@itsfoss

I've never fully understood the secure boot thing.

In summary, does any open source binary need to be signed by Microsoft in order for it to be loaded on most hardware which will have MS keys pre-loaded.

Doe that mean hobbyist opens source can't load because they don't have the relationship with MS that Canonical and Redhat do?

What about BSDs?

Tell me I'm wrong!

#opensource #linux

Follow

@rzeta0 @itsfoss Normally you can disable Secure Boot and then any OS will boot.

A more secure solution would be to get a distro signed by MS (or a distro which signs everything using its own key and then add that key to your allowed key list in UEFI).

For most security, you could get a distro which signs everything using its own key, and then set UEFI to allow only this key and no other. This would prevent dual-boot with Windows though.

Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml