Privacy

3206 readers

95 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 2 years ago

MODERATORS

Ategon@programming.dev

danielintempesta@programming.dev

HybridPetya: More proof that Secure Boot bypasses are not just an urban legend (www.theregister.com)

submitted 3 months ago by cm0002@piefed.world to c/privacy@programming.dev

4 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] monogram@feddit.nl 2 points 3 months ago* (last edited 3 months ago) (1 children)

What is secure boot? /s

[–] RedGreenBlue@lemmy.zip 4 points 3 months ago* (last edited 3 months ago) (2 children)

The manufacturer puts a key on the chip in your computer. Currently controlled by microsoft. The software you boot is checked against these keys and if they don't check out, it will refuse to boot. In theory this means you can't modify the software that is booting. Only microsoft can sign approved code. This includes malware sneakily loading together with the operating system, embeding itself on a low level, with all permissions.

[–] wildbus8979@sh.itjust.works 6 points 3 months ago

I think it's important to add some nuance to what you said. While it's true that computers ship with Microsoft keys. One can remove them and install their own. I run all my machines with self signed bootloaders/kernels and it works great!

[–] monogram@feddit.nl 3 points 3 months ago

Thanks for the explanation, I should have added a /s, I always turn mine off before wiping winblows