List Archive: gentoo-dev
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
Sascha Cunz <sascha-ml@...> writes:
> You've said yourself, that "some removable media might not require signatures"
> in order to boot. Well, if that is the case, then isn't this defeating the
> whole point of Secure Boot at that stage?
Not necessarily. As has been stated previously, secure boot is not
intended to protect against an attacker who has physical access. So even
if allowing boot from removable media, it does protect against malware
which corrupts/infects the hard drive boot image.