From: Bruce Dubbs <bruce.dubbs@gmail.com>
To: The development of GNU GRUB <grub-devel@gnu.org>
Subject: Re: Secure Boot. Why don't you take the wind out of their sails?
Date: Tue, 10 Jul 2012 11:29:21 -0500 [thread overview]
Message-ID: <4FFC5861.5060104@gmail.com> (raw)
In-Reply-To: <CAO_2OxWC=VNVVDVj9SPGC7jOaF2UVU1WbkCkC4vEuq7nD-RxPQ@mail.gmail.com>
richardvoigt@gmail.com wrote:
> Maybe I'm missing something, but when I read this, it doesn't say the
> hardware must have Secure Boot enabled by default. Rather, it must be
> enabled by the OEM as part of the Windows preinstallation process, so
> that it's enabled when it reaches the end user. System builders are
> still going to purchase UEFI Secure Boot-capable motherboards with
> Secure Boot disabled-by-default, and they will "just work" if you want
> to install Linux.
For people who are not experts, trying Linux or another operating system
becomes much more intimidating. They have to go into the BIOS and
change something. Then, to go back to Windows, they have to do it again.
Will this discourage users from trying something else? You bet.
End-users who bought pre-installed Windows will
> have to change the configuration option in system setup, which for
> someone planning to install a new OS from scratch is not a major
> hurdle. It will be a minor road bump for people using live-CD style
> media (including USB), but won't be a showstopper if the user actually
> has permission from the computer owner to boot the alternate media.
> What likely is that it will prevent unauthorized (by the owner)
> rebooting public computers using alternate media, but that's not
> exactly a valid scenario to begin with.
But is is for private computers. My LUG frequently gives out DVDs with
various Live system and say try it. That will become much more
problematic.
I still don't know how someone is supposed to be able to boot Windows
within a VM with this new paradigm.
-- Bruce
next prev parent reply other threads:[~2012-07-10 16:29 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-07-09 22:38 Secure Boot. Why don't you take the wind out of their sails? Graham Cunnington
2012-07-09 23:32 ` Chris Murphy
2012-07-09 23:49 ` Andreas Born
2012-07-10 1:23 ` richardvoigt
2012-07-10 1:51 ` Andreas Born
2012-07-10 3:12 ` richardvoigt
2012-07-10 5:04 ` Chris Murphy
2012-07-10 15:54 ` richardvoigt
2012-07-10 16:29 ` Bruce Dubbs [this message]
2012-07-10 16:44 ` Lennart Sorensen
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=4FFC5861.5060104@gmail.com \
--to=bruce.dubbs@gmail.com \
--cc=grub-devel@gnu.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.