See also bug 1715527
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/694328
Title:
Third-party software option is confusing and misleading
To manage notifications about this bug go to:
See Bug 1564119 - the optimum is not reached yet
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/694328
Title:
Third-party software option is confusing and misleading
To manage notifications about
it is true for the case where you do "real secure boot" .. today ubuntu
does not do that (there is currently no enforcing of signed modules o4r
signed initrd images) ...
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
After installing 16.04 without third-party drivers and with Secure Boot
still enabled, I clicked on Additional Drivers in Software & Updates
settings, and selected the one available driver, microcode firmware for
Intel CPUs. After rebooting, the setting still shows "1 proprietary
driver in use".
true secure boot (as matthew garret wants ubuntu to do for example)
means that only modules that were signed by the same key the kernel was
signed with at build time (i.e. the ubuntu archive key) can actually be
loaded at all ... so this excludes nvidia and friends who deliver a
binary blob.
--
Why is it the case that "installing third-party drivers requires turning
off Secure Boot"?
Is there a technical reason, or is it purely a policy decision (there's
no chain of trust, so Ubuntu isn't going to take responsibility for
security)? It's not explained either in the "Learn more..." popup
I was probably wrong to think that people would understand what “this”
in a checkbox referred to, if understanding it required reading a
39-word paragraph beforehand. Adding separators to group the paragraph
with the checkbox, as I suggested, might have helped a little but not
much.
So, I’ve