Debian was very late to join and did not further the > Secure Boot cause.) >
There is a good reason for that. Now that uefi is implemented, the book drive is a fully operating OS in its own right. Now I think that is stupid, but that is the facts. Machines can not be secured without secure boot because open access to physical hardware means access to a fully operating system in the book loader. It essentially is running a watered down version of the jave virtual machine. http://www.nylxs.com/docs/journal_2_2015.pdf -- So many immigrant groups have swept through our town that Brooklyn, like Atlantis, reaches mythological proportions in the mind of the world - RI Safir 1998 http://www.mrbrklyn.com DRM is THEFT - We are the STAKEHOLDERS - RI Safir 2002 http://www.nylxs.com - Leadership Development in Free Software http://www.brooklyn-living.com Being so tracked is for FARM ANIMALS and extermination camps, but incompatible with living as a free human being. -RI Safir 2013
