From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from list by lists.gnu.org with archive (Exim 4.71) id 1VMRRk-0002f4-DY for mharc-grub-devel@gnu.org; Wed, 18 Sep 2013 19:46:12 -0400 Received: from eggs.gnu.org ([2001:4830:134:3::10]:42600) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VMRRc-0002eM-N0 for grub-devel@gnu.org; Wed, 18 Sep 2013 19:46:10 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1VMRRX-0007TK-CL for grub-devel@gnu.org; Wed, 18 Sep 2013 19:46:04 -0400 Received: from mail-ee0-x231.google.com ([2a00:1450:4013:c00::231]:63601) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1VMRRX-0007TD-3S for grub-devel@gnu.org; Wed, 18 Sep 2013 19:45:59 -0400 Received: by mail-ee0-f49.google.com with SMTP id d41so3799227eek.36 for ; Wed, 18 Sep 2013 16:45:57 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type; bh=OUYKinwWGLHJenfL4et/0NUz5kUMvILzr9r8RQWSH0k=; b=DioJUfwQMv5w7t0/fvcOHv6pAevwIKeLnXmTNDrclyIjU5yxBdb+JuX7Y/JjGQxkNk NdjjLOjLvLPVWSwnOCe48t96vgmD7a7g4/jX0KkMCbwA7SdZwsnMtPwKCUO5oHH7mkQv GUoj4uz/PFRveqk6HyJNgHC0lTusAv7PvgaYFdbCGsKnvKdcy9ZXuWanfUBzHd7zljSo Ifq5exWMp2S3O2ed94hYuCMPTyPbLOeX7ehVDkn4E8kMrjFJyPWRury6DyOWn7Wub22i c6hE3oenWwXJs1ywMZJymceoPv2jZYL+vc5utXhG5hTZmXvXj3QQ0q9WPYzsrno3qkgU a3Yw== X-Received: by 10.15.94.201 with SMTP id bb49mr63391428eeb.23.1379547957471; Wed, 18 Sep 2013 16:45:57 -0700 (PDT) Received: from [192.168.1.113] (31-249.1-85.cust.bluewin.ch. [85.1.249.31]) by mx.google.com with ESMTPSA id x47sm6797889eea.16.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 18 Sep 2013 16:45:56 -0700 (PDT) Message-ID: <523A3B33.4010101@gmail.com> Date: Thu, 19 Sep 2013 01:45:55 +0200 From: =?UTF-8?B?VmxhZGltaXIgJ8+GLWNvZGVyL3BoY29kZXInIFNlcmJpbmVua28=?= User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130821 Icedove/17.0.8 MIME-Version: 1.0 To: The development of GNU GRUB Subject: Re: trusted grub2 References: In-Reply-To: X-Enigmail-Version: 1.5.1 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="----enig2KFVQOOQDCKUGEPXIRWGO" X-detected-operating-system: by eggs.gnu.org: Error: Malformed IPv6 address (bad octet value). X-Received-From: 2a00:1450:4013:c00::231 X-BeenThere: grub-devel@gnu.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: The development of GNU GRUB List-Id: The development of GNU GRUB List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Sep 2013 23:46:10 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) ------enig2KFVQOOQDCKUGEPXIRWGO Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable On 18.09.2013 21:38, Samuel Branham wrote: >=20 > I have been thinking of how to modify grub2 to check some files and the= n > set PCRs. >=20 We don't use TPM and never intend to. Please don't start laying out the reasons why we should, we had long enough flamewars in the past, use search engine, it's FSF policy that as GNU project we follow. See http://www.gnu.org/philosophy/can-you-trust.html. GRUB has DSA GnuPG-style signature checking in cases when you need to check integrity of loaded files. ------enig2KFVQOOQDCKUGEPXIRWGO Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with Icedove - http://www.enigmail.net/ iF4EAREKAAYFAlI6OzMACgkQNak7dOguQglQ0wD/ZjIYeWFPFxbKGjmkBJ/EslMd JS/xQuI6jrKQKMvbzCEA/RN+sXqaOeLn3ulBm6mzvIKIXhfWVioWpExWbE3kp/5g =yeaT -----END PGP SIGNATURE----- ------enig2KFVQOOQDCKUGEPXIRWGO--