this post was submitted on 25 Jul 2024
315 points (99.1% liked)

Technology

59135 readers
2842 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] Mwa@thelemmy.club 8 points 3 months ago (3 children)

i heard that linux users dont rlly like secure boot

[–] coldy@lemmy.world 18 points 3 months ago (1 children)

I don't speak for all Linux users, but it's not like we don't like the tech or the concept... We don't like it because a lot of the time it's just another way for Microsoft to throw around their weight, you need a valid key to sign your kernel images with to be able to boot another OS instead of Windows, and some motherboards don't support installing your own keys as trusted keys. But usually there are ways around that issue nowadays.

And also it's not an easy process if you're not an advanced user of sorts. You have to know what is entailed, what to use, where to store your keys safely, have a script to re-sign the kernel image every kernel update(which happens every week on something like Arch), etc.

[–] Mwa@thelemmy.club 1 points 3 months ago* (last edited 3 months ago)

ngl i got fedora secure boot working with microsoft uefi keys it required some tinkering

[–] h4lf8yte@lemmy.ml 11 points 3 months ago (1 children)

They don't like it because it's mostly implemented in microsofts favor. It's shipped with microsoft keys by default and needs to be disabled to boot a lot of linux distros. If there was a more unbiased way to load a new os like a default key setup routine at first boot or a preinstalled key for major linux distros they wouldn't be so hostile towards secure boot. The technology isn't bad and it's the only way to not have somebody temper with your system at rest without TPM.

[–] Mwa@thelemmy.club 2 points 3 months ago* (last edited 3 months ago)

i agree and makes sense

[–] Laser@feddit.org -2 points 3 months ago (1 children)

Which is dumb. Secure Boot does make sense (if handled correctly, unlike here).

[–] Mwa@thelemmy.club 1 points 3 months ago* (last edited 3 months ago)