Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-dev
Navigation:
Lists: gentoo-dev: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-dev@g.o
From: Rich Freeman <rich0@g.o>
Subject: Re: Re: UEFI secure boot and Gentoo
Date: Sun, 17 Jun 2012 13:17:40 -0400
On Sun, Jun 17, 2012 at 1:06 PM, Michał Górny <mgorny@g.o> wrote:
> On Sun, 17 Jun 2012 09:55:35 -0700
> Greg KH <gregkh@g.o> wrote:
>
>> On Sun, Jun 17, 2012 at 05:51:04PM +0200, Michał Górny wrote:
>> > 2. What happens if, say, your bootloader is compromised?
>>
>> And how would this happen?  Your bootloader would not run.
>
> Yes. I'm asking what happens next. Is there an easy way to replace it?
> Or is your computer bricked until you run some other bootloader to
> replace the compromised one?

My understanding is that there are a few options here.

One is to simply re-image the system, either directly (as any vendor
does), or after booting off of removable media.  I'd have to re-read
the spec but some of those might not require signatures, and in any
case ones with valid signatures should be available.  You can of
course disable secure boot or go into custom mode as well which lets
you do whatever you want until you have the system back in a bootable
state.

If you're running Windows 8 I believe they plan to have a recovery
partition as well, which will be signed and bootable and which is
designed to recover the OS.

Rich


References:
UEFI secure boot and Gentoo
-- Greg KH
Re: UEFI secure boot and Gentoo
-- Duncan
Re: Re: UEFI secure boot and Gentoo
-- Florian Philipp
Re: Re: UEFI secure boot and Gentoo
-- Michał Górny
Re: Re: UEFI secure boot and Gentoo
-- Florian Philipp
Re: Re: UEFI secure boot and Gentoo
-- Michał Górny
Re: Re: UEFI secure boot and Gentoo
-- Greg KH
Navigation:
Lists: gentoo-dev: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: Re: UEFI secure boot and Gentoo
Next by thread:
Re: Re: UEFI secure boot and Gentoo
Previous by date:
Re: Re: UEFI secure boot and Gentoo
Next by date:
Re: Re: UEFI secure boot and Gentoo


Updated Jun 29, 2012

Summary: Archive of the gentoo-dev mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.