1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<TITLE> [Mageia-dev] Mageia 3 feature proposals review
</TITLE>
<LINK REL="Index" HREF="index.html" >
<LINK REL="made" HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Mageia%203%20feature%20proposals%20review&In-Reply-To=%3C20120627164510.GH8791%40bkor.dhs.org%3E">
<META NAME="robots" CONTENT="index,nofollow">
<META http-equiv="Content-Type" content="text/html; charset=us-ascii">
<LINK REL="Previous" HREF="016932.html">
<LINK REL="Next" HREF="016942.html">
</HEAD>
<BODY BGCOLOR="#ffffff">
<H1>[Mageia-dev] Mageia 3 feature proposals review</H1>
<B>Olav Vitters</B>
<A HREF="mailto:mageia-dev%40mageia.org?Subject=Re%3A%20%5BMageia-dev%5D%20Mageia%203%20feature%20proposals%20review&In-Reply-To=%3C20120627164510.GH8791%40bkor.dhs.org%3E"
TITLE="[Mageia-dev] Mageia 3 feature proposals review">olav at vitters.nl
</A><BR>
<I>Wed Jun 27 18:45:10 CEST 2012</I>
<P><UL>
<LI>Previous message: <A HREF="016932.html">[Mageia-dev] Mageia 3 feature proposals review
</A></li>
<LI>Next message: <A HREF="016942.html">[Mageia-dev] Mageia 3 feature proposals review
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#16933">[ date ]</a>
<a href="thread.html#16933">[ thread ]</a>
<a href="subject.html#16933">[ subject ]</a>
<a href="author.html#16933">[ author ]</a>
</LI>
</UL>
<HR>
<!--beginarticle-->
<PRE>On Wed, Jun 27, 2012 at 08:35:35AM +0200, AL13N wrote:
><i> I thought they were planning on signing all the stuff after grub2 as well?
</I>><i>
</I>><i> I have no trouble having signed bootloader. but i would prefer it to be from a
</I>><i> completely free CA. ie: NOT from microsoft.
</I>
Then you need to convince all the hardware manufacturers to put your key
in their hardware, as explained in the blogpost. Seems really unlikely
to happen.
><i> above signing from microsoft, I would even prefer to have a documentation that
</I>><i> requests to disable Secure Boot, then generate your own key and adding that,
</I>><i> and then setting up Secure Boot again, with your own personal signed stuff.
</I>
Thought disabling secure boot means first booting?
><i> of course, if there was an independant org that had it's CA in all hardware,
</I>><i> and signed all free OSes, that would be alot better.
</I>
There is none.
--
Regards,
Olav
</PRE>
<!--endarticle-->
<HR>
<P><UL>
<!--threads-->
<LI>Previous message: <A HREF="016932.html">[Mageia-dev] Mageia 3 feature proposals review
</A></li>
<LI>Next message: <A HREF="016942.html">[Mageia-dev] Mageia 3 feature proposals review
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#16933">[ date ]</a>
<a href="thread.html#16933">[ thread ]</a>
<a href="subject.html#16933">[ subject ]</a>
<a href="author.html#16933">[ author ]</a>
</LI>
</UL>
<hr>
<a href="https://www.mageia.org/mailman/listinfo/mageia-dev">More information about the Mageia-dev
mailing list</a><br>
</body></html>
|
