From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailman by lists.gnu.org with archive (Exim 4.43) id 1KbKc5-00067b-LC for mharc-grub-devel@gnu.org; Thu, 04 Sep 2008 15:35:29 -0400 Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1KbKc3-00067G-U1 for grub-devel@gnu.org; Thu, 04 Sep 2008 15:35:27 -0400 Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1KbKc3-000672-2Q for grub-devel@gnu.org; Thu, 04 Sep 2008 15:35:27 -0400 Received: from [199.232.76.173] (port=55623 helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1KbKc2-00066z-TM for grub-devel@gnu.org; Thu, 04 Sep 2008 15:35:26 -0400 Received: from aybabtu.com ([69.60.117.155]:44034) by monty-python.gnu.org with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.60) (envelope-from ) id 1KbKc2-0004Dx-E6 for grub-devel@gnu.org; Thu, 04 Sep 2008 15:35:26 -0400 Received: from [192.168.10.10] (helo=thorin) by aybabtu.com with esmtps (TLS-1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.69) (envelope-from ) id 1KbKRZ-0008FQ-KU for grub-devel@gnu.org; Thu, 04 Sep 2008 21:24:38 +0200 Received: from rmh by thorin with local (Exim 4.63) (envelope-from ) id 1KbKaR-0002Xi-Vt for grub-devel@gnu.org; Thu, 04 Sep 2008 21:33:47 +0200 Date: Thu, 4 Sep 2008 21:33:47 +0200 From: Robert Millan To: The development of GRUB 2 Message-ID: <20080904193347.GD9133@thorin> References: <48BE5DE9.4090302@gmail.com> <20080903103654.GC29762@thorin> <48BE838E.9090204@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <48BE838E.9090204@gmail.com> Organization: free as in freedom X-Message-Flag: Worried about Outlook viruses? Switch to Thunderbird! www.mozilla.com/thunderbird X-Debbugs-No-Ack: true User-Agent: Mutt/1.5.13 (2006-08-11) X-detected-kernel: by monty-python.gnu.org: Genre and OS details not recognized. Subject: Re: [RFC] Boot parameters and geometrical stability X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: The development of GRUB 2 List-Id: The development of GRUB 2 List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 04 Sep 2008 19:35:28 -0000 On Wed, Sep 03, 2008 at 02:31:10PM +0200, phcoder wrote: > > > > I assume you talk about GRUB loading itself; what kind of information would > > you pass from one GRUB to the other? > Boot device, Multiboot already handles that (although it's not reliable; I don't think this feature should be used anyway). > configuration file, parameters for scripts. This assumes the loader knows more than the loadee about this information. In which situation would this happen? Note that both loader and loadee can obtain user input. Which parameters do you have in mind? > But much more > useful this is for network boot. In this case GRUB can recieve server > info in boot parameters so when this info changes there is no need to > regenerate grub images. Doesn't PXE already handle this? > Cryptographic checksums wouldn't bring much > because if attacker can modify harddrive he can also modify GRUB to skip > checksum check. The only way to restrict physical users from privileged access is by using physical means. Everything else is mere obstruction. Though, you can still run GRUB in your ROM (with coreboot), have it do the crypto checksum from there, and restrict write access to the ROM (e.g. by sinking it in concrete). -- Robert Millan The DRM opt-in fallacy: "Your data belongs to us. We will decide when (and how) you may access your data; but nobody's threatening your freedom: we still allow you to remove your data and not access it at all."