Trusted Boot in Fedora
Peter Jones
pjones at redhat.com
Thu Jun 30 13:44:31 UTC 2011
On 06/29/2011 02:07 AM, Adam Williamson wrote:
> On Tue, 2011-06-28 at 10:01 -0400, Adam Jackson wrote:
>> On Tue, 2011-06-28 at 09:59 +0200, Nicolas Mailhot wrote:
>>>
>>> Le Lun 27 juin 2011 15:12, Miloslav Trmač a écrit :
>>>
>>>> Placing trust in the manufacturer of the hardware puts the user in no
>>>> worse position than they were before.
>>>
>>> I don't call placing absolute vetting power in bios writer hands "no worse
>>> position". I don't thing anyone can point to a "good" bios on real world
>>> hardware.
>>
>> I appreciate the disdain - no, really, trust me, I do - but you should
>> realize that SMM means you already may have no control over the machine.
>
> Well, the fact that BIOSes aren't open source means that anyway. As far
> as we the users are concerned, the BIOS is black box code which runs
> with the ultimate in administrative privileges.
That's not as true as it used to be:
https://edk2.svn.sourceforge.net/svnroot/edk2/trunk/edk2/
Most system vendors that ship this still have a bizarre belief that some
drivers should remain proprietary, but other than that many are shipping
fairly pristine checkouts.
--
Peter
More information about the devel
mailing list