Supposed error in UEFI Secure Boot Guide
Eric H. Christensen
sparks at fedoraproject.org
Thu Mar 7 15:15:49 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Thu, Mar 07, 2013 at 01:47:45PM +0100, Antonio wrote:
> Hi all.
>
> While I translated the UEFI Secure Boot Guide in Italian, I'm stumbled
> on this sentence (at the end of
> http://docs.fedoraproject.org/en-US/Fedora/18/html/UEFI_Secure_Boot_Guide/sect-UEFI_Secure_Boot_Guide-What_is_Secure_Boot-Microsoft_Implementation.html#idm507968):
>
> > Hibernation is not disabled, which may provide a venue to
> > circumvent UEFI Secure Boot.
>
> I know of UEFI problems on systems with activated hibernation and,
> reading that sentence, I understand that hibernation can provide a way
> to bypass UEFI Secure Boot. So is it correct ?
Fedora disables hibernation when using Secure Boot. There could be an attack vector there and the only way to remedy it is to disable hibernation.
I'll be releasing the next round of changes to the guide that include a fix to this line to reduce the confusion.
- -Eric
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.13 (GNU/Linux)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=BELH
-----END PGP SIGNATURE-----
More information about the trans
mailing list