Gabriele Svelto on Nostr: all Linux distros that support Secure Boot do that. They boot via the shim bootloader ...
all Linux distros that support Secure Boot do that. They boot via the shim bootloader which is signed with Microsoft key, then on first run shim enrolls the distro keys, and the rest of the boot chain (grub, the Linux image, modules) is signed with that. Of course, that means you'll trust the key from that point on
Published at
2024-08-05 22:42:51Event JSON
{
"id": "7d0ebbf5dbb0691ea40e1b2fbe2fcc7659a5fa5c94b27e3deda47aed5f70a4ca",
"pubkey": "f140e5808246845ee0070d02e50da67097357ddada668008eb2d1ef9a6d4a520",
"created_at": 1722897771,
"kind": 1,
"tags": [
[
"e",
"5d49253916a0416ed73da6e54598de4da3bd7615523cc9641657abc176f0bdd5",
"",
"root",
"6efe24e8d551d8669d975aa16c67e86eba709c443f107b9b3a42297c0d8f4ccf"
],
[
"p",
"6efe24e8d551d8669d975aa16c67e86eba709c443f107b9b3a42297c0d8f4ccf"
],
[
"proxy",
"https://fosstodon.org/@gabrielesvelto/112911828339725576",
"web"
],
[
"proxy",
"https://fosstodon.org/users/gabrielesvelto/statuses/112911828339725576",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://fosstodon.org/users/gabrielesvelto/statuses/112911828339725576",
"pink.momostr"
],
[
"-"
]
],
"content": "all Linux distros that support Secure Boot do that. They boot via the shim bootloader which is signed with Microsoft key, then on first run shim enrolls the distro keys, and the rest of the boot chain (grub, the Linux image, modules) is signed with that. Of course, that means you'll trust the key from that point on",
"sig": "d928ebc1bba7ce900b2285563148697fc09a3a13e23a4ebb22714bcc2b18b21d2ce31fb053fd0e9be2032682372d8beb2cf37a77eb123d673785c17b3ec99aab"
}
