Gentoo Archives: gentoo-dev

From: Greg KH <gregkh@g.o>
To: gentoo-dev@l.g.o
Subject: Re: [gentoo-dev] UEFI secure boot and Gentoo
Date: Sat, 16 Jun 2012 00:03:30
Message-Id: 20120616000141.GF9885@kroah.com
In Reply to: Re: [gentoo-dev] UEFI secure boot and Gentoo by Philip Webb
On Fri, Jun 15, 2012 at 01:48:05AM -0400, Philip Webb wrote:
> 120614 Greg KH wrote: > > So, anyone been thinking about this? I have, and it's not pretty. > > Should I worry about this and how it affects Gentoo > > or not worry about Gentoo right now and just focus on the other issues? > > Minor details like, "do we have a 'company' that can pay Microsoft > > to sign our bootloader?" is one aspect from the non-technical side. > > I did a lot of UEFI secure boot work in the past at SUSE > > and should be soon a member of the UEFI "organization" > > through my work at the Linux Foundation, so I do have a basic grasp > > of the issues involved and have a chance to get changes made, > > if needed and possible, to the spec itself. > > Does this affect those of us who build our own machines ?
Yes, it will be on your new motherboard in a matter of months.
> Is there likely to be any Gentoo user > who is reluctant to change the default BIOS setting ?
Probably lots.
> How can UEFI be required for Arm without running into anti-trust ?
Different countries have different rules here.
> How far is this basically a problem for those in the USA, > the rest of us having a different attitude to security issues ?
Everyone in all countries are going to have to deal with this, as all motherboard manufacturers are going to be supporting this by the end of this year at the latest, due to the Windows 8 requirements. greg k-h

Replies

Subject Author
Re: [gentoo-dev] UEFI secure boot and Gentoo Philip Webb <purslow@××××××××.net>